Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
File: KqJOWBL8wxBrnrCusA5ie6I10FY.mft (raw, json)
Hash identifier: Vv+PHXoSlnnbXOiGY7XWKS45sFCBUojDVol/rUYSuas=
Subject key identifier: 40:AE:31:D2:26:39:46:A2:FF:7A:78:05:FC:9F:F2:9B:3C:31:2F:91
Authority key identifier: 2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
Certificate issuer: /CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Certificate serial: 0197CD5F0DB2C728B6F70D59252C7492FBE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
Manifest number: 0854
Signing time: Wed 02 Jul 2025 23:00:47 +0000
Manifest this update: Wed 02 Jul 2025 23:00:47 +0000
Manifest next update: Thu 03 Jul 2025 23:00:47 +0000
Files and hashes: 1: KqJOWBL8wxBrnrCusA5ie6I10FY.crl (hash: gHhflSLFsWadObEIN23GrDK3IuK5COwm7hWA7Jvf+l4=)
2: cNLYAjPMpLbcGOrpCslyUiLMP34.roa (hash: JmHm3+B47TlFvMWFE2W9uNvIfC/wvizwOPaVYVDTxDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cd:5f:0d:b2:c7:28:b6:f7:0d:59:25:2c:74:92:fb:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Validity
Not Before: Jul 2 23:00:47 2025 GMT
Not After : Jul 3 23:00:47 2025 GMT
Subject: CN=40ae31d2263946a2ff7a7805fc9ff29b3c312f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:83:0b:60:6a:c4:b7:7c:30:ac:7f:4e:3b:b8:
2a:07:3b:74:67:e5:c5:7f:13:c3:fc:cf:62:26:e6:
fa:05:0d:ce:11:5d:03:8a:ff:4a:89:55:4a:f3:6e:
ec:da:42:90:6f:f3:ad:6f:39:55:e5:60:b7:28:eb:
10:50:e1:0a:c5:21:77:04:b1:f5:06:20:66:88:c0:
f4:27:c2:4e:e8:f1:22:cf:dc:55:55:80:36:46:b0:
67:da:07:b8:f0:4c:65:a0:a0:08:0d:27:a2:41:bc:
81:86:1e:25:bf:1f:e5:bb:01:f2:66:a7:3f:f5:2d:
74:e4:ee:c3:cf:7d:2d:25:30:48:fc:e0:d4:24:89:
29:a1:4c:b9:09:3b:d9:bc:3c:c6:e9:9c:be:41:82:
2e:9e:c8:49:e4:7a:ff:7c:b7:03:5c:90:f9:98:33:
73:0f:f8:db:f0:b6:9f:01:93:ec:15:87:54:89:66:
6d:6b:cf:00:5e:c8:e8:71:10:69:ba:3b:f1:61:b2:
0d:54:31:10:19:14:cb:9c:cc:4f:8e:35:6c:f0:0a:
b3:84:70:45:a4:8c:eb:90:15:78:2f:05:cc:26:48:
50:05:35:b0:83:65:0b:50:76:58:dd:f4:22:75:35:
d7:38:f7:be:5c:22:db:0d:8e:4d:ec:9d:3a:73:ca:
a1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AE:31:D2:26:39:46:A2:FF:7A:78:05:FC:9F:F2:9B:3C:31:2F:91
X509v3 Authority Key Identifier:
keyid:2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:b0:df:fc:60:cf:a8:ad:9a:ae:25:c4:5d:5a:e9:7a:2b:9c:
21:c1:49:c0:29:bd:72:56:7a:0d:43:c5:4a:5e:7c:64:f1:a4:
8f:e9:19:42:03:f9:a3:4d:2b:49:45:8d:99:d0:2a:cd:eb:7c:
3e:14:a7:a3:13:d2:ee:ed:c3:d4:5c:1d:8a:0f:0d:79:03:73:
ae:6a:2a:99:b2:ca:7b:b3:a6:8a:23:10:1d:93:90:c4:7c:94:
24:ed:fa:a4:d8:de:39:fa:88:26:5d:3d:40:db:37:22:2d:13:
28:7b:bd:25:7c:bf:24:bf:2e:57:13:b9:bd:c4:d2:6b:10:76:
4c:ec:9a:64:b0:fb:fc:51:5c:5a:58:be:4f:76:d2:03:28:b1:
ee:a3:53:55:47:26:fe:35:77:80:eb:90:7c:3a:d4:0d:69:bf:
db:c0:32:08:37:ae:6f:14:aa:bb:eb:4d:87:cb:a7:8b:2f:6c:
62:cf:ac:50:9d:73:46:c6:c6:49:5a:95:a9:ac:35:1b:75:33:
58:66:22:70:ee:bd:a3:e9:12:e2:d8:30:c2:83:3a:17:b4:b7:
c6:17:d9:de:85:c8:cb:15:a7:54:14:a9:1d:01:b9:5b:c3:c9:
d6:49:8c:40:f9:a9:b9:5d:38:3f:46:91:af:56:57:a2:6a:33:
ca:b6:c6:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 02:49:18 2025 by rpki-client