Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
File: KD3ro7EwXJpI03S6Rzab8fgn7gg.mft (raw, json)
Hash identifier: WgqOd1io5iqaLqxANAX0CWsrdmQuuEAescf+o2J7Kqk=
Subject key identifier: D0:99:45:07:F1:9D:1F:F3:43:39:A0:FB:5C:C5:9B:F8:4E:FC:30:89
Authority key identifier: 28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
Certificate issuer: /CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Certificate serial: 01974967B394F7A658B913E62824ADBEBE57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
Manifest number: 08CA
Signing time: Sat 07 Jun 2025 08:00:22 +0000
Manifest this update: Sat 07 Jun 2025 08:00:22 +0000
Manifest next update: Sun 08 Jun 2025 08:00:22 +0000
Files and hashes: 1: KD3ro7EwXJpI03S6Rzab8fgn7gg.crl (hash: gvjveUYet95Bvnr4xFWVuHDOfXbxgfvLXseWtRgIb2I=)
2: hy1vd6FMybZThTm3SvjJ_hE7qn4.roa (hash: vLPWUWT2tszs2HUF2XNEiqkWjYMRC5uDHz+kbz1YJLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:b3:94:f7:a6:58:b9:13:e6:28:24:ad:be:be:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Validity
Not Before: Jun 7 08:00:22 2025 GMT
Not After : Jun 8 08:00:22 2025 GMT
Subject: CN=d0994507f19d1ff34339a0fb5cc59bf84efc3089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6e:d7:96:94:5e:c2:86:bc:ab:43:f9:04:a7:
48:99:19:f8:ef:70:1b:71:18:19:71:92:7f:2d:5f:
13:10:0e:03:d9:9d:28:77:29:4a:89:89:10:0a:79:
00:81:44:db:bb:d4:db:58:44:ea:e6:3a:c7:a0:b8:
46:88:be:b8:37:e7:60:8b:0c:3d:ef:2c:55:77:7e:
bc:3e:b3:2c:f2:60:e8:93:17:f1:96:e5:27:33:73:
c7:dc:1e:10:7c:8e:e8:d6:19:ae:b0:b9:fc:a9:3a:
eb:42:11:e9:a6:87:ca:a1:9c:7b:09:3d:44:86:b1:
35:fc:db:9e:27:0c:c8:9b:ab:60:e3:1c:01:8d:42:
79:33:8d:79:1e:dd:3f:4b:7e:61:25:9b:81:3f:1d:
91:90:5e:f0:f7:67:d5:ae:3a:ba:28:42:71:eb:57:
24:93:08:ca:db:b8:89:10:93:f5:fa:3b:d7:c1:43:
ed:ff:7a:30:ae:f2:81:39:4a:f7:24:d4:da:c7:8e:
c2:39:0b:c0:a8:6f:61:7a:ef:6f:6f:81:ff:5e:2a:
cb:c3:38:82:0a:ed:30:96:61:04:78:76:cb:24:b5:
2d:22:44:44:87:b2:61:a2:c2:e4:17:06:84:14:cc:
6a:a4:c9:a3:59:5d:6a:fb:93:7a:c7:05:4c:4b:a5:
49:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:99:45:07:F1:9D:1F:F3:43:39:A0:FB:5C:C5:9B:F8:4E:FC:30:89
X509v3 Authority Key Identifier:
keyid:28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:fd:6f:6d:f4:5b:c0:8a:53:94:34:e5:78:3f:4b:5f:53:0e:
92:00:df:01:a6:a3:65:64:69:87:7b:e5:c8:ed:a4:04:45:44:
a4:4b:36:ec:61:3d:82:28:34:87:76:03:65:9a:e2:c7:51:db:
14:22:68:90:bc:5c:e8:b9:e4:c7:41:5c:4e:63:0a:46:9a:aa:
78:c4:28:a6:dd:54:47:4e:2e:a0:57:bd:01:f6:5b:f5:3b:9d:
23:17:44:a8:77:8e:bb:04:3c:22:7e:4b:04:fe:fb:7a:5f:41:
5c:c6:3d:6b:91:ba:83:e1:1a:c1:c6:33:c6:34:80:11:5a:32:
b1:0f:63:c0:a4:a0:99:95:e4:4f:11:46:4c:69:5d:90:72:95:
74:67:d3:83:4e:52:f2:b8:ea:b8:bc:d7:d2:f3:34:8e:02:19:
5e:3f:39:f4:3c:bc:00:f4:80:29:f6:96:12:58:30:c5:c9:f9:
f4:0a:b0:6b:63:04:ee:da:17:7a:33:5a:48:fc:d2:3a:c0:8e:
30:14:30:31:f9:eb:43:66:ef:6c:2b:c6:13:c8:42:7d:07:dd:
51:79:a6:cb:17:0e:79:af:74:00:af:c8:66:93:c4:b2:9c:d4:
81:f6:96:2b:22:7a:3b:4c:ad:d9:6c:40:b0:59:29:08:f1:0c:
31:86:6c:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:14:16 2025 by rpki-client