Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
File: kgm43V6nJYkIN4Zh8rqe-JrToLE.mft (raw, json)
Hash identifier: EeDAC7sj0hKhZ6NNsHRLC0UARmOc9axOyzbgaF0l5+Y=
Subject key identifier: 2E:48:73:D9:8D:C5:E9:A2:C6:5D:D8:BD:49:C2:6A:E1:30:2C:83:A9
Authority key identifier: 92:09:B8:DD:5E:A7:25:89:08:37:86:61:F2:BA:9E:F8:9A:D3:A0:B1
Certificate issuer: /CN=9209b8dd5ea7258908378661f2ba9ef89ad3a0b1
Certificate serial: 0197B6D7B725A198E81725382E274742AAE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
Manifest number: 0128
Signing time: Sat 28 Jun 2025 14:01:19 +0000
Manifest this update: Sat 28 Jun 2025 14:01:19 +0000
Manifest next update: Sun 29 Jun 2025 14:01:19 +0000
Files and hashes: 1: WReM2adAhR_LtpNyhGqyNjE1Y4M.roa (hash: CfgqMj+xDVkXamVtZy6LM6aMe3AmsivTTFfgXAb+rPQ=)
2: kgm43V6nJYkIN4Zh8rqe-JrToLE.crl (hash: UfwR1D8E7a7vBurueTFcJaWCN1VB4htu+lr0RN1j7a8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:b7:25:a1:98:e8:17:25:38:2e:27:47:42:aa:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9209b8dd5ea7258908378661f2ba9ef89ad3a0b1
Validity
Not Before: Jun 28 14:01:19 2025 GMT
Not After : Jun 29 14:01:19 2025 GMT
Subject: CN=2e4873d98dc5e9a2c65dd8bd49c26ae1302c83a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:10:1b:9e:10:4b:9c:7c:c0:ca:84:a6:17:01:
ee:30:b8:af:99:58:5f:63:92:a5:1c:10:88:12:e5:
d3:00:9e:86:fe:fd:60:97:ae:94:f3:c1:83:9e:d9:
d7:32:f2:0f:a6:d5:52:8e:58:d7:b8:56:40:12:1f:
26:93:41:ec:39:29:a7:87:b4:31:bf:84:85:9e:31:
36:15:ac:1d:e7:9d:4d:56:08:7a:89:be:d8:c4:0c:
21:fb:b2:24:11:a7:f9:cf:a7:ea:0e:e7:36:63:8f:
29:92:b2:77:4b:80:1a:17:c9:be:0f:1c:a7:18:8f:
07:87:03:75:f0:60:27:56:63:9b:f5:41:76:3e:78:
0a:23:1e:26:97:1d:7e:84:cd:ca:c0:b6:01:b8:c7:
ca:cc:f2:e0:f6:fb:b3:19:a5:36:8e:ec:c4:0f:80:
17:66:9c:e0:d1:ed:dd:07:a3:91:5b:1b:6a:56:0b:
e9:af:21:5c:02:50:83:38:b6:07:a9:1e:69:3b:d3:
23:45:28:2b:4c:46:93:36:cd:e0:7f:f6:d6:37:05:
44:68:a1:52:31:5a:d4:8c:da:b4:e6:a5:b1:68:65:
c9:fc:fe:45:9d:b9:f9:99:e1:eb:ba:43:e1:c9:c3:
67:5c:96:6f:f2:16:5b:b7:39:46:11:43:1f:d2:15:
b3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:48:73:D9:8D:C5:E9:A2:C6:5D:D8:BD:49:C2:6A:E1:30:2C:83:A9
X509v3 Authority Key Identifier:
keyid:92:09:B8:DD:5E:A7:25:89:08:37:86:61:F2:BA:9E:F8:9A:D3:A0:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:78:ae:b6:0e:74:e4:0a:17:00:f6:b6:68:f1:24:e5:0d:46:
ca:4b:8c:76:94:fb:49:ab:91:93:eb:b3:42:f6:73:e8:6e:24:
d1:cd:fc:d9:63:88:5f:07:6c:b3:30:26:70:96:9e:09:ad:b0:
2c:11:c1:24:03:a9:41:14:da:db:44:22:85:9b:bb:ab:a3:fb:
2a:4f:c7:4e:34:23:0c:3f:6b:14:f2:74:71:22:44:c8:91:4e:
73:25:3d:3c:ad:ef:0a:5d:80:cd:1d:10:0e:23:54:fd:0f:ec:
7e:fb:65:c2:a0:d8:1f:b3:8d:9c:c3:ff:31:f8:b8:10:be:49:
a8:9f:6d:cc:0a:01:a0:cc:80:8d:0f:9d:bc:57:55:b2:e7:1e:
37:b0:6b:92:c2:aa:81:30:be:84:47:3b:ed:f8:35:f3:fa:7f:
6c:11:db:30:1a:27:70:b4:ab:df:79:54:94:95:76:d4:3e:49:
f0:6b:6b:f2:55:2d:cc:c8:51:78:38:47:f9:99:a8:f7:d5:cf:
3e:2d:24:71:ae:78:64:5b:82:3f:7b:81:a9:3e:ce:28:fc:91:
5b:12:2b:8e:3c:7c:16:9e:b0:cf:65:ea:4b:b0:6c:f4:3c:39:
b3:79:d2:c2:eb:9d:5e:05:03:db:3a:65:9c:dc:0d:60:25:7c:
03:ca:75:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:13:40 2025 by rpki-client