Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
File: CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft (raw, json)
Hash identifier: f5fEMdDYub2dchlWgv4A+aBiiOvssv9xYyhKlowZbuU=
Subject key identifier: A6:3E:AE:E3:6A:DD:2C:0F:FC:0D:79:3D:84:06:1A:9E:59:B7:00:3C
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 0196B4470F03E3B6F34DC3958BBCABA7662E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
Manifest number: 1196
Signing time: Fri 09 May 2025 09:01:17 +0000
Manifest this update: Fri 09 May 2025 09:01:17 +0000
Manifest next update: Sat 10 May 2025 09:01:17 +0000
Files and hashes: 1: CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl (hash: xLCZJnzTStoCqERErhzLeewfuoMHpiIu1qx2F+tLyeg=)
2: DQ47vKDjcl-2XGhWvGpEltnbLx0.roa (hash: xO7ywYo6rKZE+1UGlrRMauCBtFM1TiMUXrJWYhc9zkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 09:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:47:0f:03:e3:b6:f3:4d:c3:95:8b:bc:ab:a7:66:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: May 9 09:01:17 2025 GMT
Not After : May 10 09:01:17 2025 GMT
Subject: CN=a63eaee36add2c0ffc0d793d84061a9e59b7003c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:98:c0:f3:dc:6b:39:4f:54:60:fa:12:e6:1a:
f2:4d:8d:48:9b:39:d2:17:b6:d1:2c:df:52:73:7c:
2b:16:65:66:d4:7c:41:91:35:39:3d:8c:22:8b:ab:
1f:3d:cb:6f:b7:25:8c:d4:3b:a1:4d:a6:80:0c:ee:
ca:52:2d:a5:57:fa:f6:c7:b3:dd:ff:09:9a:7e:a8:
ee:94:09:44:62:22:82:d2:12:01:a7:26:40:53:b6:
32:de:82:b3:b3:ff:2d:c8:2b:4d:ac:59:5d:51:d2:
67:d3:b5:d0:21:85:1a:61:7e:db:73:f1:d4:96:cd:
36:dc:fa:3f:63:83:a6:c2:05:d0:ef:c8:ac:4f:c9:
c6:51:46:92:9d:ce:be:a6:5a:8c:43:79:60:ea:f2:
77:c2:db:9d:79:26:37:c0:61:27:6d:51:66:a9:00:
ab:03:90:c4:7a:bd:11:71:f2:d6:ed:18:e6:71:ff:
89:17:52:a7:81:d4:67:30:54:3e:1d:55:41:06:b7:
44:72:0f:43:89:2e:60:24:b9:df:53:19:b5:54:4f:
99:d8:02:c7:7e:34:a8:df:8a:f6:87:4b:c4:9f:94:
bc:36:43:a2:3f:e8:3c:8a:67:f4:ee:45:ba:53:bb:
fe:9f:a1:d1:95:b2:33:f5:f7:00:29:4c:86:d5:69:
5f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:3E:AE:E3:6A:DD:2C:0F:FC:0D:79:3D:84:06:1A:9E:59:B7:00:3C
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:60:75:99:aa:2d:d3:3f:24:36:29:69:6c:4b:57:a4:8a:3e:
b2:94:0e:93:d8:b9:3c:df:2b:e1:2f:f1:81:a2:20:28:f8:58:
4f:1d:7b:c4:90:b3:23:cc:c7:87:69:27:13:b3:09:5b:ea:85:
a3:d3:8a:3e:88:86:d9:ae:c0:72:f5:0e:a0:bc:39:7d:80:5c:
ad:0f:3e:52:f5:3f:15:4b:a9:38:de:30:f1:62:c5:6c:17:3e:
18:9e:be:ab:c8:7f:fa:ca:e0:4d:65:94:88:78:cb:18:5b:55:
3a:f3:0c:c9:72:23:cf:82:65:68:a2:f9:1e:49:f6:f0:8e:a1:
af:96:73:f8:dc:b0:6b:68:c3:51:4e:6e:58:46:b8:21:4a:46:
bb:b9:4e:fd:b9:56:b9:82:11:75:94:83:61:f4:5d:db:a0:c0:
ca:a5:2e:43:84:42:57:12:fd:94:59:16:df:5d:2d:66:23:81:
7d:e8:07:61:3c:d1:0d:89:a8:91:d9:07:45:0a:ca:c3:36:16:
f5:73:4a:f1:89:bb:d0:c1:36:c5:65:dc:9d:0b:99:00:38:38:
8d:63:ff:4a:a2:4b:17:e0:cb:d9:1c:ca:f2:36:80:85:24:2b:
dc:99:ce:dd:27:c7:dc:b1:03:cb:de:43:05:1b:ec:24:f7:96:
2c:93:ef:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 18:20:56 2025 by rpki-client