Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: nQ0RfWOfpjgVBKjonkfOU9itwPZ8Zi/4zom8Qmqi/7I=
Subject key identifier: E0:38:3C:22:F1:BA:3D:36:CC:EE:67:E0:46:06:66:04:C7:57:F0:5D
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 0197B63276B7F74B41A639BA71EDC18FF0D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 01A8
Signing time: Sat 28 Jun 2025 11:00:49 +0000
Manifest this update: Sat 28 Jun 2025 11:00:49 +0000
Manifest next update: Sun 29 Jun 2025 11:00:49 +0000
Files and hashes: 1: 7RtSvYvJ-s26z4jJmihBpc9PPTg.roa (hash: +WPL+eLMOyDQbtRDqabesCoaqYzO2nUYgvkky6oLihM=)
2: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: Nhd75LuVxsvyRf4CtgQx9utbc/Jspj3B00sCHNsKGy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:76:b7:f7:4b:41:a6:39:ba:71:ed:c1:8f:f0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Jun 28 11:00:49 2025 GMT
Not After : Jun 29 11:00:49 2025 GMT
Subject: CN=e0383c22f1ba3d36ccee67e046066604c757f05d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:da:7a:ea:9d:d8:cf:20:b4:8e:31:f2:30:01:
ad:0f:2d:a4:a6:5c:42:f8:47:b5:65:50:4c:6b:a3:
50:ff:56:b9:06:1c:1a:43:f0:c0:39:ac:bf:3c:aa:
ba:34:e5:42:bb:b2:26:5e:59:47:64:58:9a:51:92:
94:e8:33:40:b1:a1:46:c5:66:3c:e6:90:bb:bd:9c:
e7:ed:64:24:6a:5e:4a:a6:85:46:c1:68:87:33:a1:
f7:b2:90:41:3e:84:c7:72:a7:45:16:bb:8b:cc:a9:
2a:f6:21:f1:78:85:2c:7b:38:b4:58:21:cc:08:c7:
61:ec:69:78:e3:9a:71:e6:1a:98:da:03:0a:dc:0f:
da:9e:26:76:3e:2f:81:08:a3:73:5e:2f:35:72:35:
a6:b2:2c:b8:61:bb:e5:a1:d7:57:f0:64:e7:01:9d:
c8:51:5a:c0:95:4d:5c:ce:ef:be:73:03:69:63:59:
5f:b0:06:4e:c2:d7:d0:e1:22:de:59:eb:97:eb:ca:
96:40:8f:48:a8:3b:ce:f1:dc:62:6e:5c:a8:ff:2e:
a0:1c:c2:dc:cc:5b:3f:f3:d1:8f:35:ff:e0:a6:4c:
1b:3d:6a:a1:88:95:cb:c9:cb:dd:6b:d9:7f:7e:a1:
3d:cb:6f:67:21:8e:b6:54:06:00:ad:1b:54:b7:e4:
46:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:38:3C:22:F1:BA:3D:36:CC:EE:67:E0:46:06:66:04:C7:57:F0:5D
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:df:be:80:80:28:20:5d:aa:01:63:e2:8f:e1:f2:55:cd:9b:
53:4c:31:36:a8:6e:2c:4b:44:0a:0b:e8:0c:33:8c:1d:d6:5b:
94:90:ea:20:ab:80:2f:f6:13:5a:21:3a:c5:87:e8:52:b8:bd:
e9:0f:bc:ef:6b:03:e1:18:4b:95:ce:40:a1:d0:d4:89:b9:a3:
64:4a:39:99:b4:25:51:05:1e:95:ff:f2:d4:11:22:a7:8a:e5:
14:96:53:ef:46:30:86:f3:5b:fe:a1:4d:38:2e:7e:11:24:e6:
6f:59:ce:b9:fc:ec:58:32:f0:c0:c1:94:6a:32:07:db:dd:f2:
9c:21:63:52:c6:ff:b1:7d:d9:2b:34:05:73:fe:63:df:7b:d0:
70:63:93:fa:bc:82:c6:38:46:a5:c0:9e:a7:35:b1:ba:07:14:
42:b7:7d:0b:53:bc:c8:46:e0:23:2a:c9:f2:17:6e:c5:7a:f8:
89:10:a3:3d:6e:63:c7:f7:0e:3a:d7:16:34:3a:a7:bb:3a:fd:
87:33:aa:b6:19:98:f8:db:b0:0f:ca:10:17:fa:8b:13:d0:09:
2a:67:9d:13:54:c5:50:ab:1d:64:d7:64:28:ff:f0:8f:f1:80:
e8:bd:a1:3f:89:3e:7e:0c:b6:be:73:4c:a1:9d:fd:fe:3e:3c:
ef:2d:fd:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:30:16 2025 by rpki-client