Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
File: kAhyNvFhxccF73Pf6eXjmG5xJsg.mft (raw, json)
Hash identifier: ZPdEdqkWRMtKI7MXCtMqUkM1sAU85LM9HFV7kEW45es=
Subject key identifier: 8D:7C:EC:F2:6F:6E:F4:39:A3:53:E3:58:CA:2B:8B:81:7A:D7:14:9E
Authority key identifier: 90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
Certificate issuer: /CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Certificate serial: 0196C53A01B69C2D60DBFC9C20CC191B0A43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
Manifest number: 04F3
Signing time: Mon 12 May 2025 16:00:35 +0000
Manifest this update: Mon 12 May 2025 16:00:35 +0000
Manifest next update: Tue 13 May 2025 16:00:35 +0000
Files and hashes: 1: ilmUYJP9An2tvy3PssJlCv8HfSc.roa (hash: 1qXew5Oe7BdIwNw0qvNlQOP+TeLMGt2S2brGQ7Jg7lc=)
2: kAhyNvFhxccF73Pf6eXjmG5xJsg.crl (hash: rcgmaTxeVF/v0U+zYS0DNWzbdjJMb+ct9fYsUzirhaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:01:b6:9c:2d:60:db:fc:9c:20:cc:19:1b:0a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Validity
Not Before: May 12 16:00:35 2025 GMT
Not After : May 13 16:00:35 2025 GMT
Subject: CN=8d7cecf26f6ef439a353e358ca2b8b817ad7149e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:df:b3:4e:39:82:b2:2f:d5:84:fe:b1:4b:34:
31:3a:69:d3:04:0d:4c:34:ab:4b:e6:2e:d5:7a:ec:
c5:b6:b1:1b:10:c2:2d:d3:47:8b:2a:a7:ce:ca:80:
05:a7:9a:50:e8:85:2e:87:b4:5e:55:53:29:bb:1a:
78:5a:7d:22:77:b6:1c:63:21:38:bd:cc:34:15:f8:
48:58:86:c1:94:b1:35:cd:7f:27:dd:b2:b9:d4:f9:
30:e7:be:b9:9b:0f:c4:e5:3b:5e:27:9c:10:36:8a:
4e:ed:25:dc:78:ed:5c:c5:a0:5c:45:83:5a:94:1e:
73:6d:5e:96:6e:80:6d:21:45:99:18:43:53:1e:a9:
9d:f7:15:ff:c5:50:9b:6a:be:e8:8d:bc:0b:ad:e9:
0e:11:09:f3:ba:f2:2b:30:51:82:d2:58:68:cc:ef:
7f:e8:24:81:8a:16:40:14:ec:ae:4a:67:bc:b5:76:
e2:ff:fb:6c:0c:c6:15:ba:32:bb:08:b8:3b:72:0d:
2e:66:6f:df:cf:c3:47:e2:50:88:9e:df:b0:56:ba:
76:1e:66:11:e8:a1:10:a7:ba:47:83:71:0c:c0:20:
0f:0d:db:fd:d7:bb:44:d2:09:fa:d6:ef:4e:04:8b:
b7:b7:c8:7a:76:02:35:ea:04:e7:9a:5a:0d:53:0f:
9f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7C:EC:F2:6F:6E:F4:39:A3:53:E3:58:CA:2B:8B:81:7A:D7:14:9E
X509v3 Authority Key Identifier:
keyid:90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:e7:9b:d9:d0:ea:9c:96:b2:8f:dc:63:c5:31:5c:83:78:ce:
ef:4b:e9:02:56:10:0a:4b:9f:32:3d:42:27:ac:79:58:46:47:
0b:63:d1:1f:d8:be:82:3f:2a:3a:55:51:45:d3:1c:d3:4b:47:
c3:47:69:e0:f7:6f:9f:5d:aa:74:f4:0f:c4:8e:96:08:db:77:
46:35:1d:1d:03:b1:1c:e1:48:29:b3:b2:05:74:86:00:a4:b7:
8d:12:c3:0d:b3:c7:1f:de:51:d5:2d:38:6e:0d:0d:41:89:f6:
0b:aa:32:a2:08:9d:74:d6:5c:ac:23:e8:b8:e0:5d:52:a2:cc:
1e:b3:42:93:2d:16:5c:4c:08:b4:8f:39:ca:23:6b:4a:d8:f3:
2e:aa:b1:e9:df:07:be:e9:25:bb:90:4a:d1:55:91:c0:53:4a:
6c:93:20:35:98:2f:dc:13:12:02:f0:4e:ae:71:2d:2e:da:27:
68:bd:5e:c5:ce:67:f6:66:26:30:7d:a3:08:3e:12:5f:ef:81:
1f:96:96:20:00:e3:a7:01:39:aa:55:46:3f:83:49:17:c6:17:
51:1a:5f:07:81:3a:30:31:b0:52:e5:3e:bc:bc:cb:65:21:74:
d7:a0:51:69:50:2f:30:cb:e8:33:5e:30:15:4f:44:2e:d4:d5:
4a:74:84:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 23:09:55 2025 by rpki-client