Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
File: KaA5l7KPWbCAMciYQH3V5RN93bE.mft (raw, json)
Hash identifier: lCE8hF0LlV2AcpGA1P4F3L7qVt56zVt+vQjevxqCc0M=
Subject key identifier: 50:88:96:93:E5:04:75:0E:73:04:AF:3C:51:7A:6B:FD:40:00:9E:A8
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 0197B77C51F78451C23BBDE4D6951EE63CE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
Manifest number: 12A1
Signing time: Sat 28 Jun 2025 17:01:07 +0000
Manifest this update: Sat 28 Jun 2025 17:01:07 +0000
Manifest next update: Sun 29 Jun 2025 17:01:07 +0000
Files and hashes: 1: KaA5l7KPWbCAMciYQH3V5RN93bE.crl (hash: f6VeWtyhfPQ/BaIw5dmYZl/pLw6Tcx/TD/GwjZOWLBc=)
2: TFGcxJc1hz5sSLNvCaBuhb3JcFY.roa (hash: IVGRn6jYdKaVvVkrmcrSKzMRsOoEhE2vOI0riR6WQTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:51:f7:84:51:c2:3b:bd:e4:d6:95:1e:e6:3c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Jun 28 17:01:07 2025 GMT
Not After : Jun 29 17:01:07 2025 GMT
Subject: CN=50889693e504750e7304af3c517a6bfd40009ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c6:71:e1:ba:8b:c7:d2:26:f4:19:17:47:0e:
0e:4c:b3:39:d3:5e:c3:aa:00:5f:d7:b8:3a:ab:77:
58:5e:0b:4d:3c:3e:e1:ac:a7:82:e6:35:b2:31:90:
52:d1:b9:78:38:4f:e2:31:b5:11:bc:fa:38:1c:76:
08:2e:9f:48:3a:d1:9f:ef:51:76:6d:32:f5:73:73:
d9:f2:65:f3:da:95:b2:98:b9:3f:11:8d:11:86:94:
81:75:0f:99:56:2b:e0:bd:70:b2:84:0b:7e:f3:4e:
27:fa:51:de:76:44:58:c2:3c:2f:9d:5f:e5:e8:f9:
61:fe:d6:e3:d5:77:6a:30:79:d1:1b:1f:c2:74:80:
1d:eb:ab:35:06:c0:db:08:c6:44:28:25:58:72:32:
7f:54:7a:d4:78:a8:2e:43:2d:0f:ab:ec:a4:ca:1f:
05:f4:70:92:d5:71:ae:cd:68:6a:3c:c5:b5:06:9f:
2c:b1:cd:25:05:a7:c0:33:96:e4:f7:98:e2:8c:20:
ea:2f:2a:cd:00:5d:21:9d:cd:c4:f6:4b:1e:fa:ec:
9a:f3:79:5d:d9:f4:59:55:38:13:c7:7d:b3:8e:87:
e8:97:f7:5b:ab:7f:9c:9e:a8:64:8c:64:09:5a:fc:
12:a0:ff:11:46:f9:b1:e8:24:cc:c5:a0:25:cf:4b:
91:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:88:96:93:E5:04:75:0E:73:04:AF:3C:51:7A:6B:FD:40:00:9E:A8
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:92:72:8c:02:29:bc:ce:2a:ca:0f:1a:f1:07:1d:55:a6:64:
19:56:0c:75:67:6a:8b:ad:4d:80:7d:8c:11:06:07:bf:36:64:
44:79:08:c7:c7:25:43:eb:e2:d8:d6:b1:7f:ae:de:ca:38:de:
28:3d:cf:aa:7d:22:cd:aa:66:c1:5d:b4:c2:81:e3:f9:92:43:
9b:0f:6f:8e:fb:0d:53:66:51:96:c6:62:a5:65:6a:a0:72:81:
11:a1:6d:40:fd:95:6d:27:91:49:4c:24:5d:8e:f2:58:48:a1:
e1:eb:83:c8:f0:76:52:28:fa:34:b3:9f:f6:86:18:d4:86:64:
3e:bd:78:47:a4:77:a5:70:da:ab:01:38:39:fd:fd:1c:85:41:
70:97:24:40:f2:f4:13:2e:3d:a8:22:13:a6:69:bb:bd:bf:9b:
83:9d:50:e7:8c:43:5a:cb:ca:10:df:32:f1:da:20:54:86:6e:
50:26:30:38:48:00:49:03:95:7d:69:46:c6:45:b2:53:c6:c7:
84:e1:c0:56:b2:b0:5a:c7:53:66:91:13:02:d1:bc:c3:c9:1e:
ad:56:a0:ac:76:ca:85:06:c9:09:0e:53:3c:d6:81:f0:cd:0d:
ef:11:d6:2d:17:2a:71:fb:68:30:ed:42:af:ac:30:af:c5:25:
cf:95:ca:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:00:54 2025 by rpki-client