Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
File: KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft (raw, json)
Hash identifier: VTNHUGGZ/YKdURvVvz8/yR7gzO/2FX3BOeZ1HrtHOEs=
Subject key identifier: C9:4C:71:EB:6D:F5:EB:17:73:73:A9:84:A8:30:18:8C:E0:E2:41:2B
Authority key identifier: 29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
Certificate issuer: /CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Certificate serial: 0197B70EA1406A53A2A9B567714780802BDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
Manifest number: 0C4F
Signing time: Sat 28 Jun 2025 15:01:18 +0000
Manifest this update: Sat 28 Jun 2025 15:01:18 +0000
Manifest next update: Sun 29 Jun 2025 15:01:18 +0000
Files and hashes: 1: 3Q4b3ZrB5hBNl0sc19tX6sYik8M.roa (hash: Y2d6NgWxe37Sh2Kw4xqcfrnYvSssw7Fp3dHdg6i9y18=)
2: GL9mMoVzYzt9cAMp9ZMhDNvyxpY.roa (hash: sr1sGLjbfiu/0SvHpnzyQUaLuHxB9sxU75fTY0SHxZw=)
3: KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl (hash: Ougbb7TDSMRLoJn/X0lRo9n8ELuNOHC3DFJbsQbXuzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:a1:40:6a:53:a2:a9:b5:67:71:47:80:80:2b:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Validity
Not Before: Jun 28 15:01:18 2025 GMT
Not After : Jun 29 15:01:18 2025 GMT
Subject: CN=c94c71eb6df5eb177373a984a830188ce0e2412b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:41:02:ad:bc:b7:8e:bd:a8:d0:62:79:95:5b:
0e:ce:f1:21:93:15:b5:06:24:c6:da:eb:f1:1b:d3:
c1:b7:32:e9:10:46:56:50:a3:d4:54:b9:e9:06:05:
42:7d:38:4b:bb:9d:9e:e2:58:f3:87:65:b2:c8:1b:
d0:8a:d5:6f:cb:26:cf:ea:b0:05:88:9c:75:44:0d:
12:a2:39:30:b9:89:14:92:be:71:2f:16:22:35:5a:
f2:35:1b:bd:84:af:7b:23:83:19:14:ed:22:bf:3d:
e0:b5:dd:6e:e2:f4:d7:2d:3b:98:e0:25:18:45:ca:
3d:f1:e7:56:d4:88:45:60:66:3e:cf:36:1d:e6:77:
02:32:a5:c2:0e:e2:56:a3:3b:51:2e:c4:a4:c1:ed:
ac:59:ad:50:c6:e4:3a:36:d8:6e:85:60:11:ad:92:
d9:df:73:e0:1a:4c:68:6a:8e:c8:71:9a:39:f4:ac:
02:60:97:3e:a3:3d:ef:3d:47:39:3d:0b:d1:d8:bb:
f4:88:e9:14:c2:9c:a6:53:11:62:cc:e7:14:28:ba:
3f:9a:5b:7b:de:4b:1a:c4:95:b3:b4:37:4f:4b:b2:
39:48:01:6a:c1:40:59:8f:e9:0b:1c:7f:d5:5a:2f:
99:91:e1:b0:74:89:9b:7d:2b:8e:e1:31:02:93:6d:
b7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:4C:71:EB:6D:F5:EB:17:73:73:A9:84:A8:30:18:8C:E0:E2:41:2B
X509v3 Authority Key Identifier:
keyid:29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:6d:cd:c2:1d:b3:4e:09:b4:1a:50:f4:8b:6c:d0:ba:5e:6a:
30:92:b4:8a:2d:f8:a8:0f:41:93:48:ee:7d:a7:a7:02:3e:8d:
04:02:5d:13:e6:a6:82:96:06:2c:2c:7a:6e:bd:3e:6e:5c:47:
31:4d:c2:e5:de:81:c9:e8:a1:fc:f0:3a:6d:6b:d9:48:ec:bf:
bf:fd:e5:02:ed:2c:a7:3e:5f:ac:ac:7d:6e:30:e1:fb:2c:47:
ce:1a:0b:18:78:e3:73:f6:d0:1a:c4:cd:ea:04:d3:90:7f:bc:
47:4e:2a:0c:4e:49:b2:b4:62:a1:b5:75:a9:c0:e7:b6:35:d8:
ca:44:0b:7a:86:3b:41:2f:9b:2e:b6:6a:e0:47:5f:3c:c1:00:
6f:4a:da:23:0a:7a:37:c3:18:e8:8f:a4:ef:17:ad:ea:67:8d:
05:95:9a:8b:ea:d4:dc:6e:3e:78:20:f2:ea:13:ec:32:2c:a2:
28:af:28:ca:00:b6:04:23:e5:37:6f:0e:3a:09:8b:f7:c9:13:
51:97:c3:d7:92:f0:72:95:86:ec:00:3c:fb:69:63:39:7f:28:
a8:64:48:a6:6e:4d:78:13:24:93:63:f5:d9:48:5c:69:af:b9:
47:a4:28:e4:39:6d:42:59:5c:c6:d6:45:65:5f:c4:06:43:95:
e6:96:d8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:31:44 2025 by rpki-client