Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
File: k680jsWk5l4MsTeCGuahOe1_rAA.mft (raw, json)
Hash identifier: whKL7l5KzJcI6vD5G1iT9HOx4cf8ndszEZjVX224Bms=
Subject key identifier: 9A:1E:C4:1F:D0:ED:9D:87:4B:71:D9:E3:E1:01:66:1C:BE:BE:28:0F
Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Certificate serial: 0197B7EA40D42C51993BA12135E34A0561B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
Manifest number: 1546
Signing time: Sat 28 Jun 2025 19:01:11 +0000
Manifest this update: Sat 28 Jun 2025 19:01:11 +0000
Manifest next update: Sun 29 Jun 2025 19:01:11 +0000
Files and hashes: 1: gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa (hash: MC8Gw1INJPJBRmJZki75GCuCmqozYCvUY/UxQ+rSFh0=)
2: k680jsWk5l4MsTeCGuahOe1_rAA.crl (hash: qAft9I25hu3hM1tCK78R9N6PE4X/qHrBuU99LnzGj68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:40:d4:2c:51:99:3b:a1:21:35:e3:4a:05:61:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Validity
Not Before: Jun 28 19:01:11 2025 GMT
Not After : Jun 29 19:01:11 2025 GMT
Subject: CN=9a1ec41fd0ed9d874b71d9e3e101661cbebe280f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:dd:17:f1:6c:bb:ce:fb:56:ae:2e:82:bc:4a:
f5:97:fe:ad:02:fa:18:c0:33:72:5d:37:9d:d2:1a:
3f:89:81:ec:63:46:17:f1:56:c8:9f:96:2b:b0:65:
cf:cf:76:72:e5:95:77:18:c1:09:53:e3:6e:e6:42:
93:91:0f:cf:a5:74:4b:a8:48:70:49:d8:94:b2:db:
f5:7d:cd:7e:79:d5:b8:bb:61:a4:a0:97:fa:e3:cf:
4d:75:1f:7f:67:72:e0:b2:4d:dc:0e:1a:9f:62:0b:
0e:bd:38:f1:c3:d4:f6:62:46:53:bd:be:3a:86:65:
22:c0:56:83:ce:be:25:fd:58:0e:78:a1:03:f6:ab:
91:6b:d6:a6:fd:97:d5:03:2a:7a:ca:2b:78:af:35:
19:80:7c:7c:5c:b5:7c:46:e5:e8:6a:37:af:a4:89:
8e:ff:20:32:ea:49:93:f5:1a:63:82:ae:b6:92:34:
92:ff:e4:8c:c8:2d:ac:fe:24:ec:4e:8a:89:3c:aa:
4a:3d:a8:f5:19:58:93:52:8a:d5:28:e6:5c:24:1c:
1f:5f:0f:55:a7:e2:1f:0d:41:48:e4:09:86:b7:65:
0b:76:f8:1c:e9:c3:4d:a9:5e:69:d4:49:2a:1f:1b:
f8:6a:31:40:06:19:1c:5b:80:ac:33:ff:91:1c:3e:
a5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1E:C4:1F:D0:ED:9D:87:4B:71:D9:E3:E1:01:66:1C:BE:BE:28:0F
X509v3 Authority Key Identifier:
keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:22:7b:e8:73:2c:c7:74:6f:d4:7c:e1:a0:31:74:61:2e:5e:
08:b6:98:29:c8:0c:ef:12:c9:72:d0:b3:23:46:f2:b7:60:cd:
71:e5:1b:03:87:38:02:7a:e3:ff:f8:fa:63:6a:20:d2:bc:5d:
e1:de:a3:27:18:44:3d:a8:60:ce:fb:d4:32:60:8a:5c:14:6c:
c2:98:d3:e8:ee:17:8f:58:2a:45:e2:90:7c:18:98:95:3a:f8:
9d:cf:01:0f:ca:c5:f8:d2:67:93:bd:03:65:18:bc:e2:ed:77:
b6:a1:40:b6:09:f6:63:2c:e8:2d:87:8f:b7:cb:af:61:29:79:
4f:64:fb:11:b2:1d:ab:92:cd:6b:ca:bc:66:55:87:df:43:b6:
4b:2b:e2:13:53:fa:65:b8:07:92:99:2a:2a:cf:33:b8:c8:f6:
df:a7:86:ee:33:dc:c6:3b:9b:7d:95:cc:7c:36:9f:52:5e:c1:
ca:ac:8c:29:df:3e:d3:04:c3:c0:f4:31:59:12:96:9f:01:2c:
34:ae:a7:4c:d7:56:0e:cc:cf:d6:e9:9a:50:bd:3f:d1:dd:74:
a5:d4:91:e7:16:11:31:be:c3:46:d4:57:8f:62:98:64:15:0f:
90:e1:8f:e3:bd:11:65:34:a3:a1:bd:c8:66:06:16:ab:7d:c9:
e0:ee:21:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:18:36 2025 by rpki-client