Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
File: KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft (raw, json)
Hash identifier: x4MPauVNei8HTF6iksf34EtGrYCB9pCoyqQXxBL01SI=
Subject key identifier: 17:36:B9:00:DE:CF:52:34:2B:48:EC:A5:84:28:22:36:6C:AC:F6:D6
Authority key identifier: 28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
Certificate issuer: /CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Certificate serial: 0197B6A20997154652073E9E19FB57951D68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
Manifest number: 0832
Signing time: Sat 28 Jun 2025 13:02:41 +0000
Manifest this update: Sat 28 Jun 2025 13:02:41 +0000
Manifest next update: Sun 29 Jun 2025 13:02:41 +0000
Files and hashes: 1: Ep5Q_paEMkoQ8JMNVQev_VtcdmY.roa (hash: Bu1EiGDnBTDp8uoDAPAoyCI9ib5FJjnia2bO4NVERCs=)
2: KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl (hash: ATwzqfn4+NMFDt81t1TOUNT79TR2UMGAh9jsMXXPOqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a2:09:97:15:46:52:07:3e:9e:19:fb:57:95:1d:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Validity
Not Before: Jun 28 13:02:41 2025 GMT
Not After : Jun 29 13:02:41 2025 GMT
Subject: CN=1736b900decf52342b48eca5842822366cacf6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e2:c7:f2:66:9a:6e:b7:fb:da:26:b3:0c:0d:
f6:26:72:be:ef:a4:d6:03:5f:28:69:fb:46:1f:a5:
36:86:b6:d7:22:27:8b:ee:ac:02:54:6c:0c:8f:3d:
c9:93:88:7b:4a:50:ec:64:07:25:dd:33:d5:8e:71:
b5:a0:80:42:eb:9a:0c:1b:21:0c:4f:b0:d7:98:e2:
47:26:45:08:1b:e8:40:39:fe:2f:70:f5:71:13:e9:
74:ba:5c:a2:b9:cd:6e:53:e7:28:8f:50:f3:30:80:
14:79:d0:51:c1:76:c1:d3:57:48:46:98:a4:ee:6d:
5c:d1:a0:46:0e:f3:fe:b6:ba:8e:be:b9:ab:77:71:
98:64:3d:f4:b4:c9:89:bc:b8:dc:f2:b7:06:8b:1e:
42:52:93:de:d8:a9:02:de:48:3f:7b:39:7d:a8:77:
75:15:a6:6a:c0:00:ed:bd:a9:4b:22:a0:40:f2:e1:
6f:ba:5f:a4:7a:92:af:c3:5c:5d:d1:49:da:a8:2a:
c7:27:65:9b:82:26:aa:5a:35:df:c1:a5:29:63:d5:
1b:18:b4:bf:d4:5c:46:69:99:29:cd:a8:ab:26:f3:
06:2e:dd:ab:47:70:16:54:8e:e2:f8:f5:e0:d3:b8:
d6:96:20:74:aa:e1:59:b1:0a:a0:17:b7:b0:cb:5d:
a4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:36:B9:00:DE:CF:52:34:2B:48:EC:A5:84:28:22:36:6C:AC:F6:D6
X509v3 Authority Key Identifier:
keyid:28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:4b:ea:66:ab:d6:1c:31:c8:77:ab:c0:b6:66:8a:81:0b:02:
53:3a:c3:1d:c4:ab:a8:c4:62:3d:64:f5:86:38:56:03:df:3c:
1c:ee:d4:8c:b3:6a:c0:0e:67:6c:34:21:ae:60:ff:99:a5:69:
30:a9:b5:bc:ba:a0:9d:d9:d9:1d:55:02:26:49:76:2e:a0:a2:
63:da:0c:6a:cb:47:fa:4d:f6:38:54:21:ad:66:11:90:84:a0:
95:ba:b9:fb:de:0e:2c:67:48:f1:ed:92:40:02:dd:80:41:72:
67:b2:dc:06:0a:58:de:9c:a4:66:c6:3a:59:1c:61:3a:58:3a:
68:2b:83:fe:97:6c:86:62:1c:f3:c7:8d:d7:1e:e6:3c:d2:36:
38:33:7a:8e:d1:4d:c5:1c:30:c7:82:41:91:93:4e:27:a9:8c:
99:d6:32:5b:74:14:fd:9c:b9:8a:6c:7e:16:4f:03:62:2a:36:
2b:07:c4:91:5f:af:ad:04:ce:e3:c4:6e:2a:42:6a:0c:13:a8:
c7:b0:e1:69:05:0a:da:93:8b:cd:62:1c:d5:35:49:21:61:b0:
75:66:f1:03:9c:7b:cc:a9:03:91:31:a6:3e:59:cf:9a:75:f2:
e9:60:9f:3c:d2:9a:58:16:9b:ff:bd:2f:84:97:e4:95:8d:f1:
36:84:b9:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:44:44 2025 by rpki-client