Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
File: kkecrihHZdYoBEEZAJiA0op1YLE.mft (raw, json)
Hash identifier: HXY38ekJ4Nem6RMDFoew/05ckXxnukgyk2PpYusG8WQ=
Subject key identifier: 95:73:AE:11:13:F4:51:77:92:EB:C2:BA:F7:FF:80:86:70:4B:FE:AD
Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1
Certificate serial: 0197C0B6DDF2B91F6B0C3759530043CD1B62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
Manifest number: 15B9
Signing time: Mon 30 Jun 2025 12:01:39 +0000
Manifest this update: Mon 30 Jun 2025 12:01:39 +0000
Manifest next update: Tue 01 Jul 2025 12:01:39 +0000
Files and hashes: 1: kkecrihHZdYoBEEZAJiA0op1YLE.crl (hash: a/OJlh5gQTpDhdtblzIXx1NwgacPhrhiY44E0IRMG5I=)
2: x9d_ZYOPUgUTIG_dU1aWLhzD7L0.roa (hash: Eoi/Kjhf2x+MudONjVV9qJBRoFTzvMFaOuh/XyvvI1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 12:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c0:b6:dd:f2:b9:1f:6b:0c:37:59:53:00:43:cd:1b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92479cae284765d628044119009880d28a7560b1
Validity
Not Before: Jun 30 12:01:39 2025 GMT
Not After : Jul 1 12:01:39 2025 GMT
Subject: CN=9573ae1113f4517792ebc2baf7ff8086704bfead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d2:ae:2c:d9:89:be:28:30:88:be:da:70:c1:
79:b3:bd:d9:26:a5:b8:65:63:39:8a:c7:85:11:1e:
94:21:ba:45:25:d2:26:5f:e3:db:40:e9:91:d5:3f:
48:5c:b1:c1:ef:48:6a:a1:ad:5c:4e:84:e1:a7:ee:
19:3a:a3:03:91:69:05:14:27:a5:8b:52:3c:15:1b:
01:ce:c1:04:23:5c:c4:48:4d:ae:a6:9b:2a:2d:65:
b3:43:89:15:c5:ba:97:27:dc:f4:b4:fd:26:38:1a:
0a:00:72:c1:4c:da:ba:bb:4a:66:33:92:2c:ee:3a:
d1:8b:27:ec:2a:a9:fd:51:c5:01:31:5b:e1:48:8d:
33:39:c3:ac:4e:8c:97:b2:a3:95:86:d8:37:4b:e7:
90:83:f0:de:c0:32:44:10:a2:9a:15:7b:0c:01:61:
db:68:fd:39:a5:5c:9c:14:b5:79:bb:be:20:6a:99:
2b:da:cf:f0:29:25:22:38:3c:fa:55:b9:73:93:a4:
bd:45:ef:0e:fc:45:ca:2f:5e:35:c4:19:c3:f1:9f:
99:ad:f7:19:4b:94:80:24:66:4e:9f:e4:4d:76:74:
ad:2b:af:51:a2:08:62:2b:06:2a:aa:48:03:d2:8a:
08:56:0a:db:c4:dc:39:bf:12:3c:a7:22:85:e4:5a:
1b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:73:AE:11:13:F4:51:77:92:EB:C2:BA:F7:FF:80:86:70:4B:FE:AD
X509v3 Authority Key Identifier:
keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:29:89:8f:a5:c8:7c:0e:5f:ff:b6:28:a0:e8:7a:03:8c:38:
52:67:4f:4d:f1:aa:0f:eb:f0:57:9a:8f:b0:3b:fa:db:c2:8d:
e8:3d:b4:c4:49:fc:15:a6:23:5f:17:02:6f:93:e9:56:66:a3:
47:f4:c0:a9:f4:c6:3c:b8:e7:dc:aa:3f:50:4c:9d:b4:b0:a2:
df:c6:f6:6e:cf:08:9a:a7:91:70:f1:47:d5:36:ab:13:e3:f0:
5f:69:61:d9:c6:7d:7b:3a:06:68:72:0b:d5:2d:ca:38:e3:cf:
7e:42:dc:c0:7f:05:b7:14:80:ec:19:74:91:19:d0:f1:fa:49:
f4:89:9e:8b:9b:1a:fb:9d:0c:1b:0c:e4:c1:c2:7f:a8:83:0a:
38:37:72:06:52:83:b9:8c:e7:fd:35:07:80:3b:b8:d3:a3:10:
cb:66:c1:b9:35:3c:f3:d3:ee:6e:54:7d:8a:93:5c:49:fb:2f:
19:48:c8:56:58:e0:33:b5:78:ea:bf:58:bf:4e:ca:85:5a:a9:
b6:82:75:b7:c0:7a:9a:4c:94:c2:54:27:62:5e:8e:13:c1:94:
2d:a8:55:2f:04:80:52:f7:99:4e:77:ce:44:52:43:63:ea:79:
e2:4b:b2:8c:64:49:25:30:98:66:32:ab:91:83:3a:c4:17:04:
f0:76:a0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 18:17:36 2025 by rpki-client