Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
File: kVVkGgex5FW3iSuS2A1gkSORsg0.mft (raw, json)
Hash identifier: trkWy8tIPEa80hRm062c2dQwTBkkkqh/Sj+WQUYgoss=
Subject key identifier: F6:25:CD:52:4B:88:8E:9E:08:14:CB:61:DD:91:53:36:6A:22:3F:FC
Authority key identifier: 91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
Certificate issuer: /CN=9155641a07b1e455b7892b92d80d60912391b20d
Certificate serial: 0196BC6DE62B65B6F74D0E88553FE5E61C14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
Manifest number: 0540
Signing time: Sat 10 May 2025 23:00:41 +0000
Manifest this update: Sat 10 May 2025 23:00:41 +0000
Manifest next update: Sun 11 May 2025 23:00:41 +0000
Files and hashes: 1: kVVkGgex5FW3iSuS2A1gkSORsg0.crl (hash: A0iKK/l7jmMokjLLFqO77wqWD3qbudukG1wDnqHQeiM=)
2: ynCtEcXqVCBeEil-xI3WvK_dPRE.roa (hash: 0SptmV2vPd6kYrXF10jAqlyhF9V/f+S3u2RzwXs1PmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6d:e6:2b:65:b6:f7:4d:0e:88:55:3f:e5:e6:1c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9155641a07b1e455b7892b92d80d60912391b20d
Validity
Not Before: May 10 23:00:41 2025 GMT
Not After : May 11 23:00:41 2025 GMT
Subject: CN=f625cd524b888e9e0814cb61dd9153366a223ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f5:ce:fa:2c:7c:4e:d2:97:b0:87:aa:c9:c8:
99:4a:65:57:f7:dd:22:e9:5c:78:52:7e:a5:38:ba:
31:34:06:b0:04:f0:a0:19:6d:aa:22:44:15:a2:9e:
e1:d2:3d:48:ec:c4:df:0b:dc:d9:27:7b:a0:62:2d:
05:c5:ec:24:bd:d7:de:fb:f3:12:5f:3a:b4:c4:f3:
69:e3:e3:25:17:31:8b:e1:72:b2:01:9a:11:cb:d6:
03:41:dc:73:45:66:3f:22:c2:e5:76:0b:67:79:4c:
94:5e:9c:c5:7e:58:e2:42:40:b0:86:dd:0a:ff:57:
3f:53:ad:5f:01:40:7c:67:88:5c:91:72:1c:47:3e:
24:42:12:0b:30:33:e5:1a:b0:12:99:3c:e4:eb:a3:
ac:50:68:a8:19:4c:87:2a:01:42:96:d9:dd:84:7b:
c6:69:6f:42:25:33:ef:fa:cf:f9:ee:d1:4b:9c:fc:
33:d7:db:b5:ea:5b:4a:94:db:72:ec:0e:7d:41:ec:
d7:8d:a2:b9:05:d0:f2:db:c6:f8:20:92:ed:6f:14:
fc:ed:ba:6d:1f:ea:c6:02:77:73:71:db:f6:2d:15:
e6:5e:d1:e2:62:36:2c:d0:f7:11:e8:45:2c:85:30:
7b:a2:86:10:0c:70:5d:ed:d2:b5:3f:d8:46:82:be:
27:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:25:CD:52:4B:88:8E:9E:08:14:CB:61:DD:91:53:36:6A:22:3F:FC
X509v3 Authority Key Identifier:
keyid:91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a5:b3:b8:4a:a9:6b:b9:f1:04:1c:04:42:04:0f:42:0a:06:
2b:e1:a4:47:3a:56:bc:6a:24:26:39:35:22:89:19:c4:f0:9c:
7d:f2:86:08:89:9f:5f:d6:2e:db:27:1e:90:a1:1f:75:eb:0f:
e3:f0:ea:cb:51:d2:d6:a8:14:11:e1:d6:61:ec:b4:0a:72:2b:
8b:77:4c:c9:48:50:38:2a:6c:41:01:a9:f0:97:a0:9f:46:19:
cc:6e:c0:65:18:a4:98:5a:2c:2e:7d:ec:50:bc:b7:bf:7a:83:
f8:92:ed:6b:1d:83:aa:9e:80:5c:87:02:84:8c:ab:f0:35:fe:
9b:50:ff:5d:9f:19:e7:93:6f:fc:26:ec:9c:d3:ad:e8:b5:c9:
0c:92:2f:18:7e:e6:67:56:7a:4a:b5:53:da:50:62:b9:7f:26:
79:29:84:85:83:8a:bd:11:ba:61:2f:ad:47:06:6e:89:1c:c0:
c0:bd:af:eb:fc:f9:af:09:4e:67:ab:e1:49:22:b7:7e:c0:6f:
ac:9e:64:81:d8:dd:92:67:98:77:9e:a8:a3:1d:fd:ef:c0:05:
79:a5:b4:ae:d3:dd:51:d2:99:49:8d:58:be:66:ac:da:aa:5a:
17:ef:04:a3:64:04:30:c7:72:c3:2d:98:7e:f1:2f:88:c7:5d:
fd:7d:8b:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:28:08 2025 by rpki-client