Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
File: KcmwQBb28CGDMHwX32MKAonsW7U.mft (raw, json)
Hash identifier: uUgKOZ2S9fMG2KzssaJKITiCTzTY0agj4JOkTkULYi0=
Subject key identifier: EB:31:0E:23:A6:82:C0:E7:77:2A:F7:47:B1:F5:86:B4:51:69:44:E7
Authority key identifier: 29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
Certificate issuer: /CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Certificate serial: 0197B7EA1748AA74B005C92BE485E9F3B3D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
Manifest number: 0E17
Signing time: Sat 28 Jun 2025 19:01:01 +0000
Manifest this update: Sat 28 Jun 2025 19:01:01 +0000
Manifest next update: Sun 29 Jun 2025 19:01:01 +0000
Files and hashes: 1: KcmwQBb28CGDMHwX32MKAonsW7U.crl (hash: CbwwXJEyzCTf5mxpf1cPR5RFd98x5wBZTe8asOF/IQs=)
2: UdEEZQE09FsGfYOWUhVww5xs81M.roa (hash: 6mSyURdhs/eGBTOXFJi0QulmUdFyZbb3K6nx0/FAyzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:17:48:aa:74:b0:05:c9:2b:e4:85:e9:f3:b3:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Validity
Not Before: Jun 28 19:01:01 2025 GMT
Not After : Jun 29 19:01:01 2025 GMT
Subject: CN=eb310e23a682c0e7772af747b1f586b4516944e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:92:57:f0:7d:22:20:aa:dd:34:35:8b:a3:61:
39:b6:65:a9:6f:d2:93:43:ce:91:de:cf:c9:3c:64:
2c:e6:74:03:7c:a8:df:bf:9c:45:99:71:a2:36:9a:
94:2c:e0:7f:6a:b8:b0:c0:ab:bc:30:1a:94:27:9b:
4d:ec:39:91:a0:6b:a9:98:63:7e:ee:8a:0e:17:04:
f5:4c:81:a2:29:53:3d:91:62:4e:67:80:d5:a2:04:
94:46:6a:73:f5:6c:96:ac:ca:c7:7b:18:b7:ea:30:
13:3d:52:ee:bd:e7:7c:27:bb:b4:19:5b:8a:48:22:
91:22:70:60:e9:d3:9d:2b:58:ea:2e:04:d7:20:97:
aa:01:03:15:7d:8d:b5:8c:15:07:d9:e9:1e:00:1a:
5c:42:d5:78:2a:4b:ed:1e:a1:47:7c:05:a0:8a:a1:
0c:b6:20:bf:03:0e:70:5e:35:c8:09:ce:1d:c9:44:
a4:32:09:61:fc:b4:0f:49:57:b6:33:4e:af:30:66:
c6:73:4d:c0:0a:ac:65:06:f7:ae:66:8a:6e:a3:6b:
f3:a2:b1:5e:06:3c:ab:71:be:8a:a5:a2:76:e0:e4:
fc:04:d2:0a:c1:14:c6:87:95:2b:34:2d:f9:53:a7:
f4:d2:73:1f:4f:2a:80:f9:99:e1:81:50:ea:80:aa:
e3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:31:0E:23:A6:82:C0:E7:77:2A:F7:47:B1:F5:86:B4:51:69:44:E7
X509v3 Authority Key Identifier:
keyid:29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:91:56:48:25:63:83:70:98:ee:64:79:6b:67:72:e4:53:6d:
91:41:e3:fc:b4:b0:e0:0c:9d:59:8e:98:4b:f7:2d:72:40:42:
86:71:29:e5:74:b9:bc:f8:40:59:e3:cd:11:ed:5b:70:53:42:
35:dc:cc:8a:91:13:de:33:0d:05:91:82:55:50:76:2a:77:50:
cc:bc:61:08:ec:35:5f:1b:ad:35:aa:bb:06:de:7c:81:8b:df:
65:fb:92:54:e5:6f:97:a5:c9:cc:aa:c9:91:4f:f0:68:30:5e:
51:dd:d7:95:b2:cb:8d:df:42:e6:fe:04:05:0d:54:6e:e5:36:
20:c7:e5:b8:da:c2:5d:f7:74:4f:d3:cf:a4:94:0a:6e:76:c6:
8b:f3:97:74:11:de:2f:ca:d9:cb:3d:09:f5:38:27:cd:31:56:
83:82:40:e7:1c:0d:73:e5:59:96:c0:77:81:ab:cf:77:f8:19:
91:15:0b:4f:49:18:5b:4d:bd:c0:0a:02:ae:45:88:b6:bf:d4:
e8:56:eb:b9:33:ae:8d:9a:a3:f8:83:53:aa:07:de:f6:fe:94:
5c:67:c8:41:63:7a:02:52:bd:74:a4:b6:1f:a1:7b:ed:4c:0b:
6a:83:26:f4:1c:c5:c8:ed:11:76:90:45:64:14:60:7d:55:68:
4b:c7:80:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:34:45 2025 by rpki-client