Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json)
Hash identifier: fjHUoRH81eQG8z6j9yh6MVS9dt5CUZMF7z/mKJGIHfs=
Subject key identifier: CC:19:F3:49:2E:81:00:10:45:9F:DD:70:3A:59:97:22:02:13:87:F8
Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Certificate serial: 0197B7B31151C376E1D04EC45C2189C3BE90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
Manifest number: 15BB
Signing time: Sat 28 Jun 2025 18:00:55 +0000
Manifest this update: Sat 28 Jun 2025 18:00:55 +0000
Manifest next update: Sun 29 Jun 2025 18:00:55 +0000
Files and hashes: 1: 0l-uuc0ta--zZGivAH1vRPmB_34.roa (hash: N3+ixN59bx1CAdzBVH5dBhTA7XSG6tSZGbX7+qQ9kkU=)
2: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: 1OkGV/5r97dgXDLqALPiev3fzNqmTxQ0tnthhVVgfr8=)
3: ZjCHU3LEGq34M383f_KumGN_eB4.roa (hash: YxlGAgs8g3hAPxhoH9iP3cLnbEfE9zXQU/84spENz30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:b3:11:51:c3:76:e1:d0:4e:c4:5c:21:89:c3:be:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Validity
Not Before: Jun 28 18:00:55 2025 GMT
Not After : Jun 29 18:00:55 2025 GMT
Subject: CN=cc19f3492e810010459fdd703a599722021387f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:15:ac:33:44:cf:99:a0:75:f3:19:58:33:4c:
d9:b3:a7:b3:ad:f2:c8:25:84:c8:df:67:e1:11:18:
c8:c9:1c:db:ac:a6:6f:e8:a0:81:69:fb:63:c1:6a:
f1:fd:b2:78:28:74:98:9a:a0:bb:fe:cc:c5:e1:6a:
18:38:fc:06:5e:86:f3:d5:7d:19:19:ab:26:6d:df:
1e:17:5c:07:7c:5d:70:2c:b8:dc:97:b6:5a:b4:58:
97:ee:d3:7b:3d:4e:db:b3:6d:a7:5f:89:b5:de:60:
e5:4f:be:36:10:86:d4:12:6f:8e:55:c8:9b:bf:8e:
13:89:54:8d:f5:84:7f:6a:43:80:51:60:f8:a8:79:
5d:f9:4b:02:a0:16:de:e9:93:cb:ec:8a:45:e1:64:
9c:88:89:a9:63:10:a5:00:3f:5d:5e:22:a3:3a:66:
76:ea:77:24:f6:39:7a:75:01:01:4a:ed:40:c5:e0:
52:bf:fa:65:80:bd:92:95:a9:78:d3:16:31:63:ff:
e7:ec:a2:e9:0b:9e:8a:e1:bc:a7:98:e0:11:b7:d6:
a2:be:8e:d3:d4:b8:20:7e:ba:cd:1c:e3:44:5f:77:
65:4c:c2:32:e4:4b:0f:92:47:e6:3c:8f:cd:f8:e2:
6d:66:69:9c:bf:df:9c:5a:b7:d6:a1:b7:11:47:c9:
16:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:19:F3:49:2E:81:00:10:45:9F:DD:70:3A:59:97:22:02:13:87:F8
X509v3 Authority Key Identifier:
keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:5b:e5:fb:12:10:d6:43:b2:3c:84:cb:5f:16:93:bc:a8:5b:
37:9e:1b:fb:f3:29:d6:2b:6b:18:c0:45:28:c1:26:17:c4:da:
e5:a6:2d:36:b8:e8:28:d7:9f:42:0c:3e:fa:e8:2e:c6:e8:18:
96:90:3a:de:cc:2a:7c:17:08:bb:bc:f4:1b:a6:10:3e:db:83:
ec:fc:ff:74:cd:4e:31:04:cb:59:cb:ec:d0:5a:85:b9:9b:4c:
33:cb:53:2c:8c:5d:f8:ea:3d:57:29:ed:96:25:f2:54:79:53:
fe:4c:1b:6d:f2:ca:fb:0a:e2:bf:b6:12:54:7e:59:c6:1b:24:
0f:5a:fb:6b:ba:c9:99:91:bd:5a:2a:1e:fd:10:53:1f:66:75:
a6:32:b9:4e:ec:c9:75:03:dc:b5:49:fc:5e:97:df:9e:50:98:
b6:2d:dc:4b:78:3c:6b:f9:dc:b4:40:12:60:6d:33:9f:9a:a7:
49:a7:0e:a1:9d:21:8f:06:d4:9e:60:0f:83:cc:07:e3:64:4a:
ff:a3:00:80:a4:38:17:8b:64:9d:58:47:f4:6c:3b:9b:95:44:
c5:ce:62:70:71:74:34:a4:3f:f0:77:84:db:75:bd:9e:3a:14:
41:b2:ea:3d:75:39:fc:5d:3d:fa:2a:66:9d:e8:61:ab:50:70:
68:72:ec:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:38:58 2025 by rpki-client