Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: p6xQ0lhmEcGbFlJ+zZwPmatVrWrG6E4F5N8zTxrRcks=
Subject key identifier: 29:C5:60:44:4F:F1:22:D0:C2:E5:71:9A:CB:C1:2F:79:A6:B5:78:64
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 0197B70F4EFEC9F90EE5A139DDE15D99834D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 15:02:03 +0000
Manifest this update: Sat 28 Jun 2025 15:02:03 +0000
Manifest next update: Sun 29 Jun 2025 15:02:03 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: LRb1DoBlLM/H8ElSFOWLipFJbQq6t11bTS4UJu3sjX8=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:4e:fe:c9:f9:0e:e5:a1:39:dd:e1:5d:99:83:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 28 15:02:03 2025 GMT
Not After : Jun 29 15:02:03 2025 GMT
Subject: CN=29c560444ff122d0c2e5719acbc12f79a6b57864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:27:87:56:84:e7:28:44:35:f5:1a:a9:b8:e4:
87:07:2e:33:32:53:8f:39:0a:ea:a8:ac:2d:06:81:
10:a2:c4:e9:5f:55:b1:8e:e9:ee:1e:86:1c:08:85:
a0:9c:55:1f:a2:bb:7c:66:16:e5:3e:a5:33:71:09:
f9:06:fe:74:25:33:01:60:a4:d3:eb:20:c7:e2:61:
9e:81:c3:28:f9:48:e7:33:c9:41:88:e2:cc:4b:86:
56:e0:4c:16:27:c8:55:42:ed:e4:b1:f6:ab:03:2c:
84:0c:3b:b2:11:45:7a:6a:84:29:5f:ed:6f:5e:b6:
19:e0:47:d9:93:ca:d2:2e:1c:86:5e:ab:85:fd:33:
1e:b9:a5:72:e9:3b:16:18:cd:5f:1d:31:16:3b:82:
08:eb:73:66:72:b0:65:22:c7:fc:02:c6:1c:14:74:
8d:c5:2b:2e:01:39:b5:ac:a3:4c:72:c6:43:b0:13:
de:c0:c9:79:1c:10:5f:c9:a9:51:ea:02:20:b4:a5:
e0:03:e2:94:4f:5d:72:f8:97:2a:8c:64:2a:ab:87:
81:00:83:a5:4d:0a:8e:ef:7e:c0:57:5f:c9:60:37:
fc:f7:98:e3:12:b2:80:02:68:f0:88:6c:73:f2:13:
1c:83:8d:71:81:a3:ce:4b:a5:9b:bf:df:21:f4:b5:
0d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C5:60:44:4F:F1:22:D0:C2:E5:71:9A:CB:C1:2F:79:A6:B5:78:64
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:4d:07:8d:6e:32:84:34:fe:0d:9a:db:ea:3d:f1:2d:9b:fb:
a3:bb:e9:dc:e8:22:35:41:8b:2c:f0:e9:d7:47:0d:fe:98:d0:
9e:3f:89:cf:66:b5:b8:87:a4:32:8f:79:f0:25:3e:70:2e:6b:
ae:a9:cb:9d:c3:35:d3:72:0e:33:77:81:46:bc:eb:25:ae:9c:
9e:c1:82:08:50:1d:de:29:b8:1a:d2:12:8f:92:2a:41:81:dd:
63:b8:df:ab:a2:8a:0c:b2:5c:cb:a1:92:ec:ab:f9:b9:10:6e:
10:af:ce:4c:64:a0:dd:24:29:1a:9d:ea:ca:4c:82:c6:28:c9:
7f:1b:eb:22:17:d8:34:c2:6f:69:5d:b9:c1:00:fa:09:5a:1e:
cb:fe:07:06:6e:5d:03:65:85:4d:8a:c3:43:d0:ef:88:59:12:
17:cf:c9:30:14:87:16:de:94:1a:0f:2f:4b:34:9e:76:0b:81:
e7:05:9a:00:8d:1f:ba:ef:77:e2:38:a2:46:d7:eb:37:35:f2:
ad:b8:ef:20:64:09:cd:15:fa:f5:09:4f:da:d2:c0:45:50:a1:
0d:6f:5b:5c:7b:11:a3:79:06:4b:a2:3b:27:ce:19:ef:fd:20:
6a:a9:77:6a:04:69:36:a2:0a:c2:87:9d:6c:53:e7:72:40:08:
45:0f:32:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:38:04 2025 by rpki-client