Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
File: KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft (raw, json)
Hash identifier: zh5WmgZiGz8CujvmOUna9/JPuj1iE8WFm+Hd8vFW95o=
Subject key identifier: 00:68:E6:B0:A6:D4:8E:D2:9F:9B:4C:A8:21:AF:23:2A:25:A5:A5:48
Authority key identifier: 2B:17:07:88:97:94:CE:A0:62:2B:D4:92:1D:6B:DB:DD:56:EF:0B:06
Certificate issuer: /CN=2b1707889794cea0622bd4921d6bdbdd56ef0b06
Certificate serial: 0197B6A0B9FFD9A8C88BAF7BB8CFAFC39ACC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
Manifest number: 0584
Signing time: Sat 28 Jun 2025 13:01:15 +0000
Manifest this update: Sat 28 Jun 2025 13:01:15 +0000
Manifest next update: Sun 29 Jun 2025 13:01:15 +0000
Files and hashes: 1: FN4mbfTwvi8Xhlnmnlqh5KIO2hw.roa (hash: Z0wCpt0sE7ChkFPlKeGXtBFCnXabrU9fj1GXtnw3GDg=)
2: KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl (hash: hLQ7i7ADg3njwUNBbAllpbY8oa+0UTq/+GwtXkXSIAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:b9:ff:d9:a8:c8:8b:af:7b:b8:cf:af:c3:9a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b1707889794cea0622bd4921d6bdbdd56ef0b06
Validity
Not Before: Jun 28 13:01:15 2025 GMT
Not After : Jun 29 13:01:15 2025 GMT
Subject: CN=0068e6b0a6d48ed29f9b4ca821af232a25a5a548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c0:06:aa:7e:56:2a:db:f7:5e:9b:24:c9:57:
1d:27:a5:cd:b7:53:ea:0d:16:57:f9:79:5c:68:d5:
a2:2f:c1:f3:ab:27:35:5c:f9:8a:70:36:0a:81:fe:
79:79:e2:88:d2:1e:06:d7:e2:8e:0f:08:e2:b5:e7:
80:ee:07:fd:80:99:49:71:9c:dc:de:2b:b2:c1:bb:
e4:8a:bb:46:cf:e8:14:87:53:6c:50:bc:b1:14:01:
ad:70:fa:8f:1c:fc:a9:e1:50:3e:e4:d3:ae:03:83:
c3:af:e8:ae:06:37:70:64:0a:bd:a9:c7:de:48:36:
c8:5e:18:d5:33:03:ce:2d:d6:d6:02:e7:ba:94:ab:
58:db:fd:8b:71:4d:c9:32:3c:7b:15:6a:e2:9e:b1:
9a:ed:f1:73:dc:cd:96:82:10:22:14:22:6e:5e:b0:
45:b0:c0:d6:9f:96:a6:34:83:0e:ef:c0:5f:51:58:
1a:52:f2:c9:49:df:44:54:d4:a8:b3:67:fa:d6:6b:
4a:17:bf:e8:3d:ac:5e:64:6d:fb:dc:cf:8f:87:51:
71:92:02:cf:0c:cc:41:80:5e:15:06:e1:d9:c8:1d:
26:d6:40:f2:40:5d:38:79:ce:0c:63:f7:67:c7:83:
bc:36:78:34:ce:03:f6:66:00:62:c0:c3:b3:2f:dd:
c7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:68:E6:B0:A6:D4:8E:D2:9F:9B:4C:A8:21:AF:23:2A:25:A5:A5:48
X509v3 Authority Key Identifier:
keyid:2B:17:07:88:97:94:CE:A0:62:2B:D4:92:1D:6B:DB:DD:56:EF:0B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:e3:08:8c:21:31:3b:57:fb:ac:e7:54:91:5a:5c:ec:7c:8d:
5b:aa:13:46:c4:ff:f9:cd:29:7e:40:65:2e:49:b6:47:6c:0a:
ae:5b:d2:35:0e:0e:ad:e0:12:1b:af:de:e0:f5:d9:63:2b:75:
e2:f6:52:c4:31:d8:dc:d1:0d:4b:f1:8c:c7:5e:58:34:41:b4:
01:28:ed:39:cd:89:c7:0c:73:18:07:dc:59:33:08:a8:54:60:
65:a0:ae:41:ea:4e:7c:64:29:ce:30:c5:19:00:45:66:97:9a:
c4:ca:21:01:47:07:c1:31:40:27:4e:be:7d:2e:37:3e:84:0b:
1c:cc:ae:01:a7:37:52:0f:37:5e:8f:2c:56:33:a2:1d:7a:27:
8e:18:78:1f:bb:55:37:96:0e:e1:e3:2d:ab:3d:b8:44:d0:f1:
88:f6:27:44:5f:ba:27:c8:62:a3:a5:2f:08:87:bf:03:ac:dd:
37:27:e1:f0:98:22:29:ec:4c:cd:0f:68:83:3d:26:e3:30:d6:
67:71:8e:cc:d3:67:6f:54:e1:77:d3:35:c7:ad:17:e0:5b:9d:
3d:5e:1d:3f:4a:bf:2e:22:cc:23:0a:e5:70:71:45:20:7c:32:
b5:6c:0a:88:15:d1:7d:d2:97:b1:6a:03:c4:ac:c3:87:79:62:
ea:d0:b8:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:01:40 2025 by rpki-client