Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
File: KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json)
Hash identifier: H69GCePRuCve9ds8iOTpqcmYKl+AMiyxQrHBqo0Q36I=
Subject key identifier: F4:86:9B:16:AB:04:58:1D:5E:3F:72:7B:8E:A2:24:CA:28:62:70:29
Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d
Certificate serial: 0197B8211E587C5B9BDFDC09F6D33B110D1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
Manifest number: 0AD2
Signing time: Sat 28 Jun 2025 20:01:07 +0000
Manifest this update: Sat 28 Jun 2025 20:01:07 +0000
Manifest next update: Sun 29 Jun 2025 20:01:07 +0000
Files and hashes: 1: FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa (hash: dI7TXuZLS0+y6udtXa2yol0ikupwyIZAlaHrmt/VDI0=)
2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: LXTCBpNH/FmE0Nnybz4rdwuDqrMPWHjdgn5erL+Fmkg=)
3: z3-dsZKj9j7nCKXS-M2vtq4aJrk.roa (hash: 28apFTsYy4v/YWMNME9MOhYcWfL7kBuIz5Y1C6vARJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:1e:58:7c:5b:9b:df:dc:09:f6:d3:3b:11:0d:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d
Validity
Not Before: Jun 28 20:01:07 2025 GMT
Not After : Jun 29 20:01:07 2025 GMT
Subject: CN=f4869b16ab04581d5e3f727b8ea224ca28627029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:72:c8:82:ae:14:91:1c:8b:0f:5d:4f:0f:0a:
50:09:01:e9:6f:5d:fc:5c:d2:3f:7e:de:45:9f:7e:
df:7a:f0:73:fb:02:12:24:43:5a:d3:c6:66:f1:c4:
fe:9b:d9:09:4e:e7:a1:a7:93:dd:64:6f:64:4c:82:
1c:d8:88:68:bc:7a:9c:df:99:7c:93:14:b2:5b:d1:
5b:c5:41:10:e5:c1:ed:82:ac:df:bb:76:52:c9:db:
e8:0e:03:c6:54:92:02:c3:16:63:46:74:37:23:9b:
10:d5:f2:30:35:6a:5d:86:2f:4f:dc:87:60:9a:f8:
ff:6c:57:fa:07:ca:dc:76:f4:e1:37:08:9b:0f:b5:
f3:73:1f:35:9c:aa:48:8f:67:30:c2:37:e1:a8:f5:
09:42:bb:81:ad:b9:ad:c5:d7:76:0b:5b:88:3d:4e:
e9:a3:e8:64:eb:3b:30:6b:17:25:b8:d8:d5:2d:90:
46:92:ec:38:27:7d:bb:61:38:35:de:d3:af:d6:73:
f9:e3:93:d8:c2:5b:66:8c:4e:a9:c4:57:38:79:7c:
d9:75:c8:f2:c2:b9:11:86:2f:2b:a6:f7:94:09:eb:
33:d4:c6:41:86:b6:78:22:84:85:ce:15:6b:62:f8:
68:97:b9:6b:bd:63:f7:7f:92:4f:6b:bd:50:b4:f5:
49:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:86:9B:16:AB:04:58:1D:5E:3F:72:7B:8E:A2:24:CA:28:62:70:29
X509v3 Authority Key Identifier:
keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:0b:7e:c2:9a:12:5a:60:77:84:28:87:5b:4a:af:95:b0:38:
8a:44:70:84:7f:00:c6:df:e6:46:e2:0b:9f:55:cd:40:00:80:
fd:34:a0:77:d2:7e:0b:33:20:04:af:e0:0e:b3:33:ed:c4:94:
a1:27:96:73:ba:67:49:15:d5:3b:d6:8c:17:7e:7a:8b:36:28:
f3:32:ce:fe:68:67:fd:2c:0c:6b:0c:88:8d:ab:22:7b:97:a5:
b3:98:e8:66:b5:16:c0:6f:98:88:79:58:95:f0:16:a6:df:df:
41:53:1f:97:4a:cd:79:a3:11:d5:90:b7:dc:0a:b1:ce:a6:92:
10:56:bc:39:6c:94:d8:e7:2a:52:d8:07:6c:83:bf:64:e5:f7:
54:fb:cc:08:18:1c:80:07:55:95:c7:65:12:4b:03:4e:3c:a1:
76:e7:9f:bf:04:90:7d:81:b8:89:d7:0b:6b:1c:5b:6e:2f:30:
bc:d0:02:a9:0c:95:f7:b6:00:fd:1f:4f:0a:fd:93:c3:0b:61:
21:c6:0d:38:40:72:00:fe:ac:34:b0:2c:57:aa:0d:a2:d7:78:
b7:b6:fb:35:76:79:df:ce:e3:36:87:5c:a1:69:4b:c5:a8:55:
ac:b7:6a:2c:9b:a1:ea:cb:68:14:c8:0b:19:6d:99:e9:d3:2a:
5f:06:98:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:00:39 2025 by rpki-client