Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
File: K2ePFPiyKI1JVXym-xvfR5OSfc4.mft (raw, json)
Hash identifier: XLrLUZZeF8t9irSAQDW/U8cpxkqyJ4AABan/jOF+zyA=
Subject key identifier: B4:18:84:04:D6:34:F5:8D:15:44:FF:3D:43:A3:9D:91:1E:3D:AB:16
Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Certificate serial: 0197B5FBBCCF93FC3A5DB2D0D0319FDED89F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
Manifest number: 0D81
Signing time: Sat 28 Jun 2025 10:01:03 +0000
Manifest this update: Sat 28 Jun 2025 10:01:03 +0000
Manifest next update: Sun 29 Jun 2025 10:01:03 +0000
Files and hashes: 1: F4GHMtEvNm46dM5TWDxthbQ6BA4.roa (hash: KVVBBRsYRigOW/uzk41RjMrk4PM1I4rBXcib4AOOQeA=)
2: K2ePFPiyKI1JVXym-xvfR5OSfc4.crl (hash: D14kc0AqFZCRZB/Rdm7QDWT8R49dm2oUoQcC1y6xd7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:bc:cf:93:fc:3a:5d:b2:d0:d0:31:9f:de:d8:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Validity
Not Before: Jun 28 10:01:03 2025 GMT
Not After : Jun 29 10:01:03 2025 GMT
Subject: CN=b4188404d634f58d1544ff3d43a39d911e3dab16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b2:48:1c:1d:49:3c:77:82:89:71:af:f0:09:
d8:1f:7b:64:ec:79:56:0e:f4:57:7d:fc:0c:b3:25:
1e:91:a8:d2:dd:23:85:f6:1f:b2:b0:a7:18:10:ff:
f8:2d:9c:19:8e:fe:96:7c:9a:09:2e:3d:a4:4f:39:
27:aa:e7:af:84:6e:bb:51:28:18:dd:30:e2:6b:53:
84:05:58:db:86:31:2e:ba:0b:52:9e:3e:5b:cb:f2:
09:e4:63:61:7d:3a:ac:35:0b:95:41:2b:f8:2d:b4:
a8:9d:31:f6:e0:8c:bc:67:cb:02:06:0c:01:7d:c8:
49:60:7b:a8:23:b4:29:84:ad:a0:41:48:a2:a7:a3:
ba:33:e5:25:71:bb:42:05:66:76:bf:a8:48:45:59:
3d:58:08:2f:0a:4b:73:47:09:92:5d:01:c3:3c:5e:
51:d3:9c:b4:01:51:ba:dc:44:64:99:e2:ac:a6:90:
bd:bb:54:ca:07:35:ff:64:2c:dc:e4:54:c0:a8:73:
ce:11:62:d1:b5:5f:cc:0e:8e:e5:0b:cf:8c:ec:99:
18:92:64:89:b7:a2:ed:6d:8d:09:65:a5:91:45:04:
7c:89:8a:e4:68:20:b7:98:e1:d4:26:7a:27:03:b3:
08:62:71:f6:8e:b9:b4:c3:ea:13:58:01:9b:3b:87:
ab:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:18:84:04:D6:34:F5:8D:15:44:FF:3D:43:A3:9D:91:1E:3D:AB:16
X509v3 Authority Key Identifier:
keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:8e:87:bd:3f:01:db:24:b7:f9:47:39:64:e1:fe:c7:9c:3a:
a8:5f:d6:e2:8d:1e:c8:cc:98:ca:35:74:cc:ba:7d:e1:5c:b6:
33:d6:e3:13:05:07:cd:58:fd:ba:81:03:fe:39:40:8e:e1:ec:
7b:a5:96:74:a6:46:8a:d8:db:16:fd:50:14:24:f5:f9:42:38:
d4:e7:8b:b3:92:04:ef:f0:23:31:4c:11:3c:ba:a1:f0:92:d0:
a8:00:44:b0:a9:68:f7:0c:87:f0:11:6f:55:9a:52:8b:17:44:
f2:2d:e2:4c:a9:db:9c:89:21:39:ed:d8:af:c3:fa:4b:9c:3a:
41:13:dd:81:72:d1:c1:a2:47:f6:c9:ee:8d:da:30:24:94:27:
e3:5d:e6:54:be:13:77:18:84:7b:69:b1:ab:2f:d3:38:7d:d0:
24:85:b8:76:1a:0c:6f:5f:37:95:b9:b9:80:75:4f:ab:2b:29:
e5:ca:c7:c9:cf:c8:fd:d2:61:58:5b:c4:73:c3:a5:21:2d:4f:
01:54:57:5a:da:ea:87:e1:18:cb:7d:15:8f:4e:2a:b8:77:9b:
4d:d9:55:bc:9d:6f:92:f1:b1:ee:1c:5e:d6:8a:a0:5d:20:2c:
08:6b:9f:ab:78:f8:b9:40:50:e5:a6:6f:73:8d:d8:66:42:02:
59:39:6c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:53:47 2025 by rpki-client