Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
File: KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft (raw, json)
Hash identifier: vseir5wbR0zolCuXLXIoI0LJF2sGoOqvBmycg59diPA=
Subject key identifier: A1:6D:EA:FF:0D:C6:9E:94:1A:AA:87:9C:88:F2:73:E9:5B:80:B1:27
Authority key identifier: 28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
Certificate issuer: /CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Certificate serial: 0197B6A1B630B3973187351036A95980E81A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
Manifest number: 0A9B
Signing time: Sat 28 Jun 2025 13:02:20 +0000
Manifest this update: Sat 28 Jun 2025 13:02:20 +0000
Manifest next update: Sun 29 Jun 2025 13:02:20 +0000
Files and hashes: 1: 0i9Bsr9ABLnx3mgPWtu21_vME3g.roa (hash: TMrcqTSOi1Ov7CcLLSWohgeiaaCi8xEADwSrQIF/DCo=)
2: KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl (hash: tZ++JeDRSkcLnOiAYsRbLA9u5gFhpIMMesJbpiYd1Bg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:b6:30:b3:97:31:87:35:10:36:a9:59:80:e8:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Validity
Not Before: Jun 28 13:02:20 2025 GMT
Not After : Jun 29 13:02:20 2025 GMT
Subject: CN=a16deaff0dc69e941aaa879c88f273e95b80b127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:28:b1:28:8b:75:01:7b:2e:30:86:56:d7:57:
79:94:dc:0c:c2:4d:53:de:b3:2b:d2:74:5d:a6:c6:
c9:c5:74:62:e1:22:82:cd:16:a1:41:6a:8a:91:c7:
83:ce:9a:51:e1:9e:a0:ad:2b:14:31:91:c9:76:39:
5a:30:34:8b:2e:e1:35:5b:da:a7:e1:19:3b:a2:f8:
e6:e8:f2:89:a7:c9:dd:68:ec:99:48:15:39:b8:fd:
07:5f:e5:63:13:27:3a:de:72:22:e7:1d:9d:e1:ce:
69:0e:49:7c:51:7c:e0:33:79:21:b5:6c:bd:33:8c:
a5:56:c3:fb:ff:60:a5:08:0b:97:fe:9a:fc:06:0f:
18:e9:38:35:80:3b:96:3b:b7:27:be:e2:d0:0d:4f:
a7:97:c8:06:77:52:47:4b:a9:5b:ef:82:09:bb:c3:
54:b8:91:34:d4:81:f9:5b:cf:19:0e:32:73:ca:ba:
d3:49:be:ef:2e:ab:a0:81:46:25:d7:a9:a7:a8:8d:
60:77:c2:59:cd:68:ed:90:01:34:80:08:8d:8f:31:
75:b4:65:42:bf:9c:c9:1f:4f:be:90:7a:ba:43:8a:
d5:41:02:f0:92:75:f4:da:b8:9a:ee:c4:90:80:8f:
87:4d:6a:91:02:52:f4:f1:c1:79:94:09:d2:7c:1a:
81:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:6D:EA:FF:0D:C6:9E:94:1A:AA:87:9C:88:F2:73:E9:5B:80:B1:27
X509v3 Authority Key Identifier:
keyid:28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:cb:f5:df:3a:6c:a2:a0:c9:75:44:75:4c:7d:04:65:17:86:
f3:80:ad:ac:2a:a3:06:5a:f1:bd:e9:c3:b7:86:2e:0c:d6:ad:
eb:15:79:d7:80:f9:ef:db:3b:b1:c2:21:45:b9:2e:fc:a7:9e:
77:17:fa:22:27:56:63:f9:e6:75:ef:7e:a3:05:a5:2c:60:42:
58:c1:6b:2f:cb:d9:bb:0b:a1:13:e5:42:0c:e2:27:ba:12:bf:
f8:ad:a2:c5:21:dc:04:81:46:8e:1b:c3:90:4f:fb:ca:4b:e8:
30:ac:63:58:dd:8a:e0:72:9b:18:e8:a9:34:ea:0b:5d:fe:43:
f6:d1:4f:84:a1:da:7c:f5:22:69:17:70:21:b4:15:c9:b1:ba:
fc:0c:01:2a:1e:5c:12:f8:a6:ef:f0:2c:71:6c:13:9d:01:a5:
79:ca:d8:46:da:11:4d:ea:0e:31:b3:7a:16:44:cd:d2:9d:f1:
65:8a:d3:bb:e2:b5:2c:d4:4a:03:18:af:55:87:b1:9a:d9:9c:
6c:09:a2:af:4d:f8:4c:56:87:22:7c:74:59:48:8c:ec:22:4e:
7f:18:f9:a5:7d:ab:f8:6e:94:fb:01:95:84:af:35:79:66:44:
1d:16:96:d7:0a:b7:c6:70:7b:3e:7f:5d:83:a0:f7:0c:70:a8:
1f:70:ec:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:13:07 2025 by rpki-client