Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: Jeg3eN59Dc185oLEHfEe0CziDSgYuWKALty7RMvhbnM=
Subject key identifier: F7:E8:1F:6F:14:57:73:90:42:D7:96:58:9A:95:62:CF:DD:4B:B1:75
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 0197B6A1C4517959108F0E954A63D7E3315B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 0F45
Signing time: Sat 28 Jun 2025 13:02:24 +0000
Manifest this update: Sat 28 Jun 2025 13:02:24 +0000
Manifest next update: Sun 29 Jun 2025 13:02:24 +0000
Files and hashes: 1: 79LYqjKNTJN0ouKGzdcbqvTlAUQ.roa (hash: ql/wdfFz1qsER0EkZDThbVWptAlBg9mw+jziuKWlZyc=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: FMK9F9CPBuXUiShbPY8IekYZnxg3arHmTmiKtY2pf5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:c4:51:79:59:10:8f:0e:95:4a:63:d7:e3:31:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Jun 28 13:02:24 2025 GMT
Not After : Jun 29 13:02:24 2025 GMT
Subject: CN=f7e81f6f1457739042d796589a9562cfdd4bb175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9f:6c:07:05:0e:2a:46:f1:8d:7f:65:ab:eb:
0d:6f:a8:de:b7:5e:7b:a3:b6:c8:35:e5:67:77:be:
f2:52:e9:44:97:81:ad:f3:2a:9d:cb:61:9b:1f:94:
10:71:f7:2c:eb:1d:b4:ad:40:ec:e8:02:47:17:13:
cf:7b:55:9d:83:b6:a2:d0:6c:dc:71:2c:a4:51:74:
24:26:0e:9d:cf:4f:a3:77:11:d5:55:26:e1:1f:12:
89:a6:a5:e8:1e:0c:35:e0:bb:68:72:08:b8:39:58:
b7:23:ef:f6:ed:c2:a1:20:7d:1c:ce:91:bd:35:2a:
2a:d0:77:fb:fa:d0:96:4d:40:19:9f:fc:02:b7:0e:
7d:8a:17:be:53:54:2f:f2:0d:5d:bd:79:9a:17:61:
a3:87:ef:12:15:92:82:e3:ae:75:87:cb:6d:87:80:
99:04:79:1d:40:10:4f:d6:3d:90:d5:b5:84:8a:2e:
13:cd:de:3c:fd:0f:3f:95:7a:63:51:cf:3c:3e:87:
76:c7:ba:3e:82:8a:44:af:a9:e5:9a:d4:a6:dc:f5:
76:a5:de:c9:2c:b0:2c:99:15:34:95:f1:b9:17:e3:
cc:0c:b0:15:f3:cb:09:72:e8:f1:b0:2a:00:53:0f:
ec:a1:ff:88:87:64:42:a2:4d:42:fe:97:bc:89:28:
68:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E8:1F:6F:14:57:73:90:42:D7:96:58:9A:95:62:CF:DD:4B:B1:75
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:2b:0d:44:e7:b4:8e:3a:f9:27:dc:e9:9a:8f:2a:21:36:d2:
84:20:0d:ca:af:8f:8c:39:02:66:0b:b0:c0:84:c6:2b:76:ce:
9f:ed:51:0e:fb:a8:3e:31:f7:44:c0:02:44:b4:06:79:78:9e:
03:0b:4c:b0:65:f5:59:51:6f:e8:08:68:af:e2:06:97:a8:c8:
09:a7:97:61:6d:3d:37:81:76:6d:6a:9f:98:26:f6:c8:a4:41:
e3:42:c9:c1:6e:0a:6b:26:60:58:5e:9a:8d:a1:be:27:f4:07:
e4:5b:f8:b7:16:24:84:81:2b:6b:9c:f5:c5:76:14:53:26:77:
68:e9:42:e8:71:42:6b:d3:53:bf:58:ba:f1:7d:07:94:2f:75:
8a:9f:f2:56:60:62:11:ad:03:29:55:c9:a0:34:db:c1:1c:4d:
fa:c9:6c:80:83:29:e7:ab:a2:5e:fb:f4:10:ff:2a:bd:69:fc:
da:c5:6a:29:90:72:e3:48:d1:0c:ae:e1:25:3a:eb:56:41:ab:
57:22:e5:58:8d:10:20:8d:9c:f1:7f:49:31:15:27:f4:88:1e:
09:57:7f:c6:ac:90:e7:60:d7:62:d9:e5:8b:64:e9:ee:b9:6c:
47:cd:9e:20:72:ce:1b:88:a5:ab:3b:ac:3b:df:04:82:17:c2:
00:f3:66:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:55:47 2025 by rpki-client