Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: UXaZMpokLu5a5IkOrDE/IOsylow1zCvCN82zRaFkrwM=
Subject key identifier: 25:26:09:2B:D0:28:26:62:D8:44:F2:25:F5:88:71:A5:1E:40:76:DC
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 0197B6A1AF80B7DC4888858999DA89019F99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 13:02:18 +0000
Manifest this update: Sat 28 Jun 2025 13:02:18 +0000
Manifest next update: Sun 29 Jun 2025 13:02:18 +0000
Files and hashes: 1: K-YJm4wOeLJG8aJ7KI41BLWAM-4.roa (hash: +ltmXAJQfzovJoKfgWj4x9gqmeiriedONmDgSBwWFc4=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: UAIgefNPExOm13aoHvnk06odZ3qQ54BkNh7Xs8BQFMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:af:80:b7:dc:48:88:85:89:99:da:89:01:9f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Jun 28 13:02:18 2025 GMT
Not After : Jun 29 13:02:18 2025 GMT
Subject: CN=2526092bd0282662d844f225f58871a51e4076dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f1:dd:4a:53:76:7e:91:b5:8b:cf:d6:13:16:
48:f0:17:0b:87:26:8e:3d:a6:72:ef:c0:02:72:9a:
86:81:e7:71:76:5d:61:53:d0:e7:9c:61:65:97:d7:
18:2e:8b:07:cb:04:cf:16:a5:c4:f8:27:5b:34:fb:
74:76:49:c7:b7:93:52:ef:fb:6c:74:4a:71:21:be:
88:f4:f8:b7:83:d3:c9:96:25:89:53:76:d3:1a:9d:
4f:4d:3c:cc:8d:ef:de:c2:d5:2d:52:59:3c:6c:09:
0f:00:49:42:6e:ea:99:a6:44:cd:61:ea:63:80:65:
ef:58:6c:fc:6a:ff:ca:55:b8:84:eb:38:de:0a:12:
f4:21:dd:3f:1c:db:38:09:bd:eb:7b:88:60:2f:71:
cd:4d:0d:bf:f7:9b:88:eb:0e:7e:d1:5a:ca:35:3e:
34:43:22:48:23:1f:25:0a:0a:7d:ec:e3:7b:80:bd:
81:ef:2d:6a:0d:f6:3b:b3:f4:9d:46:d5:a9:89:7c:
4a:94:7c:81:0b:00:9d:8d:8e:b9:63:0b:81:c2:7b:
73:cd:2b:23:e6:7b:3a:c2:96:a3:1e:20:fc:b3:95:
e4:d4:94:2a:0f:77:e3:c2:3c:7c:92:13:82:28:f0:
e5:15:fe:b6:8e:00:51:63:49:76:45:1e:be:ae:33:
8b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:26:09:2B:D0:28:26:62:D8:44:F2:25:F5:88:71:A5:1E:40:76:DC
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:46:dd:41:65:ce:a3:4a:01:c1:93:07:f8:08:5b:02:66:44:
3e:1d:2e:5d:3b:3d:85:c1:4c:94:c8:c2:f4:6c:bd:74:14:2b:
92:e6:b9:72:48:f7:f5:5e:05:04:61:5d:e1:c3:33:ae:c1:b4:
61:5c:fd:8b:c4:0c:3f:10:bd:8c:a5:5e:de:3c:01:90:5a:13:
b4:40:cc:e1:75:ec:17:7c:41:83:dd:70:75:21:7b:eb:17:14:
ff:b7:49:a5:3c:a2:b1:7d:cc:20:60:02:4c:ce:cf:47:30:2a:
03:cc:f5:12:4b:02:fd:7d:2f:a9:6e:73:4e:a3:1f:5b:cb:24:
7a:fb:ec:30:a5:8f:67:fe:47:35:12:0e:ad:d0:d8:f4:54:0a:
37:dd:79:e0:50:8d:4b:10:5f:5c:bb:8d:4d:34:6f:27:bf:5c:
9c:95:6b:a9:0e:70:25:6e:0f:0b:a4:70:65:7b:a2:e4:cb:28:
20:66:9d:7c:27:34:10:2d:ef:bf:ce:61:42:2f:bf:36:a2:82:
53:d6:c6:60:74:ce:26:8a:be:7c:83:4d:0c:ae:d6:0d:69:3c:
39:75:99:f2:9a:cd:37:22:91:93:13:e9:27:be:95:22:b6:0c:
50:e8:b2:73:bd:21:ed:04:cf:36:45:31:49:77:f9:17:fc:fd:
00:62:1a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:29:45 2025 by rpki-client