Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: 3buXuh2uE1YUjw9nlVTZx5b1gVRZCSF0Y0zeLnIcMRc=
Subject key identifier: 39:18:62:82:5D:B9:6B:F4:DD:8B:40:DF:7F:55:16:D1:4D:7F:56:50
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 0196CB061B368F98C2122631A2E77B5FF218
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 153C
Signing time: Tue 13 May 2025 19:01:37 +0000
Manifest this update: Tue 13 May 2025 19:01:37 +0000
Manifest next update: Wed 14 May 2025 19:01:37 +0000
Files and hashes: 1: C324i-QiLStBQtj8SlSM_WsRhgA.roa (hash: 57MQFbrSaZ/38tAVb1G6ejMsXoqYvy5V/+YD5WOhbAY=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: W7GEiF4GIEcgEelT2yipRvBUa4E4yF4QWHs9XWuh8GU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 19:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:06:1b:36:8f:98:c2:12:26:31:a2:e7:7b:5f:f2:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: May 13 19:01:37 2025 GMT
Not After : May 14 19:01:37 2025 GMT
Subject: CN=391862825db96bf4dd8b40df7f5516d14d7f5650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:30:ed:49:8a:91:96:a5:9c:fb:a1:fa:7f:c9:
15:8c:df:b8:0d:a2:d6:2d:94:84:72:43:af:60:42:
23:dc:46:51:75:1e:53:83:10:b3:2b:da:5b:e8:e2:
0d:25:35:a4:54:b0:ce:59:75:ef:ae:40:9e:d2:e7:
fb:5b:27:b4:f4:2d:b6:31:a1:87:3c:f3:b2:f0:e6:
a6:49:98:d2:0e:ec:75:7e:05:d1:cf:93:fa:40:41:
61:f9:fd:83:f6:a7:05:17:de:96:89:03:44:43:32:
62:44:6b:f0:38:cd:77:76:02:dd:24:8e:c4:b2:ba:
81:8b:e5:29:c6:7b:f5:83:04:2a:d9:0e:fb:c7:96:
82:e8:58:cb:6c:32:7b:db:2f:4a:4c:c0:95:05:8f:
44:60:e3:4b:63:ba:31:d7:0b:8d:bf:48:c7:44:dd:
c6:e6:1d:2c:72:84:9b:66:3d:2c:1e:5a:d1:e8:34:
a2:97:29:47:e8:db:c6:0e:96:5f:4e:2d:f3:9b:6a:
55:d5:70:99:5f:81:56:27:e2:ff:46:f3:01:c4:4c:
be:6e:22:4b:f1:70:aa:e7:b6:63:8c:fc:4f:9a:6c:
e4:f7:ac:a7:24:7d:87:a8:15:d4:a9:f3:88:d4:80:
4b:56:c4:0c:f7:69:31:48:98:d2:de:90:3c:cb:fe:
9e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:18:62:82:5D:B9:6B:F4:DD:8B:40:DF:7F:55:16:D1:4D:7F:56:50
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:76:ce:95:8e:7e:43:94:08:06:55:df:60:fb:7c:09:ef:15:
39:75:71:ff:ff:1d:6e:bd:38:fd:4f:b5:10:07:74:05:63:70:
0c:1b:5e:76:72:bb:2b:e3:6f:fb:f1:53:ef:a9:07:b1:25:8e:
06:5f:cf:55:15:b6:d3:da:ae:81:aa:ca:8e:d1:4f:75:c4:e0:
ee:22:4b:cd:5d:e0:1e:a3:95:55:85:61:84:2d:9c:ce:a0:de:
e0:e4:2a:19:c3:f5:bb:40:81:b5:a3:04:10:92:bf:84:df:69:
6d:28:79:e3:02:1b:58:46:b3:89:39:32:58:a0:91:c2:b3:af:
71:e7:e0:c3:8a:f4:10:8f:bc:df:a5:2b:cd:e8:fb:ee:ea:ca:
76:5a:21:93:7f:ad:6c:d6:6b:22:c3:ca:1f:40:71:c3:eb:6b:
f6:dd:68:7f:b6:9f:cd:0b:48:3f:98:1a:92:3d:03:8b:ce:0b:
c7:d0:af:63:68:cb:ad:0a:02:f3:14:6b:aa:6a:62:5c:32:7d:
9f:f9:e0:7d:4f:aa:21:a3:9b:26:df:24:71:8d:25:57:5a:72:
89:74:4a:b3:38:ba:5c:b3:d6:0d:e2:aa:40:13:0a:94:53:ed:
19:35:57:24:4f:1b:0b:b0:77:64:51:68:8c:22:32:89:9d:3a:
4f:33:78:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 01:12:09 2025 by rpki-client