Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: RBkr9qF1lHUS4XkKb182d2DcKRINk+3waJwdI7f0m+E=
Subject key identifier: 19:36:A6:31:A2:9D:C2:82:EC:C7:4A:4D:86:BE:06:87:56:9C:B8:DE
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 0197B7456F94C2F8DCE4F363DAAAAC5ADBE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 0391
Signing time: Sat 28 Jun 2025 16:01:10 +0000
Manifest this update: Sat 28 Jun 2025 16:01:10 +0000
Manifest next update: Sun 29 Jun 2025 16:01:10 +0000
Files and hashes: 1: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: WcLVQmDDd8XJdbyOYNHQ0uo9xAaxG/hbu7eni7MqlCY=)
2: o05sdzj6m4fQO6_WrgnQWVEGn8s.roa (hash: 4PZyqJElCUrsee8Vele9Jxa/SXWOHXm1LP7RgEQB9SY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:6f:94:c2:f8:dc:e4:f3:63:da:aa:ac:5a:db:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: Jun 28 16:01:10 2025 GMT
Not After : Jun 29 16:01:10 2025 GMT
Subject: CN=1936a631a29dc282ecc74a4d86be0687569cb8de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:56:79:23:b0:dc:6b:b1:8f:77:a8:4f:f0:d1:
cf:fc:30:bd:9b:9e:e4:93:66:b1:a2:75:53:74:6d:
a6:a5:c6:34:34:67:40:16:7f:e4:c4:e3:66:c1:50:
83:b2:45:e4:a3:fe:e6:d3:03:c0:8c:4f:5d:e6:bb:
b9:a5:bc:08:9c:58:cf:ec:58:b7:f6:1c:f8:f6:fe:
e8:73:3e:c3:8b:54:47:64:e4:6c:73:36:db:2d:29:
37:58:ef:87:3a:a9:20:94:6f:62:06:54:3c:b8:58:
c8:a3:2e:da:54:ca:65:bf:ae:9f:44:38:7a:84:e9:
ae:c5:c7:6b:e4:1c:33:45:86:2a:c4:5a:0a:7b:3a:
2f:bc:e0:a4:b3:83:93:18:e0:20:69:26:8a:cd:32:
fc:78:ad:e9:e5:56:45:19:63:97:a8:5f:b5:4c:90:
49:28:4a:4b:d2:ba:e9:bf:0b:5f:a3:da:f5:a0:44:
64:eb:e4:9e:43:d9:db:5e:43:7d:5e:7b:a9:87:65:
8d:07:ea:ea:15:81:ff:97:aa:05:57:12:71:a1:42:
88:87:04:86:26:c4:2b:35:07:10:d7:47:b8:4b:13:
79:06:d2:8a:26:ca:47:a6:fd:62:02:88:cc:de:be:
3f:f8:5d:24:84:45:ec:d1:0b:30:1a:8a:a3:17:5a:
c7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:36:A6:31:A2:9D:C2:82:EC:C7:4A:4D:86:BE:06:87:56:9C:B8:DE
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:db:05:c3:3f:16:56:ea:95:29:57:91:d4:b1:36:ff:9c:44:
dd:ae:74:3e:21:64:e6:8a:90:e8:3c:df:4a:c0:f4:34:09:6a:
be:42:af:94:a2:db:6e:30:b0:0b:e2:05:ba:ba:87:27:b1:25:
89:3a:d8:a0:3b:1f:6c:e4:23:94:d1:5d:f4:9f:c0:56:17:72:
3b:86:70:4c:ae:1c:85:7f:eb:19:ce:fc:cc:3a:cf:12:1c:3f:
49:ae:5c:35:8c:93:6b:34:6f:13:14:93:9d:f3:fb:ac:40:7e:
7f:4b:c7:a7:6b:23:67:f5:11:11:e9:b3:cb:2f:3f:5b:c5:0c:
14:c1:c8:ca:77:10:ab:e2:aa:fc:ff:4d:1f:eb:9e:1b:6b:c2:
84:c3:9c:95:f1:bf:f6:b2:f8:19:fa:08:4d:04:73:e9:fa:7e:
29:1f:4c:00:de:65:cb:41:2c:ed:4f:2b:cf:8d:3d:7d:34:cf:
24:ca:80:dd:a5:6e:ab:10:5a:6b:86:be:be:48:ee:55:b7:6d:
5a:f7:35:04:eb:d6:2a:d8:13:67:80:c9:19:78:5c:32:dc:40:
b8:95:b9:7f:9c:c2:a4:18:a3:80:fe:ee:98:8e:1b:ba:cc:d1:
ae:cf:a9:4e:8f:07:15:2d:08:5b:53:28:02:3a:4e:a7:63:7c:
32:9e:1c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:35:50 2025 by rpki-client