Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
File: kVVkGgex5FW3iSuS2A1gkSORsg0.mft (raw, json)
Hash identifier: vNdFRr5Umd5XjTBZ2OSf54XnPr2QdRgFwXCl8xZdBLo=
Subject key identifier: CA:F3:73:EC:C5:BC:42:9B:64:CA:2E:75:31:7C:3F:18:42:AA:75:02
Authority key identifier: 91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
Certificate issuer: /CN=9155641a07b1e455b7892b92d80d60912391b20d
Certificate serial: 0197B96A65D865330E536F1749A89E6C025B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
Manifest number: 05C3
Signing time: Sun 29 Jun 2025 02:00:47 +0000
Manifest this update: Sun 29 Jun 2025 02:00:47 +0000
Manifest next update: Mon 30 Jun 2025 02:00:47 +0000
Files and hashes: 1: kVVkGgex5FW3iSuS2A1gkSORsg0.crl (hash: TwivWUmsfRuoq44881uMWO+koHa1wyhhhsHRIfTlF/8=)
2: ynCtEcXqVCBeEil-xI3WvK_dPRE.roa (hash: 0SptmV2vPd6kYrXF10jAqlyhF9V/f+S3u2RzwXs1PmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:6a:65:d8:65:33:0e:53:6f:17:49:a8:9e:6c:02:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9155641a07b1e455b7892b92d80d60912391b20d
Validity
Not Before: Jun 29 02:00:47 2025 GMT
Not After : Jun 30 02:00:47 2025 GMT
Subject: CN=caf373ecc5bc429b64ca2e75317c3f1842aa7502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:89:26:de:ae:22:3a:f5:21:b6:29:b6:30:9c:
ca:ac:14:3b:fb:d4:b8:41:c4:ad:dd:b9:6c:bf:b4:
c7:d8:b2:33:45:23:59:a5:63:1b:ed:f8:50:d4:7b:
99:31:d9:08:12:76:b2:68:ff:17:be:33:4f:bf:43:
79:56:f9:30:c7:05:81:10:67:2f:26:2b:63:b1:90:
46:a1:63:8d:21:00:d7:7a:f0:15:4a:3f:0f:da:81:
9b:a4:99:7b:79:a4:1a:8d:1e:53:78:fb:a9:30:d9:
3e:73:aa:61:65:8e:c7:99:4f:d1:e0:98:bd:6e:8d:
43:fd:0e:d0:af:3e:7e:00:53:bf:51:42:90:f6:c4:
be:cc:52:17:4c:bb:a0:c7:70:25:4e:a0:8c:1c:33:
95:87:07:68:cc:c7:78:72:ab:da:d7:d4:eb:7c:78:
f5:0d:ea:91:c8:90:f5:90:85:d4:59:99:3c:76:0c:
be:e5:17:e2:f8:76:6b:de:f2:01:fc:e2:23:f1:66:
15:21:7a:d5:a3:89:da:f5:33:25:07:e5:c7:98:f9:
55:b3:a4:f3:54:bd:b9:37:98:ae:ab:79:89:19:81:
e6:b5:0b:90:fe:c3:ec:60:22:85:6b:ef:73:00:65:
5b:eb:a0:fc:87:7e:55:d6:32:db:2a:e2:52:04:bc:
cb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F3:73:EC:C5:BC:42:9B:64:CA:2E:75:31:7C:3F:18:42:AA:75:02
X509v3 Authority Key Identifier:
keyid:91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:a3:73:43:40:87:52:68:e1:27:69:9e:ae:5b:3c:dd:ae:78:
61:f6:0d:ec:d8:6d:18:0d:df:5b:de:4a:63:68:b1:57:61:4f:
23:e5:f3:eb:3d:e8:fc:d2:25:ea:2a:1d:55:1d:83:3d:af:38:
eb:78:56:01:4f:5c:19:ee:a1:18:35:8b:a9:c7:79:6f:84:b4:
4c:db:9c:45:0e:b5:40:19:a6:60:f2:a1:d9:09:16:3a:b3:78:
77:78:96:7b:fb:b0:78:9a:00:ae:ed:1f:fd:d9:6e:33:7c:34:
39:0e:e8:96:d0:79:6f:bd:23:3a:c3:94:41:18:72:fa:a1:d4:
17:24:f6:fb:3b:f6:9f:dc:0a:34:49:8f:66:4c:d0:6f:ef:61:
2e:f7:b4:65:30:1b:d9:ee:a4:31:31:6a:8b:bb:b8:1e:9e:34:
50:74:c7:13:9b:d2:77:7d:19:e3:82:4d:51:93:dc:19:e7:d0:
30:a5:19:6b:21:67:25:6c:b9:8b:bf:69:44:14:fd:f5:da:fe:
1e:da:7a:16:c1:97:e8:01:2b:77:74:da:cd:bc:0a:98:cb:8c:
1b:4e:55:12:01:a9:55:7b:f0:05:f7:22:a8:fb:85:c7:c1:22:
63:94:b0:fe:75:4d:73:31:54:06:29:98:0e:5b:ae:2a:50:9c:
41:7d:a8:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:21:20 2025 by rpki-client