Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json)
Hash identifier: oZ98TIJ8deA1TzhMWgn33SvK13Ngfvn5lyyPyeuMX9g=
Subject key identifier: 8E:C8:57:31:DB:FB:30:FB:2F:42:7D:55:8F:94:F8:B6:BD:A0:06:7D
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 0197B7454625D9DB5563DAA8383781F2D8ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
Manifest number: 10CC
Signing time: Sat 28 Jun 2025 16:00:59 +0000
Manifest this update: Sat 28 Jun 2025 16:00:59 +0000
Manifest next update: Sun 29 Jun 2025 16:00:59 +0000
Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=)
2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=)
3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=)
4: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=)
5: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=)
6: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=)
7: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: OfqBL52JaT+m3Rcs8/SECNdaGpjU5WI72P+ObWUGgHI=)
8: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=)
9: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:46:25:d9:db:55:63:da:a8:38:37:81:f2:d8:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: Jun 28 16:00:59 2025 GMT
Not After : Jun 29 16:00:59 2025 GMT
Subject: CN=8ec85731dbfb30fb2f427d558f94f8b6bda0067d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:24:35:17:51:9b:d8:c1:5f:a5:06:19:be:8a:
90:9f:b6:2f:50:f4:cf:72:fa:46:94:b2:e6:54:61:
fb:f5:5f:fd:f9:5e:a8:91:b0:8d:3f:5d:d9:17:68:
10:a1:62:77:ca:5e:ed:ec:ca:aa:5b:66:57:aa:86:
6c:8b:9f:f0:25:5f:41:6e:0d:4c:63:45:93:3d:01:
12:fc:ba:e1:ae:46:aa:21:0c:d0:4a:52:f6:f9:b8:
72:33:b8:c8:6e:3b:d8:1c:88:2f:95:54:d8:1b:43:
85:1d:54:61:4f:d2:27:6d:80:7a:d3:a5:da:bf:7e:
97:3b:6c:30:02:cf:02:b5:7e:e5:a1:f2:c4:3a:2d:
07:f7:d6:7e:6e:88:d8:e0:64:c4:62:86:a0:b1:dd:
af:5a:3e:bf:80:30:f2:cb:9b:08:46:b2:90:a8:96:
fa:e4:bc:e6:99:a7:22:5e:38:6e:db:7f:e9:d1:ef:
53:58:dc:d1:c9:cd:63:49:a9:c7:7e:fa:8f:5d:17:
1c:1f:6c:8c:24:47:2e:c8:42:43:de:8c:9b:4f:e6:
a2:9e:50:d2:cd:af:c8:bb:e0:7e:07:4f:f7:a2:2c:
a9:00:f4:4b:24:37:77:66:70:99:6d:fd:14:db:8c:
a3:8b:f6:bb:a6:89:9f:32:87:fe:89:89:b8:7e:f8:
c0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C8:57:31:DB:FB:30:FB:2F:42:7D:55:8F:94:F8:B6:BD:A0:06:7D
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:b1:a3:80:8e:dd:fc:4e:74:b7:c5:2f:43:96:c6:26:35:6e:
ef:ba:30:63:05:08:f6:90:0d:94:3e:74:a1:7a:d3:ec:ab:bc:
28:29:6c:62:6c:aa:29:cf:37:45:6a:3c:e8:82:67:5e:30:3b:
e2:1c:f6:8e:a0:26:db:85:6f:15:fb:cb:1c:91:fc:21:8e:85:
7e:9e:96:d9:57:08:93:eb:5a:d9:41:43:47:8a:dc:b9:2e:9c:
29:37:a4:25:7d:84:b3:e6:0e:2e:19:7d:8b:a7:17:a6:39:78:
90:3c:d6:ba:72:43:73:94:cb:80:0e:e0:77:39:6a:9d:5f:33:
a9:2d:fb:01:1e:db:18:b4:ba:f6:7f:00:73:d9:da:2c:e7:37:
21:c2:1d:c3:b0:77:45:35:16:97:2c:e2:e2:22:f5:e6:3b:42:
60:54:08:10:ef:cc:ec:8d:90:0b:06:36:d1:f7:fa:c1:74:04:
ab:a1:b3:fc:ec:29:66:86:91:6e:c4:f1:c0:35:9f:07:37:92:
16:d8:c6:62:34:ea:19:88:2c:ef:a6:69:e2:d7:8e:d8:4c:57:
56:24:cb:a1:51:45:03:5a:c9:6c:58:01:92:40:16:3a:6c:df:
9f:11:aa:17:3e:31:ee:06:3e:5e:67:cd:93:16:83:ea:d6:26:
13:a0:e1:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:36:43 2025 by rpki-client