Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
File: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft (raw, json)
Hash identifier: 8J4OUAxwXHj2ZAoiqg27ULi7Z1C7ynmSQe+DUN2c7mA=
Subject key identifier: E1:70:FA:04:DA:53:55:48:56:43:07:0F:35:67:E5:99:7D:DE:A9:2B
Authority key identifier: 24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
Certificate issuer: /CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Certificate serial: 0196BE256A2ECDEA1EF81893E55E0AD38AEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
Manifest number: 08E6
Signing time: Sun 11 May 2025 07:00:45 +0000
Manifest this update: Sun 11 May 2025 07:00:45 +0000
Manifest next update: Mon 12 May 2025 07:00:45 +0000
Files and hashes: 1: JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl (hash: PNzOm/Owz78PJhT9cHxAg5zmRG9Awrevd1DFR0l7sOo=)
2: sEY4t-bPe6btAR7wv3UJWwU-X2E.roa (hash: aU4yEzDR1E1BJAYcSFYYldSWQZ2ELBxfjYhJldcUrMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:6a:2e:cd:ea:1e:f8:18:93:e5:5e:0a:d3:8a:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a9d84c6d16c083093c3371b4575d36ef448fe4
Validity
Not Before: May 11 07:00:45 2025 GMT
Not After : May 12 07:00:45 2025 GMT
Subject: CN=e170fa04da5355485643070f3567e5997ddea92b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ef:f5:69:5c:35:f9:56:36:86:2c:6b:89:9f:
47:fb:e6:1d:2a:ef:73:9f:b4:d5:a4:b9:b4:de:63:
fb:e9:01:71:be:4b:24:fb:33:21:3e:46:13:8c:4e:
03:47:f0:a8:8b:cf:1d:61:fe:ce:6e:b4:c0:6a:c5:
40:d6:82:86:58:db:ab:5d:33:90:56:3d:fa:50:8a:
2c:7f:ef:a6:67:7c:7e:f6:9f:f0:a7:6d:2b:66:c6:
ad:5c:e3:c8:ba:cb:2f:b7:18:9d:68:a1:bf:32:db:
a4:d2:d6:c4:25:b5:18:7e:c8:84:f8:17:fc:05:6b:
85:ba:76:fc:c8:ac:9f:41:43:f8:6c:dd:b3:6c:e3:
87:f1:94:bd:00:49:a3:31:86:ae:80:11:31:64:27:
19:49:6f:f5:46:cf:4c:46:67:62:3b:f9:55:09:9b:
86:28:38:5c:02:ce:5a:9d:16:4f:ce:ae:6a:80:81:
27:df:35:eb:28:c1:4f:a7:1b:0c:ab:3d:e6:e1:d1:
79:bc:44:aa:25:f0:1d:2b:95:c2:26:70:9b:3c:4e:
54:ca:18:dd:0d:f0:4d:44:3d:2b:18:98:25:39:cc:
52:b6:0e:8b:3a:97:b0:95:0d:64:cf:b3:64:64:b0:
42:48:61:1a:ba:73:07:1d:f8:a2:c2:17:f4:34:cb:
66:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:70:FA:04:DA:53:55:48:56:43:07:0F:35:67:E5:99:7D:DE:A9:2B
X509v3 Authority Key Identifier:
keyid:24:A9:D8:4C:6D:16:C0:83:09:3C:33:71:B4:57:5D:36:EF:44:8F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/05ca1d-c357-48bc-9609-45a534f222f4/1/JKnYTG0WwIMJPDNxtFddNu9Ej-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:38:aa:68:b2:ff:54:ba:9b:be:57:bd:db:76:1d:54:d7:fa:
c7:e5:2c:3f:00:61:02:cb:c2:32:e1:0b:ea:bb:b0:d0:d7:6a:
c1:a4:8a:e0:9c:02:e0:c6:47:c3:4b:09:a6:43:a4:1c:23:b8:
77:3f:32:bf:8f:12:d6:ee:68:8c:56:13:1d:d4:ea:3c:1a:8c:
88:41:62:42:4c:ee:f2:c9:74:fc:8c:04:3f:1c:11:c7:51:96:
85:96:bc:d4:b0:96:53:c0:ce:01:97:7a:7f:06:1e:a1:e6:9e:
42:de:77:97:9d:1b:6f:e8:e4:66:7b:d7:e0:ce:6f:ea:a2:43:
88:e4:0a:2f:aa:06:f3:f9:25:9f:54:3f:de:dc:e7:57:e0:6a:
72:b9:30:d1:1a:74:26:03:e8:bd:5c:2f:3c:3b:da:cf:ee:ed:
0d:d9:c6:09:38:0a:57:60:03:53:0e:a8:0e:a2:ca:58:ac:c5:
e9:ec:3a:7e:cd:ea:bb:7a:d2:7e:c8:78:06:8e:62:89:f8:6e:
18:ab:09:32:ac:e5:ae:df:a1:ee:c1:c1:e4:b1:de:b0:1a:2b:
e8:64:c2:c0:e9:10:17:c7:ba:cb:e3:17:27:d9:ad:93:ec:6d:
74:ab:07:d8:16:d4:b4:4b:70:5a:17:cd:48:68:a6:0b:74:d5:
7d:bb:f4:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:17:12 2025 by rpki-client