Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
File: 0kvL9emk_kMp8iPBFFBykFOPnMI.mft (raw, json)
Hash identifier: c/gBZld4vlgmDga75t/7oTtZaTRpObeP0AMwuVbR8y0=
Subject key identifier: AA:68:91:17:58:01:5A:91:63:B2:C9:DA:09:8D:98:15:FA:5C:C5:CF
Authority key identifier: D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
Certificate issuer: /CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Certificate serial: 0197B6A0CF9443E6737A8E40ADD350342EDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
Manifest number: 1100
Signing time: Sat 28 Jun 2025 13:01:21 +0000
Manifest this update: Sat 28 Jun 2025 13:01:21 +0000
Manifest next update: Sun 29 Jun 2025 13:01:21 +0000
Files and hashes: 1: 0kvL9emk_kMp8iPBFFBykFOPnMI.crl (hash: 6v9xGFPguqYQhN09XISmWtehTZYBQt/ARq2TZ9EL4eQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:cf:94:43:e6:73:7a:8e:40:ad:d3:50:34:2e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Validity
Not Before: Jun 28 13:01:21 2025 GMT
Not After : Jun 29 13:01:21 2025 GMT
Subject: CN=aa68911758015a9163b2c9da098d9815fa5cc5cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a8:c5:e8:f1:92:94:dd:03:00:31:52:8b:80:
31:17:7c:26:38:b9:06:20:10:87:a0:1e:dd:5f:05:
f8:00:69:66:bf:80:70:d9:13:5a:de:55:43:ca:1d:
ad:e6:60:9d:78:7f:70:7d:7d:33:ac:1e:a2:4c:22:
b9:a2:15:b8:05:bd:0e:1f:c6:b3:d1:99:b6:72:64:
2e:38:7b:2f:d6:27:5a:61:b8:fd:90:01:89:03:32:
2a:ad:f5:00:5b:aa:49:b7:41:58:57:15:fc:ba:16:
e9:98:6a:8e:d6:29:a0:f2:2d:26:cc:3c:27:5f:fe:
e3:9b:2c:8d:a3:b0:59:52:20:79:91:7d:3d:1c:57:
e2:a3:95:17:09:2a:52:f7:93:2d:e7:c5:98:c9:e2:
3b:1b:56:85:15:ad:63:d8:da:de:64:cd:e8:39:8e:
b8:d7:d7:ef:a8:aa:f8:e0:0d:02:ec:cc:28:50:d0:
7a:d3:fd:18:c4:cc:57:2a:88:9b:70:17:c1:3b:0b:
f4:6a:70:13:bd:eb:8e:b7:6b:3a:08:12:bc:ba:86:
15:96:8b:5b:9b:32:8e:b2:bb:92:ec:ce:9d:0b:9b:
e9:8d:ee:83:c5:62:f0:0f:53:40:6a:ac:53:3f:07:
28:0f:39:69:7f:aa:ac:8f:fa:b5:f8:4a:1b:db:e0:
23:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:68:91:17:58:01:5A:91:63:B2:C9:DA:09:8D:98:15:FA:5C:C5:CF
X509v3 Authority Key Identifier:
keyid:D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:0d:f0:a7:d0:e4:da:c3:ee:ad:af:e3:12:5f:4f:5e:73:a2:
91:08:e9:bd:69:3a:52:22:fc:85:84:28:95:ac:01:75:6c:c0:
25:ca:fd:62:e1:ee:64:28:b1:bc:a6:70:6a:ed:9f:17:6b:cd:
ce:8b:8f:43:ce:9b:05:3f:89:74:9e:66:a7:64:92:ad:a8:2a:
0a:60:f7:d3:27:c6:80:86:db:44:4a:0d:51:9f:d7:22:0a:98:
57:93:6a:9c:cc:7d:c7:02:9d:41:89:21:8b:07:5d:be:39:98:
ca:eb:d3:52:09:e0:7f:4c:76:4f:2e:ce:23:2d:b2:5f:89:56:
57:a8:5e:4d:30:46:85:11:f3:d2:8c:77:1b:03:9e:cd:af:63:
39:da:60:db:81:7c:ac:0e:d5:40:6a:10:60:2b:f7:4c:bb:c7:
51:41:63:85:1e:d4:7d:57:c1:68:0f:db:3e:e9:89:5b:b7:19:
31:c4:61:84:6f:33:58:1a:db:d8:90:ed:6f:aa:45:b9:0c:bb:
41:f0:76:28:f3:10:9b:fe:2c:d8:39:23:75:4e:ce:80:f9:ed:
57:4c:05:4b:3a:ed:66:60:1c:dc:59:dc:aa:ad:d1:6c:b8:ee:
aa:f1:82:67:fc:ca:a4:ea:10:b7:b1:29:3b:23:ef:34:4b:ea:
11:1b:9f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:50:39 2025 by rpki-client