Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json)
Hash identifier: xlZZru0+G//2m1U05luTbt5TVNnE3LRZ25R94MPSPOk=
Subject key identifier: 1E:70:61:A3:D9:81:7A:02:47:2F:C4:9F:67:6C:BD:CF:7A:E2:41:98
Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292
Certificate serial: 0197B5FBDD379665670E11EDF21D536AE81F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
Manifest number: 0F32
Signing time: Sat 28 Jun 2025 10:01:11 +0000
Manifest this update: Sat 28 Jun 2025 10:01:11 +0000
Manifest next update: Sun 29 Jun 2025 10:01:11 +0000
Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: wARQSk4iml07SV+bstO5re7MiMjBCV+dHY+hItKOL8k=)
2: jp-8lbUOvN6sUPZsTL-dh7MOVR8.roa (hash: /kMpoM5rzLA4Q5DdnfjuYEV0in2H+0XYtN+u4LENV/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:dd:37:96:65:67:0e:11:ed:f2:1d:53:6a:e8:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292
Validity
Not Before: Jun 28 10:01:11 2025 GMT
Not After : Jun 29 10:01:11 2025 GMT
Subject: CN=1e7061a3d9817a02472fc49f676cbdcf7ae24198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f8:e3:c6:44:10:99:33:7c:e5:c7:b5:16:79:
9f:be:d5:c8:d5:ef:cd:03:bc:48:0c:89:17:52:6c:
90:a5:88:53:29:84:2d:05:f5:3e:a6:e5:5d:63:fc:
05:48:22:0a:13:62:1c:1b:b3:aa:e3:fc:32:6d:ea:
50:b8:41:64:33:17:7f:24:65:4a:45:7d:bf:fc:90:
f4:e5:84:c3:82:26:9b:f2:02:73:84:fe:bc:51:0c:
18:05:06:1d:fd:9a:1e:7e:8f:51:b9:43:eb:3f:9d:
17:d1:b4:39:7b:3f:69:40:e7:78:19:8a:7f:0c:db:
f1:64:78:da:a9:14:65:68:3a:3a:2e:10:25:b4:2d:
23:c1:6b:c5:8c:fa:78:fc:b8:7d:22:aa:ee:a3:0f:
6e:8a:62:8d:71:04:ee:16:80:c8:a3:73:03:2d:df:
a5:6b:f2:34:b2:8e:ec:96:92:b7:88:af:30:29:8a:
4e:ad:b3:79:0e:dc:9f:ac:8c:54:59:40:a6:0c:2d:
2c:43:36:6d:de:d6:5f:24:3a:75:00:43:27:c8:b5:
2b:67:e6:72:fe:22:86:5a:f8:da:29:d1:b3:b7:ed:
d7:a0:a1:a9:f5:01:ec:b0:89:54:48:0d:40:15:c2:
6b:55:2f:b0:de:be:a6:85:24:9e:37:0f:2d:e1:6f:
45:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:70:61:A3:D9:81:7A:02:47:2F:C4:9F:67:6C:BD:CF:7A:E2:41:98
X509v3 Authority Key Identifier:
keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:50:7f:e4:fd:db:ea:b0:2f:0d:5d:83:dd:d3:38:32:2b:12:
42:ab:44:2c:07:2e:d3:26:23:70:6f:f9:b5:54:32:cc:8f:d1:
4d:76:6a:85:10:85:f1:16:6a:a1:f3:9a:8b:fd:06:70:e8:6a:
15:cd:45:bf:f1:82:b0:da:fc:2a:00:eb:85:bf:63:ea:02:bf:
48:95:41:c7:0d:1a:4c:b8:24:0d:d2:a3:2a:9e:f7:10:fa:1a:
33:0c:5b:6a:63:b9:4b:50:2b:47:d4:92:0b:d4:a7:5d:6a:90:
b9:42:c4:00:85:c4:3a:cf:d4:8f:81:8e:c1:7a:50:0c:15:81:
84:43:a4:41:e2:48:c0:5c:7d:0a:1f:ff:62:a9:5e:6b:ab:1f:
6d:e2:de:1d:2d:22:7e:59:e4:c9:23:32:09:26:c8:be:90:d5:
99:4b:1d:b7:97:ca:62:6c:b6:e9:78:b3:72:16:fd:f3:1c:be:
dd:9f:90:8b:cf:dd:4a:2b:ad:52:4e:88:7d:02:db:85:38:09:
5c:0b:80:26:5a:e6:88:7b:64:f5:7d:b7:51:f9:6c:ff:a2:7f:
e5:13:fc:27:f2:ec:80:f0:d7:f0:b7:40:3a:a8:61:e4:f4:7d:
35:97:f2:01:20:08:b0:b9:35:3a:3b:2a:1b:8a:82:98:8e:48:
3b:c5:87:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:42:12 2025 by rpki-client