Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: UT8G/iccB4m9ubQL8PWSe6IUtSaZgXnEH9VvEuZc+Iw=
Subject key identifier: 9B:09:4C:86:E3:EE:AC:1C:28:81:7D:33:2C:A1:A4:E3:02:61:EE:43
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 0196AD31D552F3A17442A0C33C83A7334724
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 11E8
Signing time: Thu 08 May 2025 00:00:46 +0000
Manifest this update: Thu 08 May 2025 00:00:46 +0000
Manifest next update: Fri 09 May 2025 00:00:46 +0000
Files and hashes: 1: mN-Gq3CnQOseJQb6vbylzDVdWSg.roa (hash: fOE9ILnEXk1PyxS5P7XqjGQMPFnkivt3IHprv8lvkaM=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: 9hHMY1JOTkbsFwdHnQFTG6KFdfmlUZzF1cRE00KbpuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 20:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ad:31:d5:52:f3:a1:74:42:a0:c3:3c:83:a7:33:47:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: May 8 00:00:46 2025 GMT
Not After : May 9 00:00:46 2025 GMT
Subject: CN=9b094c86e3eeac1c28817d332ca1a4e30261ee43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:02:90:4b:cd:b3:2b:94:62:8b:f2:fd:83:
92:48:4b:c6:2b:5e:0d:f6:5e:fe:ca:60:fd:f4:b3:
d6:de:aa:9b:8e:30:67:07:d0:f8:ad:1d:c4:58:aa:
93:88:fe:88:c6:0a:44:7f:6e:5e:9c:a9:98:c1:08:
bc:81:8e:73:62:79:36:8e:4e:1a:4b:f5:60:44:e4:
d2:7e:38:72:e0:91:6d:8a:8e:4f:41:58:27:22:58:
e3:13:20:5d:f3:ab:63:42:cf:82:85:4a:96:2b:68:
b6:8f:8d:69:01:6a:c6:d8:75:f9:77:54:0e:11:33:
00:c8:70:14:db:cb:d0:d9:a9:f9:d8:98:c2:7d:dd:
95:7c:b4:ea:b5:9e:3e:ae:bd:92:cb:4c:90:fa:1b:
d6:0c:23:f9:da:da:fa:59:56:e1:84:a4:29:b8:a1:
c8:08:8d:46:87:05:a2:72:70:34:ed:04:69:26:a6:
1a:87:2c:c7:c5:d8:b3:27:ba:b1:a8:7d:19:97:83:
d9:b5:26:69:b3:49:6d:49:1b:93:c6:5f:d1:2a:51:
bc:a5:87:49:da:b9:2a:4b:12:f1:36:39:19:ce:e0:
b5:7b:3c:9c:a6:06:d3:74:b1:79:60:07:32:d2:0c:
59:23:27:4b:ec:d7:e2:ed:bf:b0:81:ca:c5:a6:27:
c9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:09:4C:86:E3:EE:AC:1C:28:81:7D:33:2C:A1:A4:E3:02:61:EE:43
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:23:4b:40:83:ed:b1:6e:a5:3a:e5:d4:85:72:04:dc:27:ea:
87:2b:77:52:72:56:13:11:8b:b2:39:58:45:24:8a:d6:b9:b0:
e0:3a:27:90:91:60:d9:b5:ba:2c:18:62:37:29:54:28:38:cf:
41:8c:73:29:b2:32:27:c2:e5:12:7d:32:92:9a:5f:e9:53:3a:
07:2b:b3:82:cb:d4:70:51:df:40:b0:4b:7f:e6:38:cf:5d:13:
7f:b7:45:f4:1b:55:23:a4:0f:2b:78:ed:aa:59:e9:d4:c4:57:
21:5b:03:7a:3e:c3:3a:e9:22:85:1f:cc:56:c9:71:42:41:b6:
47:27:d3:26:63:3b:e7:69:35:e7:d4:84:27:21:33:c0:76:00:
26:73:8a:09:ca:6a:a9:28:19:31:fa:36:57:06:8c:b4:b4:79:
52:ed:f3:ef:9f:98:30:9e:96:19:19:03:0e:11:8f:f7:bb:d4:
4d:90:8d:bd:4f:f3:74:66:cf:e8:48:9c:79:97:48:b6:a0:41:
b8:3f:9f:ac:c3:7e:81:59:51:c9:cc:d7:4f:c8:a6:89:28:00:
27:71:34:85:42:6d:ef:8e:a6:95:39:14:b9:28:89:46:3c:f0:
ea:cc:25:18:ad:9a:19:b9:9f:bf:ea:d0:16:96:8d:a2:37:66:
3d:e4:f8:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 03:10:18 2025 by rpki-client