Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
File: Km9uXKXbQ3eec6znzhbs4O55R5k.mft (raw, json)
Hash identifier: dyfNydKyJm4N0JsnoTb5K8ZWJ3si9jJ7aazLH93zxFw=
Subject key identifier: B3:1F:2F:55:53:D6:88:50:51:86:8D:EE:29:CF:16:B1:A8:A4:A2:A4
Authority key identifier: 2A:6F:6E:5C:A5:DB:43:77:9E:73:AC:E7:CE:16:EC:E0:EE:79:47:99
Certificate issuer: /CN=2a6f6e5ca5db43779e73ace7ce16ece0ee794799
Certificate serial: 0197B6D79B504AD7A65F0D1E962D7B3278E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
Manifest number: 0437
Signing time: Sat 28 Jun 2025 14:01:12 +0000
Manifest this update: Sat 28 Jun 2025 14:01:12 +0000
Manifest next update: Sun 29 Jun 2025 14:01:12 +0000
Files and hashes: 1: Km9uXKXbQ3eec6znzhbs4O55R5k.crl (hash: 5lIMpKwahA20o3vo58ic29/IJFSNg1pwYnVCv75KUOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:9b:50:4a:d7:a6:5f:0d:1e:96:2d:7b:32:78:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a6f6e5ca5db43779e73ace7ce16ece0ee794799
Validity
Not Before: Jun 28 14:01:12 2025 GMT
Not After : Jun 29 14:01:12 2025 GMT
Subject: CN=b31f2f5553d6885051868dee29cf16b1a8a4a2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bc:98:e5:57:9d:f5:20:d1:b4:01:00:4f:17:
95:cf:41:69:8e:3f:dc:8b:3a:d4:db:79:ba:21:95:
1c:84:93:06:ac:d8:f6:ee:e1:fe:1a:3c:91:2d:e8:
95:f7:88:02:6b:1a:ed:7f:dc:be:f2:0e:a8:9e:0a:
e3:12:e2:b9:74:64:37:8c:07:73:78:d4:33:5a:7c:
03:1d:82:1f:8d:9d:0e:93:6c:10:2f:34:db:fb:2c:
c9:13:71:6f:98:ab:d2:29:b8:09:67:21:53:0a:6f:
58:5c:9b:f4:1b:da:ea:ea:b8:71:af:bd:97:8b:5a:
1a:f1:c0:d4:02:b1:e3:34:66:8f:dc:85:93:9a:0e:
ea:61:ad:c5:c6:4e:da:15:0f:a9:56:b5:6e:0d:e6:
63:a2:fb:3d:90:f3:4a:90:fb:fe:51:6e:9a:97:4e:
fb:ca:8d:e8:eb:bf:21:1c:16:3f:d7:fb:85:0d:3d:
13:82:1e:46:64:fb:0d:3f:98:0a:32:3d:52:bd:0a:
48:94:5b:8f:8e:83:c6:e8:e7:3d:f4:ce:d6:2c:5e:
e4:e1:a6:07:8d:85:aa:8d:42:de:a7:65:03:fd:0e:
27:e4:4b:31:44:48:4f:10:9d:c4:d8:b0:10:3b:0a:
9a:32:4e:7a:a7:66:57:3e:c9:28:c7:18:f4:8b:bf:
8d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1F:2F:55:53:D6:88:50:51:86:8D:EE:29:CF:16:B1:A8:A4:A2:A4
X509v3 Authority Key Identifier:
keyid:2A:6F:6E:5C:A5:DB:43:77:9E:73:AC:E7:CE:16:EC:E0:EE:79:47:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:91:74:16:b9:e1:50:66:c1:dd:51:3d:af:4a:dc:d7:cd:bd:
30:d5:78:49:1d:d1:77:b5:af:f3:e4:65:52:d8:40:4d:1f:e7:
f6:60:9e:1c:22:0d:84:90:2d:c0:bd:60:ce:47:58:e5:b4:0a:
b9:7b:69:51:28:b9:ea:1f:cf:67:62:70:bf:fb:2a:4e:d6:d4:
28:d0:14:81:b0:a8:de:75:b1:26:ab:d8:3a:b7:40:06:b6:39:
67:ae:b7:59:dc:81:be:7c:bd:f1:2f:0b:fd:2e:5d:b4:5e:92:
56:d4:b9:ab:6b:ca:0f:ab:22:12:c4:47:83:f3:f6:5e:1a:86:
1d:a9:87:97:38:ef:da:b8:30:70:91:4c:49:ac:78:8e:3a:51:
da:6c:5a:85:7e:db:e0:9c:05:b0:d1:3a:9c:24:3c:e6:66:3b:
f9:23:5f:38:7e:b7:1a:9e:7c:13:59:47:3e:4f:02:1c:65:8d:
4e:c2:1f:54:95:85:ac:4f:af:cf:97:a7:29:c4:e9:a8:9e:02:
6d:53:ee:90:5a:26:ae:c7:ea:f2:0e:bf:16:48:0e:35:b5:ac:
51:50:f5:9b:97:ef:a4:30:4a:e6:4b:6f:c8:53:72:a8:0b:e0:
fb:19:66:4e:6b:0a:b0:c1:ad:5a:9f:5b:4c:cf:ba:57:ad:3e:
d2:f3:1d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:06:08 2025 by rpki-client