Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
File: KFJhMsT89rTN_3QCVWAsz53LBC8.mft (raw, json)
Hash identifier: z9wX+uzxGHn/n3oDeVgnI8tlXY3j3/5cNEd99Sakx84=
Subject key identifier: 0A:25:FD:9E:5F:4E:A6:48:BE:BE:75:DE:86:30:A6:6E:E8:8E:E0:06
Authority key identifier: 28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
Certificate issuer: /CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Certificate serial: 0197B77C58CE57EF6F8AF7E237CD964EDB29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 17:01:08 +0000
Manifest this update: Sat 28 Jun 2025 17:01:08 +0000
Manifest next update: Sun 29 Jun 2025 17:01:08 +0000
Files and hashes: 1: KFJhMsT89rTN_3QCVWAsz53LBC8.crl (hash: duq8qbQLZT4I9Xjujr6/XclPYpawt546Rdin2d/1XDI=)
2: ZhfTjFWerubW-wXYF5uHcQImBi0.roa (hash: ETJfKBPXF5SBOehYcFURbCVWhceZCDiTMb0cVW0YkTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:58:ce:57:ef:6f:8a:f7:e2:37:cd:96:4e:db:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Validity
Not Before: Jun 28 17:01:08 2025 GMT
Not After : Jun 29 17:01:08 2025 GMT
Subject: CN=0a25fd9e5f4ea648bebe75de8630a66ee88ee006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:02:4c:a5:69:8b:31:08:ae:46:a8:68:0f:58:
d5:23:af:af:ce:fb:a6:8b:3c:48:72:92:cf:c5:4a:
49:0d:ac:22:38:5a:7b:e8:c6:b5:48:dc:f7:2f:5d:
c4:a1:00:96:2f:ce:73:29:77:96:e6:aa:64:91:ea:
cf:e5:42:89:dc:13:b1:d1:49:5a:a9:09:21:5d:b8:
50:56:d4:c2:a4:ef:b7:5d:ef:a7:e1:af:37:06:a3:
5c:36:a9:58:8c:01:4a:e8:9d:35:b9:f4:1a:a3:c2:
b2:98:6b:b4:3e:b0:fa:0e:a3:c8:fb:8b:3d:53:d4:
f1:b2:8e:a0:6a:94:79:b2:e5:cf:60:69:a2:fd:7a:
5f:6c:ab:66:3a:85:df:58:30:88:51:66:77:da:cc:
4c:54:ab:73:a0:54:65:4e:27:31:94:46:f5:46:76:
e6:1a:8f:a5:7d:da:15:48:8f:29:bf:15:58:48:f3:
e0:e3:14:09:df:bc:1c:31:f5:1a:08:39:1a:49:c1:
0a:49:f9:43:d8:ff:0d:19:9d:e5:8a:6f:e6:18:1b:
0c:2b:71:99:bb:0c:34:0c:19:c3:17:2e:2e:fb:ff:
b5:12:e5:86:6a:91:03:e0:4c:81:e0:0c:a3:f5:0d:
92:16:dc:e0:70:c2:96:83:3e:ef:b0:0b:d3:03:01:
c7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:25:FD:9E:5F:4E:A6:48:BE:BE:75:DE:86:30:A6:6E:E8:8E:E0:06
X509v3 Authority Key Identifier:
keyid:28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:f6:98:0b:7d:4f:23:7b:70:a2:4b:ba:c1:b1:f8:bb:8a:b8:
82:74:07:15:50:b5:a6:79:86:7b:bc:c4:21:50:62:5f:c0:25:
0a:0e:42:8e:8d:9f:46:97:a7:d4:22:5c:c3:8e:db:5b:ec:e3:
6a:c6:58:fc:ca:d7:ce:90:b7:f8:3b:8b:dc:6b:38:c3:26:a8:
c4:fc:fd:89:d2:6f:dd:c5:36:0b:16:c7:eb:19:8d:50:20:16:
be:ae:27:7c:91:69:33:3b:78:c7:ca:5d:dd:c9:04:85:39:6f:
2c:03:13:65:7b:92:5b:bd:d2:f8:d1:34:28:81:72:12:e5:f7:
59:53:01:ae:ee:08:f9:79:5d:e6:20:4a:b6:f4:35:01:ca:be:
e3:7c:57:d6:ef:3f:ac:a8:42:33:4c:d8:52:35:bd:af:2c:fd:
23:ea:d0:1e:e9:67:6b:db:f4:77:d3:c9:64:59:87:74:dd:dc:
49:48:ea:81:de:80:50:7c:3e:20:41:46:b4:81:11:6d:de:10:
8b:61:71:4e:e2:57:a7:7e:1d:c5:7b:39:9a:2d:03:ce:3c:e1:
0e:32:65:fb:74:3a:4a:c3:05:15:34:87:46:eb:e2:73:e7:f6:
aa:3c:10:d0:63:49:9c:88:66:2f:cb:5f:ef:bf:9c:b2:fe:2d:
43:b5:63:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:04:00 2025 by rpki-client