Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: 0MFyrqD+wqnGsr3Nj2vF8UXCgsKmrfRbNY82FzMfXv8=
Subject key identifier: F5:39:5F:16:25:7A:99:E2:13:FD:A0:C0:73:8B:D9:D0:C2:93:92:9E
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 0197C04995D616952B88F95FB9750D3E4800
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 0364
Signing time: Mon 30 Jun 2025 10:02:17 +0000
Manifest this update: Mon 30 Jun 2025 10:02:17 +0000
Manifest next update: Tue 01 Jul 2025 10:02:17 +0000
Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
3: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: /Lz8181VwITO68Cij62PYkB8aFwQ13KsY/dBqUcOobE=)
4: OdjteK9gKG4YNaSPtAZxPfbKTlg.roa (hash: C1n8BPEFHA0rRgZVDgK4q8CBrVeD5FeMnjLcyYE1XMw=)
5: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
6: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=)
7: xTf5pi1O1OBOL8Roy41K3aIww6Y.roa (hash: S2VqtYqj28mSbHWyl9+CNpKvGeC5wqTzL6SGHQbpvl4=)
8: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 10:02:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:49:95:d6:16:95:2b:88:f9:5f:b9:75:0d:3e:48:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Jun 30 10:02:17 2025 GMT
Not After : Jul 1 10:02:17 2025 GMT
Subject: CN=f5395f16257a99e213fda0c0738bd9d0c293929e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:33:d3:e7:63:df:83:b3:2f:46:af:3a:c4:dd:
fc:be:1c:91:85:53:6d:ed:62:0f:93:8e:31:ef:e0:
31:8d:17:02:4b:be:01:3f:a0:e0:b7:c7:02:15:e3:
a0:cf:4e:5c:73:52:44:06:3b:c5:d9:92:4a:50:a6:
38:30:9f:6f:55:40:23:bd:57:c8:8d:43:bf:cb:8b:
c0:ef:67:a4:ba:12:15:b8:e7:17:bd:ed:54:07:1e:
2d:51:c0:69:20:fc:d5:af:fd:c3:58:e9:0f:a9:b0:
b4:3f:9e:10:40:4f:00:e8:a3:4e:7f:21:5d:b1:51:
47:8e:c2:1b:bc:2a:fa:51:5a:fd:23:d9:f5:b8:bd:
8f:83:0a:8d:49:e7:6d:33:ad:3f:07:ea:ef:0a:43:
88:2a:9d:80:ce:ca:12:55:a5:92:c4:3b:d4:6f:fb:
08:f2:5e:d9:7d:d5:72:08:f3:81:e8:7b:0b:05:de:
de:f1:3c:63:32:c6:0c:83:6d:73:37:41:3b:2b:50:
ac:fc:e9:84:6c:a7:87:cf:8f:29:c3:7d:82:d8:ef:
ee:3d:9e:b9:91:8d:bb:84:a0:df:8c:d5:62:f4:5f:
0a:17:81:26:e7:7e:f7:d8:a6:b6:a7:48:75:da:b6:
4d:fb:c2:cf:8b:05:01:10:3e:f5:1b:15:29:a5:75:
af:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:39:5F:16:25:7A:99:E2:13:FD:A0:C0:73:8B:D9:D0:C2:93:92:9E
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:56:32:f2:b1:0c:0d:80:d2:58:91:47:da:05:78:a2:7b:a5:
b8:ed:d9:51:43:e6:fd:68:0f:c5:06:30:26:a2:02:fc:eb:10:
3c:c6:fb:1b:83:b0:32:2d:c3:65:73:d3:3b:61:ac:c7:38:3a:
cf:0a:d3:e5:8d:54:61:ab:e1:41:7d:d1:0c:b6:5b:ee:d0:ae:
59:bf:f4:5a:40:3f:2b:a3:6d:bd:89:d8:71:a3:4e:f3:01:50:
70:82:63:6c:85:2b:9b:2f:b6:24:07:61:53:f9:7d:91:b3:55:
a2:04:5c:55:c5:f3:0a:a3:12:7f:07:cd:20:ef:1d:83:b7:06:
74:62:67:be:2f:60:16:0b:99:94:b9:a5:30:da:dc:e2:fe:23:
c3:c8:58:d2:7a:1f:35:de:01:39:c7:92:90:86:8a:f3:46:48:
c2:36:25:a7:3d:26:a7:55:0d:ac:ae:54:3a:72:94:3e:51:f1:
6e:45:1f:11:b9:0d:bf:49:6e:2a:e5:82:2d:b5:b0:8d:e5:c5:
15:41:9f:6f:62:1a:ff:e3:34:1c:53:98:e0:fc:aa:34:f5:67:
c4:d3:1d:17:6f:f4:20:fc:c4:59:12:2a:90:fa:be:ed:bf:ca:
e7:c2:c8:01:27:56:f0:cf:e4:03:5d:1e:70:37:d7:1f:09:f1:
9e:c8:e8:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 18:24:31 2025 by rpki-client