Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
File: KZWUToTcN7pqQtaLseK5pEIehKQ.mft (raw, json)
Hash identifier: 728CkFNQwd6VPki7PyVsUg8QNuc8MQcoYQmaV0WnR1c=
Subject key identifier: 4C:40:9C:37:32:5B:3E:13:E0:3F:FC:F1:0B:1B:9A:3D:DC:F9:19:0B
Authority key identifier: 29:95:94:4E:84:DC:37:BA:6A:42:D6:8B:B1:E2:B9:A4:42:1E:84:A4
Certificate issuer: /CN=2995944e84dc37ba6a42d68bb1e2b9a4421e84a4
Certificate serial: 0197B82103AB8200B952A79E2566CD8FE95B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 20:01:00 +0000
Manifest this update: Sat 28 Jun 2025 20:01:00 +0000
Manifest next update: Sun 29 Jun 2025 20:01:00 +0000
Files and hashes: 1: 5zGonyGbziYUvusSh8Q5DC8llVk.roa (hash: S1qJmZBpZMGg2baTrfrvnMFHCPji28boUDCTeMahmcM=)
2: Iy-azWAI6KWrOd6xINfWkQK0mmo.roa (hash: WW8+TBzRLpV7fj0dmKJQYyc2cjZjFlGMNCS3c3X42Q8=)
3: KZWUToTcN7pqQtaLseK5pEIehKQ.crl (hash: 3l/LwiBYiju3bqlc0yJBD9O7Os0dlzk2KjUJXJX79YY=)
4: SkUUShcqahf4Ud48xHWiKU08GtI.roa (hash: FRMGmcPu5n4tT7AA3DByB+9obpA4BvNTbGm4L5aAqOY=)
5: k-lfK2Nu0bBTBeFW46-yt6JkICk.roa (hash: muqDHPsC+eweSCrdqAGPB3SXVNwkzBd2weVA2/7oxMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:03:ab:82:00:b9:52:a7:9e:25:66:cd:8f:e9:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2995944e84dc37ba6a42d68bb1e2b9a4421e84a4
Validity
Not Before: Jun 28 20:01:00 2025 GMT
Not After : Jun 29 20:01:00 2025 GMT
Subject: CN=4c409c37325b3e13e03ffcf10b1b9a3ddcf9190b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1c:c7:de:4a:47:4b:b3:ec:db:c2:92:cf:3c:
ee:07:75:fa:3f:72:3a:cd:88:69:ff:12:fe:b0:50:
a0:9a:7d:d7:57:ec:51:a3:a4:d6:72:3d:7e:06:68:
27:21:dc:6f:06:fa:e3:79:a9:ba:fe:43:59:83:c4:
67:fa:22:e7:3a:2a:ff:61:3e:f9:ac:95:62:1e:e9:
f2:ac:46:e9:8f:76:e5:b5:b0:25:07:cc:de:e8:3a:
ac:cc:a6:0f:fa:b8:e3:d5:d1:08:12:86:96:d1:84:
8d:cd:2f:5c:85:94:7a:3e:67:8c:e3:08:13:da:a6:
46:5d:10:9e:96:71:2b:34:9e:8b:4e:9a:9a:85:90:
03:1d:c4:08:ec:fd:44:bd:ef:7c:2a:2f:77:50:6c:
5d:a2:c1:92:9f:66:7f:61:0e:91:17:3c:3e:df:48:
51:ff:45:28:93:4a:a2:a6:86:b8:6f:a0:d5:66:76:
d2:13:03:13:3a:a1:fd:9b:30:6b:92:c0:8d:46:c8:
05:88:8a:ae:36:14:20:7e:fe:44:df:98:db:41:3b:
03:c3:4c:10:74:5a:57:75:83:0c:5f:50:d7:c5:04:
a1:a9:db:6e:bf:a3:17:a4:2b:b6:2a:cd:03:a1:12:
31:04:54:5b:a8:37:5e:90:74:4c:37:4f:8c:46:a4:
92:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:40:9C:37:32:5B:3E:13:E0:3F:FC:F1:0B:1B:9A:3D:DC:F9:19:0B
X509v3 Authority Key Identifier:
keyid:29:95:94:4E:84:DC:37:BA:6A:42:D6:8B:B1:E2:B9:A4:42:1E:84:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:a0:a2:d7:67:1c:6e:de:a8:50:db:23:74:12:0b:48:86:9f:
e9:2a:64:3b:67:23:32:eb:c4:2b:af:1a:11:1b:91:41:77:4f:
1e:1e:f9:39:3d:85:85:e1:2f:57:b6:17:cc:2c:e5:e1:85:35:
97:4d:82:6a:3e:a0:49:b0:1b:51:a2:c1:f6:72:da:e8:a1:8e:
d9:80:ce:eb:86:8b:1c:6b:40:e3:c4:73:50:0e:89:63:43:ef:
a6:78:4d:18:ca:94:46:5d:2f:bc:7c:4f:57:90:07:f8:6f:9f:
d9:db:03:0d:ea:4e:89:2c:9b:2b:9a:81:c6:27:fb:88:77:b8:
14:d4:99:e4:4f:18:6a:47:3c:f0:23:b3:4f:08:61:02:dc:12:
99:d8:5a:14:4f:bf:6a:ff:0a:a8:25:08:7a:74:a3:e8:12:b8:
26:93:5e:84:fe:10:0b:8b:1e:c5:55:6f:53:c3:eb:07:0c:46:
c0:e4:7f:4d:31:0b:40:7d:8e:b0:3a:8f:7c:73:7c:99:e8:88:
96:37:b9:a0:eb:f8:ab:6d:d3:a9:a5:73:4e:c5:ab:1f:c2:b9:
9a:c7:3b:4e:71:0a:05:2e:f3:2e:20:f3:a0:88:08:f1:2c:b6:
23:aa:77:ac:36:d4:ed:55:c7:14:b6:85:a9:f1:b3:a4:ce:d5:
a4:93:e7:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:52:24 2025 by rpki-client