Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: kuU+NiNqqDKP/fZpmuLaTQ1hSp8V2Uh8FqiUKwGO/Vc=
Subject key identifier: 1F:03:47:4B:BD:23:52:69:71:3E:2E:AD:C9:83:DF:9D:E8:A9:CF:E3
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 0197B7459D643EB72A99DAC7974C5A0B8660
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 09C3
Signing time: Sat 28 Jun 2025 16:01:22 +0000
Manifest this update: Sat 28 Jun 2025 16:01:22 +0000
Manifest next update: Sun 29 Jun 2025 16:01:22 +0000
Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: /mjJqD/mpo8Ovp9YIP65jXuAxAAm1LHwByMos4KBupg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:9d:64:3e:b7:2a:99:da:c7:97:4c:5a:0b:86:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Jun 28 16:01:22 2025 GMT
Not After : Jun 29 16:01:22 2025 GMT
Subject: CN=1f03474bbd235269713e2eadc983df9de8a9cfe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:46:fc:00:ff:56:77:09:56:ef:a5:84:3c:c4:
cb:cf:74:ad:15:02:cb:69:65:8f:46:01:e5:3d:3b:
3e:34:bd:73:62:f1:e3:1f:36:9b:c2:9b:12:d4:f3:
3f:22:1e:e3:b8:84:a3:b8:df:1c:ee:03:26:77:cc:
43:74:35:77:a6:b4:5b:af:75:18:1c:06:53:56:2a:
09:4d:82:3a:97:fd:44:e1:df:8a:9c:64:b6:88:d5:
5a:af:ac:08:ae:ab:f4:6f:71:cb:48:b3:39:26:eb:
34:a3:ab:bd:06:6d:c1:29:11:a6:b5:79:95:59:4e:
27:3d:c7:71:8f:75:42:8d:ee:c4:fd:08:55:a1:e6:
5e:15:be:6f:e6:41:b7:f2:fd:fc:3e:38:21:21:05:
ea:9d:1a:55:38:da:7b:23:f1:f7:8d:4d:f2:43:46:
21:8f:f1:37:01:1b:71:83:78:ce:14:d3:6d:21:14:
e1:80:81:ca:09:4b:47:bb:34:a0:94:57:02:63:e9:
d0:0f:4c:f9:ce:ae:38:68:f8:f3:03:d2:fe:ac:94:
a5:e5:a6:fa:c1:db:41:c2:c0:88:1a:d8:d6:5f:82:
cf:c6:9f:03:44:f6:a3:84:b6:93:4d:bd:27:53:7e:
1c:e7:39:e9:ae:93:a7:5a:a1:79:f1:99:4b:e1:e1:
55:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:03:47:4B:BD:23:52:69:71:3E:2E:AD:C9:83:DF:9D:E8:A9:CF:E3
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:ee:ed:c1:12:ff:dd:4b:2f:7e:d7:ba:b2:e7:9b:3b:a4:d4:
92:8b:3e:81:29:37:47:09:50:01:2b:fb:34:1e:44:97:82:87:
b6:27:96:d0:3c:4a:4f:20:7d:e6:f3:72:4a:ea:6b:a1:d0:39:
5d:a0:5d:ab:1e:13:74:b9:10:42:e7:9f:dd:64:6b:25:c4:1f:
d4:47:8f:21:db:a2:28:95:0a:38:34:93:cc:ba:66:a7:6e:33:
ff:c7:e2:79:c4:0f:79:0f:59:ab:b7:b2:43:f8:98:54:1a:1a:
df:98:c4:3a:f4:d5:c7:ad:26:3a:4a:f3:ee:23:7f:68:29:b2:
10:2b:df:4e:5f:70:87:63:4e:05:e3:cc:c8:72:2d:fe:6a:11:
16:48:a3:94:e0:42:2a:72:f0:48:7a:ca:98:4e:f2:31:0c:8f:
69:12:38:bf:0b:90:00:9f:5b:84:f8:47:31:dd:e4:5a:0e:eb:
60:6a:c2:e3:59:f3:11:fd:6d:b5:d3:a0:a9:19:44:33:bf:06:
50:54:da:cd:c4:ce:91:11:76:b3:19:b7:41:7f:d7:d1:77:8e:
84:7d:b1:42:52:83:06:e8:69:eb:95:51:47:f6:b0:32:14:05:
7c:13:b1:6d:73:fa:77:04:dd:ff:a3:c4:f7:91:ec:81:04:d1:
b9:1a:3d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:04:39 2025 by rpki-client