Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
File: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft (raw, json)
Hash identifier: yPVNCAtwwz5QhOq7ibGZ3TZbH1+v/2kDsb19p2hfXTQ=
Subject key identifier: 51:D6:54:E5:04:E1:91:35:60:58:EC:5B:CA:F4:C1:9D:E5:DC:99:58
Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Certificate serial: 01974F334ECD460B1BB87ABBF0EE0CB48629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
Manifest number: 0FC9
Signing time: Sun 08 Jun 2025 11:00:51 +0000
Manifest this update: Sun 08 Jun 2025 11:00:51 +0000
Manifest next update: Mon 09 Jun 2025 11:00:51 +0000
Files and hashes: 1: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl (hash: 9ZbbFaG8L/96x2OQzWHLiMVtaul8LpwEVgq2XhUM8QI=)
2: rYNJq30hG9TfQKEAUAnbb-JlarU.roa (hash: bobhiWtsSX2sPVTtreNAJF6ae9i50YxHtcGAHPsK84U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:4e:cd:46:0b:1b:b8:7a:bb:f0:ee:0c:b4:86:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Validity
Not Before: Jun 8 11:00:51 2025 GMT
Not After : Jun 9 11:00:51 2025 GMT
Subject: CN=51d654e504e191356058ec5bcaf4c19de5dc9958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:68:cf:7d:aa:ba:e0:1b:e1:7e:a0:26:07:ec:
54:cf:d2:dc:fb:92:04:8f:2a:b6:c6:32:25:46:fd:
99:44:e0:37:7f:8a:c6:e4:ae:4c:99:81:bc:c8:16:
4e:7b:66:6a:7f:24:db:d6:9b:06:d5:f3:84:0a:fc:
1d:83:90:ae:41:ee:0b:41:f1:f5:20:fc:0b:e2:bc:
cf:60:f6:99:6f:3b:65:1d:3c:d9:18:85:94:ee:14:
70:d2:e2:dd:e8:00:49:15:81:45:d4:42:de:2d:2c:
4b:2a:89:8e:15:3d:3b:c7:0a:64:4d:ac:b7:bf:69:
31:21:4b:80:fd:f4:57:65:59:68:bd:09:47:91:68:
8a:71:14:e8:b7:f0:79:43:ac:78:e8:66:1a:71:00:
0a:27:06:f4:88:b9:af:d5:e2:ed:cb:be:45:a6:3e:
01:dc:db:d1:12:b3:6c:66:b5:77:b8:bf:19:21:22:
f0:44:8c:df:ba:5c:e2:51:6a:60:21:61:51:f8:6f:
61:81:3f:78:f3:23:8e:7c:89:ea:6b:ef:39:0d:d3:
83:ba:04:6e:fe:7e:78:4c:e2:80:ea:5f:65:8b:67:
c6:73:e6:23:fd:d0:29:db:50:b0:b8:91:07:d4:d1:
a0:ce:e0:19:5c:19:61:2c:83:a5:54:c3:bd:52:bc:
5b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D6:54:E5:04:E1:91:35:60:58:EC:5B:CA:F4:C1:9D:E5:DC:99:58
X509v3 Authority Key Identifier:
keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:39:5b:79:42:0d:f1:ae:93:25:ee:c4:0d:34:5d:97:b5:bc:
29:60:d8:b9:41:cb:16:7e:56:ef:b2:ac:b2:a9:d6:ea:f6:c5:
56:fa:07:4d:60:d3:18:6f:cc:78:7d:3c:27:4a:9b:5a:56:0e:
ac:d8:01:eb:d2:bf:ad:23:04:9b:48:7c:96:9b:e0:a3:89:cf:
cd:98:86:71:bc:b6:2e:ec:fc:91:7f:ca:20:75:ac:0b:7b:61:
8e:31:ca:85:fb:19:6a:cd:5e:0a:91:a1:56:2a:92:e0:2e:a3:
40:b3:c0:a4:aa:6a:c2:f3:45:89:fb:32:84:e3:80:75:d6:b9:
db:f0:72:9c:5a:83:67:3a:10:4e:31:49:89:ec:2d:20:56:96:
3d:e3:9b:4a:14:e0:b9:0c:f7:c3:8a:26:68:ee:03:67:9e:b3:
a7:30:f2:60:9f:db:6e:9f:e0:7c:f1:7d:c8:d1:f8:17:29:64:
b6:c1:32:a3:67:e9:e6:dd:39:d0:99:d3:3a:66:5f:2f:68:c9:
80:9c:cf:ba:34:14:dc:32:60:84:e8:60:d6:4e:ea:71:ca:40:
cf:0d:4b:0f:f8:c4:28:29:d6:a3:9e:8c:ca:d8:cf:4c:62:21:
c1:2f:63:b4:51:75:bb:ee:01:41:9d:df:07:28:39:5d:d0:d2:
51:a2:79:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:48:13 2025 by rpki-client