Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: WesB5ILD9QfHKmJnudnNmbRsVl9xuEU5itx+SuAm840=
Subject key identifier: E0:C2:02:1A:67:1E:D7:BA:C6:F2:D9:EA:46:94:8C:1D:B3:80:74:68
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 0197CE71B0120A51C7D4FEC3D9DC6A9C718A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 153E
Signing time: Thu 03 Jul 2025 04:00:46 +0000
Manifest this update: Thu 03 Jul 2025 04:00:46 +0000
Manifest next update: Fri 04 Jul 2025 04:00:46 +0000
Files and hashes: 1: CgAYwcYqjGUwI5cuY-inYF9ViL4.roa (hash: DG9lxho2Qdp+1bj1jPdlMwaM6onKyvGHv7zkZeOCV70=)
2: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: QO7kmLxKVuHfNw4qRHO7GWk61I7efwAh9uQDebgm8dA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ce:71:b0:12:0a:51:c7:d4:fe:c3:d9:dc:6a:9c:71:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Jul 3 04:00:46 2025 GMT
Not After : Jul 4 04:00:46 2025 GMT
Subject: CN=e0c2021a671ed7bac6f2d9ea46948c1db3807468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bc:1c:cb:93:05:15:9c:3a:7e:5e:3a:2f:f9:
f1:52:07:84:a6:46:91:f1:ee:e8:5e:97:39:8a:fe:
34:ff:45:e4:c0:cc:1a:b5:1e:9f:c7:b8:7d:a3:a4:
5a:a8:f2:f2:99:11:3c:b6:e6:7a:8c:56:46:7e:13:
70:7e:d1:52:18:2d:80:15:04:d8:9c:8a:3d:db:0c:
8c:b7:a8:2a:cf:2e:2b:65:76:e3:c4:da:cf:08:0b:
4b:32:92:ee:f6:14:d3:97:f2:cb:36:da:50:fb:76:
d9:0a:cb:3b:9a:a4:26:fb:b8:41:c2:62:6e:16:27:
95:1a:b8:3c:a7:0a:46:09:a5:b7:f5:c3:25:b7:a9:
53:6d:eb:0f:f7:cf:32:1b:d9:dd:1e:20:91:11:aa:
fe:2d:3a:b0:9f:e3:75:5e:e7:0a:ca:8b:5e:5e:61:
f4:ce:59:ca:0b:58:5f:9f:5f:5a:b1:ff:fc:21:19:
55:81:e6:91:08:c3:ef:5f:36:da:70:20:38:57:b0:
95:f5:b8:2d:a2:fb:67:0e:a4:b4:2b:a9:d6:d8:59:
d2:0c:bc:a7:4d:a6:e1:1b:0f:ed:1c:6a:6e:f9:3b:
04:d0:05:98:46:6d:55:c5:f6:30:5e:f9:93:84:4b:
92:62:7b:51:43:3e:51:bf:e2:12:6a:50:9c:41:c6:
ad:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C2:02:1A:67:1E:D7:BA:C6:F2:D9:EA:46:94:8C:1D:B3:80:74:68
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:6a:56:0e:35:5f:d4:c3:2b:2c:fd:eb:2e:32:a6:e0:88:6d:
25:ed:44:e8:e8:8c:50:a9:2f:5b:21:34:50:6d:7c:72:33:ff:
cc:8e:67:41:f6:f7:12:2d:be:d7:b0:68:e5:4d:e8:8c:bd:43:
5f:4d:00:bb:00:ef:6a:56:3b:47:9e:a8:ad:de:a7:60:b2:16:
c8:b2:91:f2:7c:c7:39:ee:18:31:11:c7:53:36:aa:b3:86:a4:
57:4a:1d:96:18:a7:2f:94:19:7c:93:06:38:3c:a1:f9:6d:b3:
5e:0e:7e:ec:6c:8c:6d:7b:d0:fb:81:f8:41:ad:9b:eb:0b:b3:
29:a3:61:89:e9:80:77:04:7b:8a:7f:24:e9:cf:57:bd:26:a9:
78:5b:6c:9c:b7:58:5f:c4:06:eb:36:6f:01:e5:28:c2:e4:97:
a0:ab:c0:06:85:9c:cf:9a:e6:03:03:6b:f7:0a:b8:b4:d3:9c:
e1:ea:ad:2f:a3:f6:64:35:f0:b2:4b:c3:3d:a4:b5:19:e1:c5:
54:d9:a9:91:23:bc:4d:3f:23:e3:0e:48:32:91:db:e1:46:65:
95:fc:86:f9:7d:95:85:f6:9b:36:08:3e:60:30:d6:dc:12:26:
cf:48:f5:a1:28:87:b7:ad:23:1c:6f:1b:28:52:25:63:be:f4:
7e:67:56:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 09:13:20 2025 by rpki-client