Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
File: KHtQElUXlEJ0oUa7rNZOaRog-gY.mft (raw, json)
Hash identifier: x87I4oFSiiUjKK1OpaurphmgPRhPJL0fQdoY3r3yBG8=
Subject key identifier: F7:AF:C5:24:27:4C:B2:3C:A0:4F:E4:2D:1A:90:F6:63:CC:5B:65:FE
Authority key identifier: 28:7B:50:12:55:17:94:42:74:A1:46:BB:AC:D6:4E:69:1A:20:FA:06
Certificate issuer: /CN=287b50125517944274a146bbacd64e691a20fa06
Certificate serial: 0197B88F821ECDDB3A5C59C8728438BEA6C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
Manifest number: 0E60
Signing time: Sat 28 Jun 2025 22:01:41 +0000
Manifest this update: Sat 28 Jun 2025 22:01:41 +0000
Manifest next update: Sun 29 Jun 2025 22:01:41 +0000
Files and hashes: 1: KHtQElUXlEJ0oUa7rNZOaRog-gY.crl (hash: wdPhvKWs21omVLc9YefY9ykxi4vuDAlvGcom08Z9nNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:82:1e:cd:db:3a:5c:59:c8:72:84:38:be:a6:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287b50125517944274a146bbacd64e691a20fa06
Validity
Not Before: Jun 28 22:01:41 2025 GMT
Not After : Jun 29 22:01:41 2025 GMT
Subject: CN=f7afc524274cb23ca04fe42d1a90f663cc5b65fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f1:f0:38:06:db:11:90:6b:8f:85:1b:f1:0b:
af:da:73:59:49:21:ca:38:37:41:c3:08:97:f8:ca:
7a:8b:84:ec:d1:16:02:d4:02:ae:14:55:37:4d:1a:
83:e8:86:d0:c5:29:de:32:58:99:28:94:5b:7b:e0:
cc:5b:92:6a:b8:d0:c5:96:77:9c:ad:39:c1:42:94:
69:b2:50:0d:70:a6:98:f6:75:69:d0:66:b7:04:98:
20:f7:c3:39:ac:2c:16:ee:1d:ce:46:16:cc:77:a5:
ef:24:75:04:08:b6:1f:f5:01:81:4b:0e:7d:f7:c3:
99:99:00:8e:50:e9:3c:e6:39:7d:29:bd:40:f6:55:
03:75:0a:e7:b0:b1:f0:0b:9a:be:f3:c2:62:08:3e:
58:c9:01:b2:69:48:ea:7f:00:b5:84:6c:86:4f:8b:
0d:b0:b6:31:55:2c:83:ee:37:35:c3:d6:ea:e7:3b:
86:40:a4:9f:01:e8:07:cb:4e:8c:70:13:53:03:e2:
cc:14:a2:a2:04:2f:d0:a8:21:8b:29:98:0e:d9:c4:
a1:9c:da:ac:0c:26:db:6c:7f:9c:10:fb:ad:07:bf:
44:f1:e8:85:2d:77:6e:6e:e9:00:39:0d:b5:cf:86:
9e:bb:61:94:7c:31:42:3d:e2:a2:c8:f5:5f:8e:a1:
d8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AF:C5:24:27:4C:B2:3C:A0:4F:E4:2D:1A:90:F6:63:CC:5B:65:FE
X509v3 Authority Key Identifier:
keyid:28:7B:50:12:55:17:94:42:74:A1:46:BB:AC:D6:4E:69:1A:20:FA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:e9:a3:f7:eb:80:02:83:b5:18:19:d9:1f:7c:7e:95:d3:d9:
82:92:4d:84:b9:85:81:1e:eb:f7:9a:87:0e:a9:e3:d9:5b:f9:
24:4d:bf:ce:3c:96:0e:de:50:62:51:ad:55:bf:0d:bb:ba:4c:
0f:e9:d2:6e:67:d5:75:9e:5c:68:fb:3e:24:74:1f:ba:46:07:
cf:49:ac:22:dd:2d:a1:05:87:a7:55:f4:7d:a3:4c:5c:ca:49:
b0:4d:4a:f6:b4:dc:d6:1c:b4:b1:46:5e:2e:c7:6a:3f:8b:2d:
12:a9:5a:74:e1:14:03:99:6b:63:58:a4:db:1c:19:a6:28:af:
f5:a0:d1:f7:ba:47:9e:5b:b3:92:f4:a8:aa:9d:20:fc:ba:eb:
ef:7e:02:1d:5c:4a:30:8d:24:c9:7f:97:fe:59:48:1f:1f:c6:
6c:19:38:01:65:fb:2d:1e:a3:e3:25:18:ce:47:a4:57:58:0c:
b0:0f:20:e1:1c:e0:9a:f7:2d:dc:c0:04:b8:1c:17:01:21:80:
d6:9f:ae:a1:65:b7:fd:0a:01:12:05:d5:d3:cc:da:84:a5:4d:
86:eb:e5:db:e6:e0:b7:3d:7c:8e:0a:7d:25:d8:d5:15:8e:4d:
11:77:39:ea:cd:c7:c9:ca:e9:4e:ed:8b:f1:f7:5c:53:d8:d3:
5f:32:89:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:29:54 2025 by rpki-client