Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
File: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft (raw, json)
Hash identifier: nuOnx8S/bH2RoZkJ/9kK4LmOM7lDQo1agUletVMoX48=
Subject key identifier: 91:EB:BC:5D:03:EF:E2:CE:F2:41:69:90:27:BB:F7:2C:CB:39:F9:E9
Authority key identifier: 29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
Certificate issuer: /CN=29da6411a13264dc6de0f101108540ef741ed19a
Certificate serial: 0197B6A089AA0BA4E7CFB53BEA29B45BBD64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
Manifest number: 11D2
Signing time: Sat 28 Jun 2025 13:01:03 +0000
Manifest this update: Sat 28 Jun 2025 13:01:03 +0000
Manifest next update: Sun 29 Jun 2025 13:01:03 +0000
Files and hashes: 1: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl (hash: 8BmqJ7ZOCeTsVZ4W8PVQzrEXbwVnjUxCAsghKc1b24s=)
2: ofG1VLRjjYIcZfzAaNigWWgyFxw.roa (hash: ZHICR+Axb4b3KRXOcmZzuP26q8FUw656ivJ0mJFMsoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:89:aa:0b:a4:e7:cf:b5:3b:ea:29:b4:5b:bd:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29da6411a13264dc6de0f101108540ef741ed19a
Validity
Not Before: Jun 28 13:01:03 2025 GMT
Not After : Jun 29 13:01:03 2025 GMT
Subject: CN=91ebbc5d03efe2cef241699027bbf72ccb39f9e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:75:5d:fd:7e:e4:51:23:87:b0:6d:8f:66:3a:
46:fd:80:e4:ba:9a:4b:ef:36:e1:46:10:86:9a:66:
d7:85:b2:ca:a1:63:a1:df:5c:d4:54:0b:82:bc:b4:
b5:e9:88:2b:77:34:19:f7:91:90:6d:51:50:ee:29:
9f:83:22:33:19:1f:a2:c2:57:06:fa:ac:42:e1:ae:
01:b8:18:28:8b:f7:89:10:ba:2f:9c:b3:9c:dc:53:
63:2a:13:77:f2:e9:6c:ac:b2:e4:c7:1f:68:c0:c0:
b3:11:0a:3c:cb:67:d3:10:ab:b3:f8:9f:f9:04:15:
d5:8e:f9:2c:07:94:29:a5:0e:df:71:7b:10:f7:18:
72:bc:fd:65:df:43:db:af:94:03:c9:af:15:43:02:
36:8b:ed:da:06:72:3e:99:4d:29:99:5b:54:2b:ba:
a5:f4:58:ef:e0:bf:56:5a:6e:45:6f:2e:e9:8d:1a:
86:06:b4:f9:5d:11:16:9b:89:50:d8:04:d1:70:fd:
7f:e3:d7:3c:f7:47:e7:19:f2:8b:18:f1:89:27:57:
37:7d:d4:17:af:53:db:3e:4f:90:98:09:b7:fa:02:
55:1d:26:e1:27:86:d7:02:26:c4:e3:cb:41:13:49:
ed:2b:c0:e8:37:0c:fd:69:f5:d0:86:a9:39:81:62:
c8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:EB:BC:5D:03:EF:E2:CE:F2:41:69:90:27:BB:F7:2C:CB:39:F9:E9
X509v3 Authority Key Identifier:
keyid:29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:3a:37:96:88:3f:98:fd:53:a0:9e:c5:c9:dd:57:a6:88:51:
96:3c:6c:ca:bf:07:d7:f4:8a:19:57:e5:94:c6:61:de:2b:0d:
ab:b1:f0:e6:de:db:1b:1b:7f:01:a2:0d:80:a6:a2:ae:a4:12:
ac:c1:89:42:cd:ac:76:58:6c:72:52:29:b0:f9:fb:a7:1c:84:
44:e2:d1:9d:18:d8:0c:25:40:e0:d7:d1:31:8c:e0:20:68:05:
f2:1a:13:c4:ee:fc:64:ba:4c:a2:94:b1:56:d6:13:40:fe:82:
66:a8:c2:b0:8d:b7:18:13:29:c9:a0:54:31:fe:82:a7:95:d7:
e6:73:b0:a2:f4:71:c7:2f:b1:d9:49:de:91:5c:ed:9b:62:4e:
59:6a:d1:21:94:92:49:19:f8:09:c1:d7:19:5c:27:f8:0a:49:
21:8e:c6:a7:cd:a5:08:64:3d:11:5e:0d:30:fa:6b:e0:26:5b:
60:33:2f:f0:4b:ec:e1:ae:19:e9:88:3c:9e:8f:eb:a2:2d:e7:
8b:43:d4:2f:e8:9a:b9:3f:ae:5c:47:72:9e:97:0c:3a:2c:c2:
bd:15:8d:1c:1d:3f:9b:ff:00:f1:46:ce:d6:9d:6f:09:96:22:
fd:eb:95:a8:82:d3:1e:7f:db:6a:8d:4d:ce:dd:e6:49:6b:ac:
2e:6c:a6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:12:13 2025 by rpki-client