Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: 0Crs8H4gWbsWLw+UYhyFI8hi0EbKeBQs2rE1G+g9n44=
Subject key identifier: 83:0E:8A:9F:87:4A:00:E3:CE:6E:C0:E1:79:9B:68:40:0E:6E:26:86
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 01974BC400BEB8020F28C55F6450A0642940
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 19:00:25 +0000
Manifest this update: Sat 07 Jun 2025 19:00:25 +0000
Manifest next update: Sun 08 Jun 2025 19:00:25 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: JPx0StBYG1B7/cP2rG3iNuwCv9qtlA5LRqlesvDPfaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:00:be:b8:02:0f:28:c5:5f:64:50:a0:64:29:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Jun 7 19:00:25 2025 GMT
Not After : Jun 8 19:00:25 2025 GMT
Subject: CN=830e8a9f874a00e3ce6ec0e1799b68400e6e2686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:27:cd:01:c8:ee:95:3a:2d:98:d9:14:c3:24:
57:e3:79:b8:49:1b:97:43:cd:14:50:dc:5a:ed:b3:
d6:bc:e1:47:5e:c7:d5:1c:03:0c:57:af:eb:14:b6:
54:87:22:39:d4:f5:67:bb:85:af:c8:bf:bc:0b:b9:
72:d9:ed:c7:49:f4:f9:ff:16:2f:f7:bc:41:9e:6e:
77:b8:55:72:da:ee:2c:86:a6:c4:a0:7c:9f:15:e1:
6e:ef:b7:91:1a:76:2b:f5:cd:38:7e:83:69:0d:6d:
7b:78:54:9f:e7:8a:d0:3d:02:c7:7a:0e:c8:77:78:
55:1e:0d:b2:9d:48:1c:8b:53:b7:62:82:fa:3f:8f:
d9:16:65:54:ae:1b:3a:5a:6c:83:92:34:f1:9b:74:
27:7e:4a:71:3d:d4:46:e6:61:fd:e4:8f:f1:eb:99:
93:89:7c:29:8b:dd:e3:54:9b:4b:3a:f5:32:5b:01:
fd:79:e5:48:3c:ef:e2:3b:60:09:50:8b:29:fb:f1:
04:1d:eb:e8:01:b4:71:57:fd:ff:dc:99:4e:3c:7e:
9e:71:14:80:96:55:d2:a6:3d:ee:f4:e6:67:f4:04:
f2:97:59:08:7a:eb:f1:13:c1:2b:7c:67:26:e5:e9:
58:ed:20:70:47:38:99:9f:36:e2:a4:15:80:1c:b0:
f4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0E:8A:9F:87:4A:00:E3:CE:6E:C0:E1:79:9B:68:40:0E:6E:26:86
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:ec:8f:a5:ff:2f:5a:71:ee:5e:0f:e6:ef:d9:c3:a2:ed:ff:
2a:8c:3f:90:46:b5:40:b7:c5:8d:45:8b:b4:c5:1d:f3:0a:ac:
7b:23:71:fb:67:86:68:d4:db:76:34:b3:82:8b:72:60:8c:a2:
6a:72:83:fa:fc:a2:45:8c:e0:a1:4b:a6:46:72:5c:79:58:2b:
fd:b3:43:8b:8c:e2:a6:69:3c:8d:67:4a:ba:bb:49:c8:5b:49:
5b:4b:60:b4:0e:17:f2:5a:14:3a:fe:6d:37:b7:e9:f1:2c:40:
09:f5:7c:11:4d:fa:59:74:b4:d1:75:c4:e2:17:6f:79:d7:78:
6c:be:32:8b:7b:87:60:5b:25:1e:4b:4a:be:22:3d:96:89:6c:
02:22:24:64:33:0e:01:77:fc:d4:97:83:21:15:c7:62:f8:ba:
b7:22:c9:ae:c4:93:1d:ce:c0:2d:d7:cc:6c:82:66:4a:67:3e:
4e:e8:fa:10:8a:56:43:b9:c8:7a:2b:5c:79:a8:60:e0:2e:27:
00:4a:90:18:be:02:82:a2:3d:b5:21:68:d6:c7:5f:cf:bb:01:
51:ee:97:70:b1:54:8f:33:b3:3b:fb:9d:08:dc:36:39:5f:86:
ce:76:cd:c9:ec:8e:76:65:68:22:4c:2a:66:13:9b:b9:ec:7b:
09:1b:27:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:42:33 2025 by rpki-client