Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
File: KhmTnyGLthMV6bOzez24WWCXXRQ.mft (raw, json)
Hash identifier: XmiA8I/SY2YI+xgAIBIRE+CXlcUUvsezuqaYZhCej6o=
Subject key identifier: 9C:E3:58:D6:24:3A:C5:B4:B4:66:06:98:57:8C:7B:0A:3D:59:7E:6D
Authority key identifier: 2A:19:93:9F:21:8B:B6:13:15:E9:B3:B3:7B:3D:B8:59:60:97:5D:14
Certificate issuer: /CN=2a19939f218bb61315e9b3b37b3db85960975d14
Certificate serial: 0196B8C7C5A7C17682E991B507F9C207BA22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
Manifest number: 0F2C
Signing time: Sat 10 May 2025 06:00:22 +0000
Manifest this update: Sat 10 May 2025 06:00:22 +0000
Manifest next update: Sun 11 May 2025 06:00:22 +0000
Files and hashes: 1: ICnu7sUwpSSY15uEDFVsgADJKAc.roa (hash: OMIgQNcZqzMDzM+I0pk5KXUbjDdmpf89SBEO3vtX8ZE=)
2: KhmTnyGLthMV6bOzez24WWCXXRQ.crl (hash: 9LCrbQHoyCRVIXm4uSaR86XImM/1AsyIx7qcyn6Ier0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:c7:c5:a7:c1:76:82:e9:91:b5:07:f9:c2:07:ba:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a19939f218bb61315e9b3b37b3db85960975d14
Validity
Not Before: May 10 06:00:22 2025 GMT
Not After : May 11 06:00:22 2025 GMT
Subject: CN=9ce358d6243ac5b4b4660698578c7b0a3d597e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:21:4b:2d:a7:7b:3b:d3:e3:e1:85:00:41:84:
84:67:57:03:e1:99:49:6b:7a:f6:d6:93:cc:2c:4f:
9c:87:59:46:c1:a0:45:d8:c7:5f:a5:f6:75:56:bc:
78:83:08:aa:8f:9f:5b:e5:a2:d4:91:18:7b:80:f1:
5d:7e:90:09:13:b0:75:f8:7f:65:98:8a:fb:91:25:
7d:ef:fe:c3:07:25:5d:f3:53:0b:ca:81:35:69:7e:
e5:ec:46:7c:f6:9f:4a:0d:ac:76:31:78:29:dc:17:
f2:6e:1b:01:27:f4:d6:9f:95:18:07:63:75:82:04:
be:34:eb:1b:01:67:3c:a0:a1:b4:4e:0e:5f:e9:3b:
64:ad:87:e6:ac:86:b4:5c:d3:fb:64:c5:87:a8:6a:
75:85:10:e4:82:28:40:ab:e3:77:6b:cc:13:71:64:
93:c0:55:2d:23:73:6c:4f:a7:46:2c:a5:95:7f:0e:
22:07:04:33:bc:0e:39:c5:78:f5:c0:8c:c6:e5:0d:
f6:6a:32:55:97:bb:4d:43:fb:4a:ae:a2:2c:35:3d:
f9:da:a9:fb:a3:47:e7:a3:3e:a3:c0:6a:a6:b3:89:
75:96:16:b8:74:05:a5:c8:29:e4:05:5e:83:75:14:
31:c8:a4:0e:3f:eb:25:16:f5:c4:7a:d3:11:f0:45:
90:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E3:58:D6:24:3A:C5:B4:B4:66:06:98:57:8C:7B:0A:3D:59:7E:6D
X509v3 Authority Key Identifier:
keyid:2A:19:93:9F:21:8B:B6:13:15:E9:B3:B3:7B:3D:B8:59:60:97:5D:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:1b:78:8d:23:0a:37:e5:b3:1a:d5:a9:c7:95:c7:13:80:4c:
94:e1:d9:fa:4a:76:dc:11:2d:65:3d:16:d9:a5:95:78:ec:9a:
bb:6b:6c:75:00:be:1e:e2:11:b2:18:50:ff:19:6a:fe:59:0e:
23:41:c7:b1:67:c4:94:65:2e:2d:68:66:67:12:57:c7:2e:ce:
c7:99:f0:e6:03:99:0c:2c:50:e6:5c:cb:c6:a6:fc:ee:b5:1b:
17:82:1c:b2:64:58:20:09:7a:6c:6e:b3:5f:b3:89:19:0f:ab:
5e:df:a9:3d:c9:99:58:3e:0f:9d:08:ea:d6:d7:fc:fd:34:72:
83:81:8c:d7:6f:86:a8:99:3c:2e:8e:b6:82:b0:50:31:d4:d1:
fe:b1:f8:96:f3:4c:8e:95:02:ed:f7:ae:5e:b0:40:b5:36:60:
5d:5b:a9:26:65:d5:66:d8:81:f4:6b:f1:27:3c:9a:00:ff:8c:
f2:30:89:88:1d:ec:f2:1d:b2:c2:c1:c9:bc:e7:a1:92:1d:87:
d7:f0:c0:96:71:e8:83:bc:8e:ad:21:1a:7c:a1:78:29:25:35:
fa:30:c8:7c:a4:94:ac:02:40:c0:25:b7:46:8a:f9:eb:ea:25:
b1:04:90:30:9a:56:87:fc:ec:b3:66:82:39:60:96:74:55:91:
f8:c1:3c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 14:16:05 2025 by rpki-client