Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
File: KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft (raw, json)
Hash identifier: Tqa3ivFjEKXx+YUP+IzxZiB0jHS7MthGb/ZN7+TQzbo=
Subject key identifier: D8:F1:64:83:BE:32:48:28:13:1A:EB:53:53:87:68:B8:3E:9A:D7:8D
Authority key identifier: 28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
Certificate issuer: /CN=283624007f44dcaf568c370e7f71f950cb1940ef
Certificate serial: 0197B70F1DD440F837D3C38D7E2E875AED3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
Manifest number: 0730
Signing time: Sat 28 Jun 2025 15:01:50 +0000
Manifest this update: Sat 28 Jun 2025 15:01:50 +0000
Manifest next update: Sun 29 Jun 2025 15:01:50 +0000
Files and hashes: 1: 8nNgOGtBQWNTilGRrMmNlFZZwGM.roa (hash: mOJcQQ3vA0VCC5mkB6hJglG7LUq/Vu6wljMQaBgi+dM=)
2: KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl (hash: q3Y1kdEaA7QMJmyPmwarn6/4zlo07ykTCpoahwryIdA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:1d:d4:40:f8:37:d3:c3:8d:7e:2e:87:5a:ed:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283624007f44dcaf568c370e7f71f950cb1940ef
Validity
Not Before: Jun 28 15:01:50 2025 GMT
Not After : Jun 29 15:01:50 2025 GMT
Subject: CN=d8f16483be324828131aeb53538768b83e9ad78d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ed:b8:f8:79:a7:1c:3e:de:f1:ab:41:c5:2a:
25:32:67:98:f5:b1:0b:32:e1:7b:69:9d:d3:e4:81:
5c:8b:28:fa:e3:6d:6c:8d:43:e7:28:12:90:9f:cc:
70:a1:8d:43:db:3a:14:35:c0:af:67:97:5e:4e:f8:
66:fd:25:99:1a:93:a7:ff:02:1a:da:57:0b:30:82:
62:f3:4d:84:c4:d8:df:65:57:a6:32:6e:d2:2a:80:
47:c4:77:a6:d1:82:2f:86:ee:40:23:d8:ec:ca:43:
aa:d2:3f:7c:42:24:5f:4f:2f:55:1b:6d:c6:3b:cc:
bf:6b:2c:26:44:d7:d0:94:da:b9:86:99:ba:30:4f:
fc:80:a0:84:c3:4e:3a:a5:5a:a8:e9:30:04:0e:e4:
7e:88:48:5e:6d:fe:d2:96:50:37:9e:4b:1d:7d:43:
94:af:5b:2d:60:80:9a:1e:24:d9:9f:83:97:51:dc:
cd:7f:0e:bd:32:1e:e2:5b:14:3d:e0:55:8d:55:1c:
de:8e:a2:d9:75:39:61:c1:65:4b:11:4f:12:c4:ff:
94:b0:72:56:90:8e:e0:c3:b6:f1:df:5c:79:c1:5f:
5b:62:74:63:37:43:24:58:ae:7f:03:5b:82:0a:a3:
09:a2:e1:20:37:f5:c2:3d:6a:b6:5f:82:1a:2f:ca:
be:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:F1:64:83:BE:32:48:28:13:1A:EB:53:53:87:68:B8:3E:9A:D7:8D
X509v3 Authority Key Identifier:
keyid:28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:9a:bf:d2:c9:44:3b:55:85:f9:22:bd:45:3a:15:cb:95:8f:
78:89:f7:ee:2a:1f:08:e8:a1:d8:51:91:73:e3:c0:dd:86:78:
d3:fc:2d:6c:01:bf:00:44:58:80:6f:5c:1b:44:bd:f9:fe:e5:
0a:1a:6c:33:bb:a0:dc:09:1e:59:70:06:88:68:5d:38:a0:95:
c0:82:4d:8c:43:bc:6c:de:97:d4:a0:21:a7:c2:20:71:10:e7:
78:2b:42:f6:b7:9d:44:38:c7:cb:1f:d4:d3:16:bf:e8:dc:90:
7c:91:92:58:b4:b7:e4:41:92:75:8a:b9:18:9f:ee:78:9d:1a:
f8:cf:38:3f:6e:76:ae:65:71:00:51:c0:8c:a2:47:6e:e9:e2:
ad:fc:35:ab:01:92:73:0e:e9:ec:d6:c6:5a:6b:c2:a9:10:2a:
61:ef:2f:ae:41:5a:5f:e6:0a:89:f1:cc:e8:b9:18:1d:e4:58:
2b:99:5f:5a:e9:52:26:42:d4:fb:2e:6e:82:df:1d:b6:d5:e9:
6f:41:d8:fd:d3:24:17:71:04:ea:0d:99:21:81:a3:03:73:36:
3a:83:e5:5f:bf:f6:4c:4c:80:ab:e4:8c:dd:e9:56:cd:ce:8b:
31:e7:a5:8d:a1:aa:93:4c:1f:0a:51:5c:43:52:83:89:7f:0a:
59:19:a4:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:33:55 2025 by rpki-client