Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
File: KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft (raw, json)
Hash identifier: +1lI4d+TNgSAp5c9TC4KCA5xlT6W8t8rWqaW0irlO2I=
Subject key identifier: 5B:40:15:F4:E1:DD:F9:D5:53:CA:05:5F:0B:4D:6B:E0:DF:9F:C1:DF
Authority key identifier: 29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
Certificate issuer: /CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Certificate serial: 0197B70E91B5A177D550FB1F80ED3B957F3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
Manifest number: 0F21
Signing time: Sat 28 Jun 2025 15:01:14 +0000
Manifest this update: Sat 28 Jun 2025 15:01:14 +0000
Manifest next update: Sun 29 Jun 2025 15:01:14 +0000
Files and hashes: 1: KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl (hash: UF3/jJz5YORVph7h8T1gVM1mdSIC3zjwsZ7d2gipGiU=)
2: kiF2H4Ucoq9Nw51li6ImqM3ctGg.roa (hash: gOoMaXdniQu2tAHNZ6SbwXijF8n71W3w0mmuL2WSkY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:91:b5:a1:77:d5:50:fb:1f:80:ed:3b:95:7f:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Validity
Not Before: Jun 28 15:01:14 2025 GMT
Not After : Jun 29 15:01:14 2025 GMT
Subject: CN=5b4015f4e1ddf9d553ca055f0b4d6be0df9fc1df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2e:18:94:bb:f4:12:26:59:19:6b:e5:a2:24:
c6:09:f5:c4:54:c1:84:8e:69:41:6d:cf:bd:ec:ed:
56:be:e6:1c:ff:b9:98:a0:e5:49:1f:1e:ed:14:20:
2f:bd:91:8c:ae:93:76:01:8e:c4:fa:a5:18:97:ef:
61:2b:f7:b1:6a:cf:13:1f:e2:d1:a4:63:3a:60:89:
1d:52:12:30:64:7d:05:4c:f7:b0:91:b5:14:98:fb:
38:5d:82:0e:a7:55:4d:13:e1:61:34:19:32:0d:97:
77:c7:4b:cb:96:b0:88:c1:57:d6:18:85:99:eb:ad:
01:6d:0f:8d:b9:ab:9f:75:ae:2d:cc:91:22:a6:7b:
ad:56:e4:39:24:b7:b0:a9:b9:2b:32:6b:e4:95:40:
aa:5f:66:a2:21:a6:b2:7b:53:9f:02:0a:f8:49:ff:
51:77:6d:d1:fd:76:af:0f:28:92:b9:c6:da:32:b7:
b9:56:44:b5:3e:cc:a8:96:de:cd:7d:6b:42:c1:67:
1e:ac:ed:3a:a7:2e:bb:e4:58:10:22:65:d2:d2:6e:
c3:57:ea:8d:4b:40:c7:c5:06:6e:45:5f:f5:be:f6:
c7:62:b6:90:22:54:d0:4a:cb:c8:6d:5f:b2:e5:db:
4a:21:f2:90:a7:f8:7c:78:cc:58:3a:39:46:23:2b:
c4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:40:15:F4:E1:DD:F9:D5:53:CA:05:5F:0B:4D:6B:E0:DF:9F:C1:DF
X509v3 Authority Key Identifier:
keyid:29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:1f:9f:72:8e:f8:d8:a4:a4:c8:25:c5:a9:25:b3:1c:87:25:
4e:bc:ce:85:8a:4b:59:bd:c8:74:89:79:c9:83:47:99:2b:82:
cc:b1:2e:52:ef:97:bc:c4:11:d6:7b:ad:a8:ff:6f:6f:c1:cc:
5f:28:77:01:6c:30:ae:52:86:20:83:01:a5:c5:59:26:46:57:
15:f1:82:3a:c7:de:af:37:49:b6:19:13:5f:9d:a1:94:b0:ef:
52:f2:e0:8a:a1:fc:14:a9:bd:6d:3c:9f:ee:4a:9e:84:df:17:
44:b5:59:c0:1a:76:c0:d4:af:fe:46:67:0b:47:56:c2:73:68:
15:f0:07:8e:58:ea:e3:b5:09:90:12:a1:4c:c2:53:45:71:59:
89:ea:58:28:36:98:5a:7a:4c:e3:90:de:bb:7f:12:a6:4f:58:
b2:d9:6c:27:a5:11:20:bd:18:13:0f:5f:8d:1b:93:54:68:8d:
7c:50:a3:45:66:94:b2:1f:4d:9d:86:f0:d1:d8:bf:34:08:77:
87:b3:17:62:37:95:50:0b:ab:a1:72:33:42:b5:f0:35:52:3f:
f9:f4:38:77:b8:ee:45:5c:35:36:41:d6:08:2e:fb:35:b7:9e:
c8:8b:6d:63:66:2a:88:cf:47:5b:33:93:01:fb:32:b5:89:69:
0c:b1:40:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:26:52 2025 by rpki-client