Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: RRPzbVheezA0+dhf6AGYqkVdBuRHfVqElD6NB2cA1G0=
Subject key identifier: 55:1E:18:0E:5D:2A:8C:0E:3A:20:CE:81:38:11:8E:F7:A4:6B:72:74
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 01969B2B80A3E24F7DFF187D144DAAF548A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1522
Signing time: Sun 04 May 2025 12:00:41 +0000
Manifest this update: Sun 04 May 2025 12:00:41 +0000
Manifest next update: Mon 05 May 2025 12:00:41 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: T0SGf7b98iD4jqNM4iz3qaRvqPYcKQ5L/PpexcsiWus=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 12:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9b:2b:80:a3:e2:4f:7d:ff:18:7d:14:4d:aa:f5:48:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 4 12:00:41 2025 GMT
Not After : May 5 12:00:41 2025 GMT
Subject: CN=551e180e5d2a8c0e3a20ce8138118ef7a46b7274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:10:b9:6b:4e:af:93:4a:e9:75:42:08:f7:2d:
91:91:be:e7:92:e4:7c:34:40:36:50:88:8c:b1:c0:
43:cc:6c:a9:c2:91:23:74:ca:9d:5f:9c:62:ec:8a:
fb:24:0c:a6:63:99:d5:9d:98:3a:29:e1:30:b2:c7:
fe:1f:49:a2:ac:6c:47:e7:be:f2:a3:31:d0:f7:c4:
9b:17:8e:88:b1:27:43:05:aa:a5:62:7c:e7:63:54:
c0:4a:6e:f7:56:3b:2b:f3:a2:06:7e:22:bf:f4:65:
ce:62:0f:78:64:09:a4:08:fa:06:06:f4:fe:b6:ac:
8d:7c:4a:c1:89:ae:46:27:0d:ff:72:ae:76:a4:b9:
46:91:52:86:bb:55:b3:94:30:99:a0:65:e7:28:fd:
a1:72:d8:48:14:c5:ce:de:b6:15:a8:62:59:de:5f:
19:30:80:60:13:60:13:06:d7:3e:40:de:ee:08:37:
33:63:b9:74:70:e9:b4:0d:b0:c1:55:7f:be:3e:1d:
48:c4:b9:0e:af:70:36:b7:a3:b6:98:aa:6a:99:c8:
e1:2d:38:be:e8:6b:a3:b5:17:93:f3:29:e3:4c:ed:
c8:40:78:b9:6c:0c:2e:5e:1a:65:ee:54:67:83:98:
3f:f1:6f:b7:f0:b5:72:9a:d9:bf:02:39:0d:81:10:
68:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1E:18:0E:5D:2A:8C:0E:3A:20:CE:81:38:11:8E:F7:A4:6B:72:74
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:b0:ee:74:84:a7:11:06:5d:2e:57:aa:e4:40:75:6b:10:08:
08:23:d0:b1:e8:1f:4f:83:25:18:a9:8c:32:07:a9:0d:84:94:
53:fe:81:b8:ae:6b:de:fd:3a:52:a8:c8:89:15:c6:cb:7e:b5:
36:cc:3a:98:ca:e1:89:5c:e2:41:19:df:6d:78:59:41:b9:50:
8d:5d:b8:68:4e:59:93:1f:a4:81:c5:dd:70:97:95:2f:09:15:
a9:b5:da:fb:1f:8e:cd:e1:b9:49:e6:9e:b4:fe:ba:e4:4e:3f:
09:ac:55:d1:79:d2:82:d9:bb:74:d7:a3:a8:e8:d6:6a:67:b7:
aa:6e:c2:5a:5e:b2:b2:23:fe:0d:2a:25:bb:84:88:e5:c8:fb:
4e:d4:e8:47:e8:0e:0d:80:89:a3:72:7d:fe:39:b5:f2:5e:27:
69:58:05:02:19:3e:10:e5:3d:f8:3f:14:17:01:75:c0:c0:0a:
71:59:a4:26:a4:f5:46:ad:d2:71:43:65:f6:2c:d8:78:b6:5a:
e8:5c:87:37:ce:a9:6e:e2:de:eb:82:66:7c:12:71:df:be:2a:
e5:85:8b:29:30:6c:2e:e1:0d:0a:be:bf:eb:72:6d:e3:28:1f:
c1:8d:33:93:e5:af:91:88:f3:44:78:42:01:e8:81:f9:b3:e5:
11:d7:72:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 22:45:08 2025 by rpki-client