Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: yZEIHqoGpq+GX19qNxwaGoXA5q+mlwmasg3A2v7H7Ng=
Subject key identifier: 23:4F:AC:16:54:4A:71:7F:18:A3:67:3E:DB:82:BA:E0:C5:9B:ED:B5
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 0197B77CBA2146DBC4E3621BAA62AF02858E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0C4A
Signing time: Sat 28 Jun 2025 17:01:33 +0000
Manifest this update: Sat 28 Jun 2025 17:01:33 +0000
Manifest next update: Sun 29 Jun 2025 17:01:33 +0000
Files and hashes: 1: GDngKunQly0rXAZJTM9K6ouZldE.roa (hash: srWtclzCrCIl56nGBNOU8VqqYjtRTWRgnKIo2g1oYz4=)
2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: 7A94IjdsaKghmSEihUNyzPymXxxr7q2mBUO42h3xGm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:ba:21:46:db:c4:e3:62:1b:aa:62:af:02:85:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: Jun 28 17:01:33 2025 GMT
Not After : Jun 29 17:01:33 2025 GMT
Subject: CN=234fac16544a717f18a3673edb82bae0c59bedb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:92:ba:0c:e3:d2:e8:4d:70:c5:32:03:25:15:
85:45:4d:aa:5e:de:6e:77:4c:97:f1:db:0d:3e:d2:
12:29:a6:28:e6:78:88:fe:4f:11:d6:57:e5:8c:a9:
33:3b:cd:69:3f:4a:61:2b:9a:64:a1:88:ce:25:49:
e3:1b:44:a4:4b:31:30:e5:c5:10:2e:52:45:8b:4b:
c2:9c:f1:04:fb:2a:65:81:ec:72:51:bd:05:5e:d1:
8e:63:dd:c8:9e:fc:0f:76:bd:23:da:6f:7e:24:ae:
b3:08:be:3d:aa:ed:e3:f2:aa:da:72:de:c7:dd:db:
5e:21:cc:4d:97:0a:b5:2f:8e:86:88:51:9c:49:bf:
d7:3c:df:74:c2:15:07:3a:85:5d:60:4a:91:92:bb:
8a:f7:f1:61:66:9a:40:71:69:b8:e6:c3:c0:8e:f9:
be:b9:c1:79:6f:6b:42:b5:4c:80:80:5b:ff:11:63:
09:be:93:74:a6:c4:23:f8:fb:de:2b:71:33:4a:85:
2e:77:7e:34:d5:a0:7e:90:08:79:67:3e:81:99:45:
0c:52:96:4d:c1:f3:a3:24:eb:9f:46:5f:60:05:1b:
16:35:9e:9c:b9:ea:93:70:56:84:63:66:f2:e6:87:
b9:31:d6:07:6c:bd:7e:4a:c1:13:a5:ac:75:a8:34:
76:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4F:AC:16:54:4A:71:7F:18:A3:67:3E:DB:82:BA:E0:C5:9B:ED:B5
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:1a:99:36:83:84:2c:82:69:b2:7b:71:a7:d3:d0:ef:77:c9:
fd:69:fb:94:7a:e9:a9:e9:cc:57:29:3d:a5:63:4b:81:ad:47:
26:dd:3c:d1:dd:6a:a1:62:8f:ee:82:5c:8f:0c:25:74:82:ae:
b1:9d:af:00:33:2d:f7:0e:21:31:58:b4:b5:cf:da:53:5b:7d:
a6:d4:43:8b:94:9b:8f:3b:d1:35:47:5f:c4:29:25:f3:67:9b:
42:20:1f:fe:48:3d:06:08:ac:95:ec:d0:99:5b:18:48:f0:9b:
86:f7:fd:f0:63:67:ab:86:69:c5:93:86:f9:70:f2:3f:de:9b:
94:f9:bf:07:c8:50:10:7c:ff:fb:52:c0:57:d3:87:a6:0d:be:
ac:2b:1d:44:af:24:11:12:06:ea:d3:eb:86:8d:5b:56:31:50:
f9:33:24:86:9b:39:46:a2:20:3a:95:da:b7:10:98:aa:92:0d:
68:4b:04:f1:de:71:93:fb:37:a8:99:9f:ba:16:95:ac:69:35:
d9:dd:67:47:9c:78:f5:44:ef:3f:7e:cb:0f:5b:68:12:d1:0b:
04:7b:e7:bc:b9:b4:0d:47:1a:fd:00:44:06:88:f0:3f:25:66:
e3:f8:7d:1c:02:45:ca:ae:90:9c:6b:4b:5e:6b:d4:a6:51:69:
f0:35:2d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:09:32 2025 by rpki-client