Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json)
Hash identifier: EmnP8+3wexLxftyaxIEjICT6TQgUlJEMDY4IwscYBvM=
Subject key identifier: DE:A6:80:3E:15:84:3A:F6:E7:7F:77:A0:C5:94:4A:2B:FC:09:50:B0
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 01974F33677FC8816D729CCE03B5557BDB61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
Manifest number: 12BF
Signing time: Sun 08 Jun 2025 11:00:58 +0000
Manifest this update: Sun 08 Jun 2025 11:00:58 +0000
Manifest next update: Mon 09 Jun 2025 11:00:58 +0000
Files and hashes: 1: 5r4roNSh8TWW8XLP5gLpTUYEtC8.roa (hash: AktxI+V17na/V+Hz9k9ha+hVm279Tijdqa0CvwmI/7Q=)
2: Gxhnb8KOTrVvxDF8yuKOv2GjqtU.roa (hash: QO/QE2IRS/pPOvcN+3PpcsYmJwErYvPF742Zst4rEP8=)
3: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: Y6dKQjDTBckc22VykfIwhW+dHi1yRlMsrWRsiq0IUWc=)
4: TtvNTrhsW3wjOkk9eOHVRXZxsEg.roa (hash: gPmUeUcfbob5JNxYnTxCOkrudyCPlteleGt+PSj2/00=)
5: ekdDszvqGt_eJ_hGO_xIWYzbzAA.roa (hash: zqr+o3bWODGGGIrhIMHHh91Y/JEASXYkOBODwzmfRz8=)
6: iIQaeGWo37d4w_fiU_R29carNk8.roa (hash: FbNS7L7XPQULlvHXJ6Yq35UuABtJRjSmhRiCGjDk29Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:67:7f:c8:81:6d:72:9c:ce:03:b5:55:7b:db:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Jun 8 11:00:58 2025 GMT
Not After : Jun 9 11:00:58 2025 GMT
Subject: CN=dea6803e15843af6e77f77a0c5944a2bfc0950b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7a:11:86:4c:9a:ab:8e:bc:cc:e7:4c:df:df:
35:3a:91:a3:e6:1c:ca:26:14:f2:62:7a:01:6a:2c:
56:a8:62:09:5d:cf:5d:d5:01:9f:e6:e3:1a:09:4f:
c8:bd:a8:c2:06:4e:e7:34:35:e1:cf:ee:83:1e:88:
e6:56:70:33:70:6c:32:a5:d4:76:f6:95:24:92:cc:
b6:ec:35:72:5c:ad:00:c5:ae:66:13:b7:77:ad:54:
80:22:f8:26:10:37:72:a9:ba:d3:2d:46:2f:68:c5:
ae:a2:f6:6f:3f:a2:34:f5:f0:04:81:27:da:33:99:
f4:32:c4:97:c8:f7:d4:95:fb:fb:eb:ab:59:da:e7:
ce:bc:7d:50:fc:78:1f:11:0e:72:ce:03:44:91:b0:
d4:42:0b:d3:c3:8b:47:52:0f:94:d2:01:fb:1f:47:
d3:9d:6d:0b:5d:7f:38:97:4c:6c:86:7f:d8:61:34:
68:ee:64:47:d8:8d:d4:d2:02:e4:85:2b:2f:b4:62:
51:87:02:e6:bc:ba:46:f4:f0:1b:7b:6c:b4:a4:72:
dc:67:ee:35:ba:66:6e:4b:68:51:bd:5f:24:7a:3c:
e3:78:34:02:a5:1f:5f:20:a7:56:d0:98:f4:22:34:
2d:4f:64:ac:a0:9c:bc:f5:8a:b1:63:79:c6:4f:64:
9e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A6:80:3E:15:84:3A:F6:E7:7F:77:A0:C5:94:4A:2B:FC:09:50:B0
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:ec:dc:3c:05:2d:a6:fb:a4:c5:f7:71:3a:22:8c:bd:bc:c2:
f2:ef:a3:18:ff:66:ce:45:2b:6d:c1:d7:e7:86:1a:72:c6:32:
7b:d6:0f:2a:af:bf:59:99:6d:f3:2c:22:4d:6b:14:c8:be:55:
59:43:ce:b3:ff:98:14:af:0b:0c:69:1b:e8:16:64:05:10:b8:
7e:a1:ee:f9:8a:70:68:93:8d:87:f6:d5:f2:8e:d2:14:ab:e9:
b1:a1:20:48:34:5b:e8:a6:3c:3a:cb:c5:fb:35:ab:1c:89:21:
b6:77:08:4d:cb:62:7e:d7:e0:d3:94:94:ca:a1:de:73:b0:89:
88:42:7b:9a:df:6c:75:02:bd:89:00:a6:b9:23:d8:b6:47:83:
10:95:be:33:b1:79:c0:05:fa:75:c6:ac:75:04:e0:1e:52:a4:
70:eb:a4:08:12:e5:55:ef:76:92:de:10:2f:5e:5f:4b:9d:c8:
39:fe:4b:9d:d5:b8:ac:85:c3:f0:95:df:78:9d:0e:7a:e8:21:
55:8c:0a:a7:0b:71:b2:f2:19:cf:00:6d:f9:fc:16:04:b4:6b:
b1:f5:3d:5a:1c:d8:54:51:cc:e1:33:d5:9d:09:10:77:ab:eb:
9b:29:f2:78:ad:82:f1:ea:a8:44:3c:eb:30:9b:b2:57:d5:06:
fa:f3:58:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 22:39:27 2025 by rpki-client