Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
File: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft (raw, json)
Hash identifier: cpald2jyoArFrmfTnjzv8gfJaLX31FB8HoVK5BUrbnE=
Subject key identifier: D4:FF:CB:64:D2:37:78:9E:6F:5D:4C:EB:82:14:05:93:2A:CB:A7:8C
Authority key identifier: 91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
Certificate issuer: /CN=91d338370e10627a4cd631e3fde186e194898c81
Certificate serial: 0197B6A03EDCEC4D490399CAF936B1DDCA15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
Manifest number: 0BA0
Signing time: Sat 28 Jun 2025 13:00:44 +0000
Manifest this update: Sat 28 Jun 2025 13:00:44 +0000
Manifest next update: Sun 29 Jun 2025 13:00:44 +0000
Files and hashes: 1: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl (hash: JAETEt1vfNpZdB5FcIQT6Gy7lb4atM+rNGoR1w/RPi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:3e:dc:ec:4d:49:03:99:ca:f9:36:b1:dd:ca:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d338370e10627a4cd631e3fde186e194898c81
Validity
Not Before: Jun 28 13:00:44 2025 GMT
Not After : Jun 29 13:00:44 2025 GMT
Subject: CN=d4ffcb64d237789e6f5d4ceb821405932acba78c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c8:0e:e3:d9:b0:f1:2b:2b:32:30:a0:cf:8f:
1b:4f:8c:34:b6:eb:d4:87:99:ec:81:2b:97:98:48:
b2:99:5a:44:26:92:3e:f5:7b:71:dc:68:0d:c4:22:
d1:40:0a:3e:44:18:53:7f:fb:7a:92:2b:b9:63:a8:
6f:2c:71:54:af:9a:66:50:38:66:e2:16:f7:5d:48:
df:e2:6a:bf:97:35:ef:f0:d8:a1:8e:97:fb:e9:ae:
83:a9:ed:73:02:ba:12:17:84:d3:bc:84:93:0f:80:
d3:12:26:dd:09:b3:4b:3a:e3:ad:e9:71:4e:3f:ad:
21:fc:7c:89:f5:89:b0:78:21:15:64:d4:0b:ac:28:
fb:a9:3c:d3:7f:64:b8:6f:f3:c9:51:0c:f8:1f:78:
17:ec:3e:9e:b7:dd:23:74:b7:ed:01:ed:23:0d:46:
67:b5:91:e5:cc:d1:ee:4a:ac:b1:18:0b:5e:df:eb:
49:f7:be:d1:ea:fe:b1:3d:26:1a:78:07:01:e2:4f:
92:15:8b:77:57:7d:9a:e0:c4:aa:74:58:3c:46:13:
83:d6:ef:74:45:54:ef:ce:e6:16:c7:03:c2:49:44:
40:42:c8:8d:b5:61:59:6b:e1:7c:c2:e1:0f:33:f3:
17:58:8b:5d:2d:da:a0:e5:ea:0b:b1:6d:ec:09:6e:
b0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FF:CB:64:D2:37:78:9E:6F:5D:4C:EB:82:14:05:93:2A:CB:A7:8C
X509v3 Authority Key Identifier:
keyid:91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:88:26:d2:dc:06:f6:05:d0:4f:03:20:eb:2c:11:85:38:6f:
e3:37:b2:1f:fd:16:66:6c:78:0c:cf:27:66:9f:4f:64:a5:b3:
5b:52:ef:dd:08:99:7a:64:25:1e:5e:f1:b5:37:e7:c5:48:5c:
a7:f5:6d:7c:69:8c:76:d3:c5:91:a5:50:3d:39:61:37:b5:9d:
82:2e:e8:e5:88:bb:88:16:91:6f:13:e4:1a:fa:f4:18:c1:b3:
07:b5:73:7f:64:a2:ac:ef:aa:41:b2:e2:12:e4:b0:16:86:44:
10:8d:53:91:61:96:b6:f6:ed:84:e8:c3:6c:6a:89:9b:4b:de:
2b:64:69:61:03:6e:a3:0b:32:fa:cb:cf:29:1d:83:e5:05:a3:
af:5b:29:14:bf:c7:a2:31:99:fc:e1:8c:7c:6f:03:1d:a7:64:
b7:d0:f0:24:35:68:af:a7:11:ea:15:bb:31:07:5d:31:02:44:
fd:ab:84:c3:a1:7e:c3:35:8c:fa:12:0a:59:ea:12:7d:dc:af:
ad:88:d8:48:63:0b:31:71:93:99:62:80:57:4e:5b:53:e4:04:
db:a5:5b:82:8c:da:48:23:a9:c2:93:9b:0d:99:2c:d6:71:d8:
2e:d5:1e:56:bd:8d:7c:69:66:3c:d2:23:bc:97:77:3b:05:f6:
ed:cd:f0:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:23:20 2025 by rpki-client