Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: Z9c0X3JXf0v5uaL5ro8Q8zFJy2kKqd/e7bPsvINDRHY=
Subject key identifier: 0C:65:69:59:2B:79:EA:4A:FF:8E:2A:83:4E:4F:E3:25:A7:3B:A7:B5
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 0197B7B3747958393BE5C58786656C673EC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 1272
Signing time: Sat 28 Jun 2025 18:01:20 +0000
Manifest this update: Sat 28 Jun 2025 18:01:20 +0000
Manifest next update: Sun 29 Jun 2025 18:01:20 +0000
Files and hashes: 1: mN-Gq3CnQOseJQb6vbylzDVdWSg.roa (hash: fOE9ILnEXk1PyxS5P7XqjGQMPFnkivt3IHprv8lvkaM=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: q+Xl4O6u5p6ZkVZDUIWZIzMGqzgkIEbB2rl5bSP5wYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:74:79:58:39:3b:e5:c5:87:86:65:6c:67:3e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: Jun 28 18:01:20 2025 GMT
Not After : Jun 29 18:01:20 2025 GMT
Subject: CN=0c6569592b79ea4aff8e2a834e4fe325a73ba7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c3:9e:05:64:93:b8:5a:c1:56:38:ab:db:a8:
cb:bf:f9:86:a2:72:50:54:20:9b:58:c3:3f:f8:fb:
9a:60:78:c8:f6:80:f5:05:b8:37:91:54:92:b3:d6:
ff:d5:c7:12:03:8c:a7:1e:3c:37:b4:06:df:42:96:
f9:46:b4:4c:ab:87:e6:04:13:81:9d:0e:d4:5f:5d:
85:e2:e2:e3:74:f7:4b:83:2c:9d:22:bf:4e:ae:a6:
12:0b:57:2d:50:72:03:68:28:18:c8:a7:82:1e:a7:
79:a7:af:5b:13:62:03:71:d0:ed:3b:76:71:84:68:
2d:06:92:3e:bf:91:e5:7f:b1:d5:91:fa:53:19:5b:
2f:3d:20:bc:ea:7c:fc:fc:99:6e:5a:a9:ef:18:76:
87:f9:0d:e9:d9:a5:0e:72:56:ed:9c:73:b6:78:8d:
68:27:43:0e:e5:b7:e1:48:d4:55:2b:33:82:3f:c0:
b6:0c:cc:12:6a:6d:e8:d1:14:e1:5b:69:d9:1c:f5:
81:8d:8f:71:e1:20:33:bb:5d:ac:59:b5:a7:00:32:
bb:50:8e:be:a8:6e:36:fa:f5:46:5d:8f:7b:e0:72:
36:7e:90:1c:ef:5e:d3:5b:cc:e9:ab:19:e1:9a:38:
ab:68:3f:39:fb:18:77:ff:fe:b8:60:bb:aa:76:38:
10:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:65:69:59:2B:79:EA:4A:FF:8E:2A:83:4E:4F:E3:25:A7:3B:A7:B5
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:42:64:7f:6c:87:d2:4e:83:fa:1c:b4:f6:e5:89:43:b8:14:
50:7c:59:6f:32:9c:70:63:5b:cd:dd:ef:07:1d:c8:7e:2b:7b:
50:e9:09:bb:c0:21:d2:3a:00:54:f5:52:99:3b:dd:0c:da:dc:
49:32:93:44:b2:f2:ca:f4:81:08:18:91:04:6f:20:17:85:32:
59:da:54:3d:8e:d5:81:56:e0:99:49:db:49:91:c8:ec:1a:8a:
6d:27:b6:5c:97:7d:f6:0d:f2:26:71:9a:63:e7:b7:c7:f9:a8:
4c:0b:e0:69:2d:0b:da:eb:50:9a:b7:a0:61:5b:85:6a:40:af:
0a:15:48:a5:70:72:33:69:bc:d4:29:0e:a4:b2:6d:7e:10:fc:
42:90:79:66:55:14:59:36:02:aa:11:70:07:90:d4:c0:3e:55:
bb:3e:a4:5f:7a:d6:df:47:20:66:a9:12:e5:f7:75:71:73:0c:
03:8d:14:86:fc:70:0d:d0:dc:5e:e9:cd:51:1d:b5:51:80:d6:
ab:6b:7a:12:6c:5d:5c:d2:b6:9c:0b:60:13:e4:e0:18:7e:40:
ef:d6:19:71:fc:c5:9f:3e:19:8d:9e:ab:99:6b:9e:f5:d1:6e:
d2:9f:08:5d:e4:58:31:33:29:f9:95:d9:ca:bc:f6:65:98:6b:
06:a0:6e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:41:35 2025 by rpki-client