Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
File: KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft (raw, json)
Hash identifier: WwYsUdfYz9V5U4jLxPMbriiMYdaR3ENKxjdnnzerbbY=
Subject key identifier: 4C:05:91:64:1E:A4:8C:9B:5F:96:AE:57:E1:87:D9:88:09:41:09:06
Authority key identifier: 2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
Certificate issuer: /CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Certificate serial: 0197B77CB8D6A5FEB754D1BAB46F5E82E754
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
Manifest number: 0DAF
Signing time: Sat 28 Jun 2025 17:01:33 +0000
Manifest this update: Sat 28 Jun 2025 17:01:33 +0000
Manifest next update: Sun 29 Jun 2025 17:01:33 +0000
Files and hashes: 1: 3tVWAqpuhZmIvirALPURMbWbRUo.roa (hash: 8vZgncUoPoI0S65ff9n3cIU9sKbrNMXpH1mUnl/CdOM=)
2: GerACxDWw1b6KGz6kGs5iVp2ois.roa (hash: 4GcODZKqecND9v8xjlb0j4xGLtBy9xZhAi6ymZShRcQ=)
3: KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl (hash: /3oAHF//h5htx5YhqaMHONH5oFbdwmcErf0nwkMNetA=)
4: LEyJ2WNBj9cTPetK4hsEfLcBcEI.roa (hash: WmOLEifdPoH/joG2SNYp6mcbI8myXya9UUZozRyBF44=)
5: Qy3Q7lh00t0205L0nhmAvt2uoOs.roa (hash: a4ie5/FL3GVO5YHgzPjyXYH6PIkYqfX1mb+x+F8lR9c=)
6: X35BdP6fZcPzqxMLjnciq7uISgs.roa (hash: X6IFONVs0ZqJ9lk+Np5sgqP+DTo255gzewtTiaP3PC0=)
7: eGuHIFNh-O-K6vz68gcxBeLPa18.roa (hash: G6cEnCf7JWL4wnvSWWO7ELeSvpGDDJYGerFFAWSt9CA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:b8:d6:a5:fe:b7:54:d1:ba:b4:6f:5e:82:e7:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Validity
Not Before: Jun 28 17:01:33 2025 GMT
Not After : Jun 29 17:01:33 2025 GMT
Subject: CN=4c0591641ea48c9b5f96ae57e187d98809410906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:45:c8:2a:66:7b:56:52:13:c2:8e:16:76:ae:
5a:e6:89:25:4d:38:81:ec:22:62:73:02:fd:38:4a:
f2:40:f4:7f:fa:8c:41:9f:09:85:a1:ca:da:59:9b:
b2:a8:40:ee:ed:22:d9:65:db:07:01:26:f1:1e:08:
19:4b:8a:cd:c1:0a:4b:eb:e8:c7:c6:a2:ec:db:5e:
b7:93:b8:15:17:26:63:c7:24:35:22:07:8e:93:ea:
b8:41:c0:7c:76:ca:7a:2a:a7:fa:40:5d:b9:0d:9d:
c4:63:34:85:bb:f3:2c:68:54:db:9e:13:b5:22:d4:
08:bf:0b:39:2d:85:ab:4f:6c:b8:47:e2:fc:3b:48:
9e:a7:0d:1c:d5:97:9a:6c:e9:f8:78:5e:cc:bf:86:
e3:3f:03:d1:3b:ef:f7:55:49:f2:ce:3d:2d:25:fe:
ed:ec:53:07:be:91:a7:b4:b6:ca:d7:ce:3e:4e:8b:
20:17:8a:d5:15:0e:17:b8:d8:45:ba:71:a7:0c:bc:
b7:19:54:d3:88:ae:39:94:86:b4:0b:bf:ce:cc:34:
ea:c9:ea:54:4e:88:64:35:2f:49:23:96:be:0d:c8:
d0:d6:25:9d:1a:32:02:b4:5a:c0:a8:13:2a:2e:f6:
a4:5e:ec:4f:40:80:48:96:d5:78:fe:8d:8c:9d:a6:
83:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:05:91:64:1E:A4:8C:9B:5F:96:AE:57:E1:87:D9:88:09:41:09:06
X509v3 Authority Key Identifier:
keyid:2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:f9:3a:15:50:52:a0:a4:18:39:92:63:91:12:99:87:60:c7:
4f:42:66:16:67:89:85:2d:86:6b:99:fc:29:f6:3a:96:eb:7c:
77:94:d9:f3:b0:69:de:e1:be:47:31:84:6e:5e:ed:ba:71:4e:
bb:85:a3:cd:56:4f:a7:53:05:67:50:78:22:c9:5f:d6:0b:82:
c3:1d:c1:3f:5b:6f:16:4f:25:61:57:f8:c4:8d:d9:f9:5f:63:
c8:02:a5:3f:35:20:02:78:09:82:ee:29:dd:92:c5:f1:d5:52:
df:a6:ad:a6:2b:79:c9:36:78:cd:14:8b:e4:82:6a:be:9e:eb:
18:0e:e2:55:49:67:59:cb:58:db:4c:3b:21:27:59:05:83:e6:
f5:c2:95:0a:a0:33:c8:7e:5f:a1:53:ad:2c:00:58:d6:b4:4a:
41:b1:c6:32:48:5c:26:41:d7:a7:77:47:75:ca:33:df:ab:4a:
63:b8:d6:d9:ad:c8:00:b6:c1:1d:1a:a0:fd:11:4a:82:9a:ab:
f6:a8:27:a7:37:ac:e4:07:0a:22:8e:63:26:7f:c4:c7:bd:36:
87:58:c4:7d:05:ca:f5:80:a3:91:c7:6c:58:89:0a:e7:0c:f4:
bf:6c:bc:b6:fb:d4:a9:2a:07:b5:df:e5:a5:e9:4f:ce:31:b3:
c4:38:e8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:30:16 2025 by rpki-client