Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json)
Hash identifier: Db65cClriGVt+CtyPTTnVTETat2d/SCnlGd2nKbKF9A=
Subject key identifier: 15:89:91:DB:F7:5B:0A:92:36:CF:A9:B4:6E:17:4F:2D:59:77:5F:A9
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 0197B77CAF1FE091E8A1341FEAA143265324
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
Manifest number: 12F5
Signing time: Sat 28 Jun 2025 17:01:31 +0000
Manifest this update: Sat 28 Jun 2025 17:01:31 +0000
Manifest next update: Sun 29 Jun 2025 17:01:31 +0000
Files and hashes: 1: 5r4roNSh8TWW8XLP5gLpTUYEtC8.roa (hash: AktxI+V17na/V+Hz9k9ha+hVm279Tijdqa0CvwmI/7Q=)
2: Gxhnb8KOTrVvxDF8yuKOv2GjqtU.roa (hash: QO/QE2IRS/pPOvcN+3PpcsYmJwErYvPF742Zst4rEP8=)
3: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: O9NhwJTLKG1LPQA2/ivLe5RgmMIVjvCWJYwKUxJlOXg=)
4: TtvNTrhsW3wjOkk9eOHVRXZxsEg.roa (hash: gPmUeUcfbob5JNxYnTxCOkrudyCPlteleGt+PSj2/00=)
5: ekdDszvqGt_eJ_hGO_xIWYzbzAA.roa (hash: zqr+o3bWODGGGIrhIMHHh91Y/JEASXYkOBODwzmfRz8=)
6: iIQaeGWo37d4w_fiU_R29carNk8.roa (hash: FbNS7L7XPQULlvHXJ6Yq35UuABtJRjSmhRiCGjDk29Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:af:1f:e0:91:e8:a1:34:1f:ea:a1:43:26:53:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Jun 28 17:01:31 2025 GMT
Not After : Jun 29 17:01:31 2025 GMT
Subject: CN=158991dbf75b0a9236cfa9b46e174f2d59775fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:47:f0:c5:8d:41:6a:97:84:b6:bd:a7:0b:
ff:e4:fb:5b:3f:ce:02:c8:5c:89:9f:fb:cf:38:e4:
a9:c7:5d:68:a7:5d:bc:37:8f:52:36:b3:88:2d:36:
4d:bc:c3:24:45:ef:91:22:47:88:26:ba:69:e0:f6:
dc:26:6a:af:ad:21:c6:f2:34:95:38:9e:68:34:a5:
fd:63:9f:9d:74:c5:6e:6f:10:36:04:46:87:04:cf:
77:77:16:67:c5:52:8b:c0:24:71:d7:a6:56:97:f4:
4e:0c:7a:35:45:1f:51:5c:5f:c7:f6:e6:f1:b6:b6:
52:0e:84:7e:86:cb:59:01:ac:9b:bd:8f:e0:93:08:
83:19:be:12:81:be:b1:13:dd:23:c2:df:16:53:7b:
b5:f5:b1:09:c5:ea:b6:35:43:4c:b6:b6:50:e9:86:
de:25:c6:fa:94:67:aa:59:b5:cc:f0:bd:0d:6c:42:
41:0e:a4:0f:9b:8b:4d:af:08:5f:66:c4:73:3c:4f:
3d:d2:8e:a0:80:76:62:fa:0f:38:b8:e1:55:a7:69:
66:08:18:db:d0:64:18:eb:3a:92:bc:a6:27:83:9d:
a1:17:de:e6:87:e5:e5:85:77:69:bb:d6:b3:13:e4:
bb:08:64:c6:c1:bb:c0:d5:28:d4:68:f2:ae:5c:15:
b0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:89:91:DB:F7:5B:0A:92:36:CF:A9:B4:6E:17:4F:2D:59:77:5F:A9
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:75:96:7b:ec:4e:63:eb:f6:c7:5f:3e:d8:2e:f8:27:41:54:
07:c2:53:bc:06:fa:a5:51:24:f3:0f:3d:e9:b5:03:b1:d5:81:
87:46:38:0a:4f:fa:9c:3f:b0:d2:ad:f8:03:a9:6c:b2:a2:89:
ad:af:e7:6e:4a:14:16:06:1e:34:ee:8e:5c:08:2a:95:c8:2f:
b3:0f:d2:c1:95:84:d8:ad:61:a4:21:13:2b:32:5f:35:55:55:
3a:37:91:51:76:f3:de:b1:08:b2:ec:15:59:a9:f7:f2:75:e4:
0c:0d:0d:49:08:b4:84:f6:85:7f:f5:b6:e2:29:73:1c:a6:bf:
7a:5d:8a:2f:0b:5a:65:fa:b0:a1:49:ca:95:0b:47:c3:87:5f:
50:fa:5d:9a:4a:66:05:20:4e:6d:ff:d4:ec:85:a5:01:4f:a8:
11:73:4e:1d:78:a3:c1:fb:7c:01:ed:9b:fd:a1:ff:4a:ec:4d:
b6:ec:12:48:8e:6f:07:c2:6a:2d:e6:8b:70:84:bd:6c:a5:85:
cb:5b:e8:a0:1e:04:93:82:4e:77:9d:ba:33:47:7e:33:11:35:
ed:5e:88:f3:56:e9:16:90:60:cb:ea:c9:42:63:3d:ef:99:a7:
18:0c:94:b3:82:22:c6:29:3b:9c:53:b9:31:3a:1f:d7:4d:ad:
c5:30:71:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:31 2025 by rpki-client