Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
File: KL8ecjI3QqxNgTarbI6F33ujfus.mft (raw, json)
Hash identifier: 397Afa3c9O1VPQnx7aFE56CCQNEsRZDjlDvCehVz1sY=
Subject key identifier: 0B:24:84:89:AB:CB:60:62:B1:2B:B2:8E:68:8A:E5:B4:8B:66:E7:37
Authority key identifier: 28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
Certificate issuer: /CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Certificate serial: 0197B6D741C01DEEA6B3D53F46D5875ED3A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 14:00:49 +0000
Manifest this update: Sat 28 Jun 2025 14:00:49 +0000
Manifest next update: Sun 29 Jun 2025 14:00:49 +0000
Files and hashes: 1: KL8ecjI3QqxNgTarbI6F33ujfus.crl (hash: 5EAAOzApEOnkMP+nc1JpkgWB34fSGUHClx/kvKI+aVo=)
2: tkt4SudQfK9uwQrgGKvvYflAjl8.roa (hash: dFUnqKo0rasEdebFDefgA9DnqivcqZmMoexL2NOUY5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:41:c0:1d:ee:a6:b3:d5:3f:46:d5:87:5e:d3:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Validity
Not Before: Jun 28 14:00:49 2025 GMT
Not After : Jun 29 14:00:49 2025 GMT
Subject: CN=0b248489abcb6062b12bb28e688ae5b48b66e737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b5:40:56:20:c0:b1:54:a1:5d:2f:3b:47:eb:
69:e1:4b:bb:f6:b8:45:c2:fd:43:ef:f2:33:ce:6a:
e6:ad:81:d9:c9:7f:ff:8c:46:2d:e4:cd:44:1b:4a:
8a:34:ea:bb:f5:27:c7:d2:63:a0:02:a1:d3:98:e7:
bd:e7:4c:d9:37:54:98:e3:e6:4d:d2:be:b2:80:90:
9e:25:dd:43:aa:73:d4:d2:3e:9e:2d:6d:8f:05:b7:
22:05:e5:5f:98:b5:c8:05:d9:aa:2a:a8:bc:e7:95:
69:eb:73:97:88:63:8f:5e:fc:3d:69:ea:86:02:db:
bc:cd:1a:67:9e:54:91:e4:7f:a9:1f:16:a2:e0:c8:
58:22:e3:ca:02:23:a2:69:9b:46:9b:bc:ef:04:bb:
f4:7c:2e:7d:ec:3c:f6:77:ff:a7:db:3d:1f:cc:7d:
63:6f:8d:41:7d:ef:a7:9d:d1:8d:b1:a0:97:92:0c:
41:d4:93:6b:6f:76:d0:f1:9a:94:d7:10:8b:39:fe:
ad:ca:b4:22:67:b6:94:5a:da:52:8f:c9:1c:ef:fd:
0d:3d:54:c6:0d:87:ec:01:53:94:67:dc:8a:1b:5f:
98:7b:5f:9d:e8:0c:bd:59:2e:fc:99:9e:99:7b:6e:
4c:04:0d:47:00:97:d0:6a:1f:26:d0:cb:6c:f2:e0:
55:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:24:84:89:AB:CB:60:62:B1:2B:B2:8E:68:8A:E5:B4:8B:66:E7:37
X509v3 Authority Key Identifier:
keyid:28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:8e:67:e6:a2:c1:8a:7e:5c:63:73:6d:df:c1:c7:13:94:6c:
04:84:fd:ee:1e:21:2a:f5:d1:4a:77:f9:6b:1c:81:6e:56:8f:
25:a8:fd:29:6b:a5:69:fd:d9:11:46:8c:b4:ed:89:9c:19:9b:
c1:34:f7:23:29:96:b9:bb:ac:89:d2:6f:8e:b1:e9:a7:91:65:
74:ab:34:b7:1d:55:56:3d:24:6c:18:b0:fe:c9:69:8f:d4:32:
e7:03:65:23:e7:00:49:ca:b1:ef:6b:72:7d:66:88:dc:6e:d2:
5b:e1:fa:c4:e9:1b:d4:6f:c4:d7:cc:49:9a:1d:f5:61:8b:f4:
6e:65:d7:b1:08:70:23:e4:49:de:ff:9f:80:5f:55:7d:ba:e7:
e2:46:a5:b5:7a:8f:34:e6:f4:f6:b9:91:ab:dc:5d:84:c9:1a:
10:71:1d:f8:84:d3:c5:86:8e:ab:bc:36:24:b4:a8:9b:94:00:
41:29:0b:80:dc:37:0e:3c:e5:3f:17:ae:3a:63:c5:de:6d:59:
0f:12:5c:e4:5b:95:ac:86:fd:ba:0e:ca:6b:ff:0f:29:d7:0c:
8c:03:37:a7:3a:a8:da:4c:b3:30:2e:a0:77:7c:ba:13:56:f8:
01:b2:a4:cd:54:c0:5c:32:59:3c:e8:8c:33:e5:8b:ed:d6:a3:
1d:a7:e4:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:09:28 2025 by rpki-client