Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
File: KgedPD3CTph79wxKn6u6QFsIOkU.mft (raw, json)
Hash identifier: o/qbb2NGfjomA4PsVRpZY2XtrGlUT/zccZvmrYtIy0M=
Subject key identifier: DB:B7:4B:33:E2:36:AE:EA:41:9D:C5:B2:4A:8F:EE:5D:41:A4:C7:88
Authority key identifier: 2A:07:9D:3C:3D:C2:4E:98:7B:F7:0C:4A:9F:AB:BA:40:5B:08:3A:45
Certificate issuer: /CN=2a079d3c3dc24e987bf70c4a9fabba405b083a45
Certificate serial: 0197B6A0887BD0C14454C4653E0DEE521C29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
Manifest number: 0B2A
Signing time: Sat 28 Jun 2025 13:01:03 +0000
Manifest this update: Sat 28 Jun 2025 13:01:03 +0000
Manifest next update: Sun 29 Jun 2025 13:01:03 +0000
Files and hashes: 1: KgedPD3CTph79wxKn6u6QFsIOkU.crl (hash: y0rNG6PbBo9HaI5Bjxwz+YP1zh1gXjI7eZu2DAo0HOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:88:7b:d0:c1:44:54:c4:65:3e:0d:ee:52:1c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a079d3c3dc24e987bf70c4a9fabba405b083a45
Validity
Not Before: Jun 28 13:01:03 2025 GMT
Not After : Jun 29 13:01:03 2025 GMT
Subject: CN=dbb74b33e236aeea419dc5b24a8fee5d41a4c788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bd:a4:29:5b:10:0c:6e:3e:30:21:62:6c:b7:
e4:80:6c:28:ed:8c:0a:8d:4b:07:2d:17:93:8c:1f:
45:92:f5:18:af:5a:1f:09:97:a1:16:01:93:29:38:
17:a6:34:39:2e:44:0f:72:67:c5:d4:21:28:a2:c7:
98:12:b1:bf:e8:df:08:0c:76:76:14:7d:61:47:a5:
60:5d:fe:2c:14:3e:8f:20:2c:9a:03:a1:cf:70:ae:
0c:ae:3a:ee:5a:2a:b5:a4:ac:1b:b7:b7:22:5d:fd:
d4:d1:e0:82:fd:1f:98:00:a4:e9:44:00:bc:3f:75:
83:bb:70:cc:79:8d:90:8c:47:b9:f4:9a:44:74:99:
fc:e2:ab:0d:ae:de:ff:bf:13:1b:93:7f:1f:e0:a4:
30:e1:e3:b1:aa:ba:7f:e1:11:2f:fc:e6:c8:09:08:
b8:33:14:e8:2a:0e:bc:b4:f8:07:bb:fe:12:f0:ee:
14:ac:5e:90:27:52:f5:1f:dc:db:54:cb:73:de:73:
91:0d:30:84:ab:8d:3a:66:88:83:1d:d7:de:5d:8a:
e3:ef:41:21:0b:f8:a3:d3:fa:35:38:d9:e7:ec:ce:
e0:20:b3:12:57:88:16:47:b6:13:99:50:81:f9:53:
6c:eb:5b:75:08:83:96:4f:32:4e:a5:66:dd:8b:74:
16:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B7:4B:33:E2:36:AE:EA:41:9D:C5:B2:4A:8F:EE:5D:41:A4:C7:88
X509v3 Authority Key Identifier:
keyid:2A:07:9D:3C:3D:C2:4E:98:7B:F7:0C:4A:9F:AB:BA:40:5B:08:3A:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:cf:4a:5b:fa:be:15:75:45:09:1f:ba:57:ad:36:e1:46:98:
40:82:62:c0:8c:51:28:aa:c6:b7:cf:df:05:15:e4:5d:c4:7b:
13:7e:82:06:48:6f:b1:90:17:c6:a1:39:01:99:6f:cc:aa:91:
18:fe:89:f1:51:d2:50:1f:3d:0f:04:f8:0a:61:8e:80:6c:66:
63:14:6a:bc:cf:77:05:79:38:60:af:05:e7:8e:de:8f:79:76:
54:ea:68:bd:ef:dd:cd:a7:13:84:e5:7e:ea:c0:82:22:2f:74:
85:81:d8:a7:46:45:4f:ed:57:78:af:62:4e:78:12:24:e2:13:
a8:8d:0c:02:77:15:33:2c:42:fc:ef:f2:4c:b1:f7:59:46:3e:
dd:74:a8:67:7c:fa:58:bd:1f:79:9c:90:fb:46:20:9f:0e:c4:
3e:94:03:f9:e8:70:4e:b7:15:bf:12:c1:0b:b6:c2:12:3f:ff:
d4:03:a6:b7:0b:e4:45:da:35:8a:bd:f2:ad:8f:ff:ac:cc:4d:
53:ef:67:03:a9:60:dc:c8:ab:87:7e:f7:b9:12:27:c9:c4:8d:
ad:28:c7:e2:7b:32:90:fe:7b:93:20:07:99:4f:ed:21:b5:37:
42:15:2e:91:05:4c:c3:df:81:70:53:97:1b:84:1d:8d:7c:91:
5a:6e:08:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:38:49 2025 by rpki-client