Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
File: KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft (raw, json)
Hash identifier: BNvvN6Ii6eyMdw7iVYafnR2/cQr9LEce5niVbwJm3cM=
Subject key identifier: 97:AF:C5:1B:59:D6:92:2B:26:D3:DD:5A:E0:2B:90:7D:EA:5A:9F:A7
Authority key identifier: 28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
Certificate issuer: /CN=283624007f44dcaf568c370e7f71f950cb1940ef
Certificate serial: 019752A26873641BEFA11345BEDB5B9AFC86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
Manifest number: 06FC
Signing time: Mon 09 Jun 2025 03:01:04 +0000
Manifest this update: Mon 09 Jun 2025 03:01:04 +0000
Manifest next update: Tue 10 Jun 2025 03:01:04 +0000
Files and hashes: 1: 8nNgOGtBQWNTilGRrMmNlFZZwGM.roa (hash: mOJcQQ3vA0VCC5mkB6hJglG7LUq/Vu6wljMQaBgi+dM=)
2: KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl (hash: dOb47PDkXpi2U/HsCO0RYsxdDun/MtrSkhkfCa1BhYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:a2:68:73:64:1b:ef:a1:13:45:be:db:5b:9a:fc:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283624007f44dcaf568c370e7f71f950cb1940ef
Validity
Not Before: Jun 9 03:01:04 2025 GMT
Not After : Jun 10 03:01:04 2025 GMT
Subject: CN=97afc51b59d6922b26d3dd5ae02b907dea5a9fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ea:0a:55:a4:9d:31:31:d5:0d:fc:0c:e7:e7:
3c:9a:1f:0f:5d:bc:57:bb:4f:40:f9:4a:c4:57:0d:
63:3d:8b:06:25:98:b1:e5:76:a5:a9:88:51:0f:69:
c5:d8:8b:27:d2:bb:09:c1:1f:86:51:9a:f5:d6:4f:
65:a9:a4:2d:40:c8:ec:f7:7e:29:b7:a4:73:53:28:
99:1e:9b:6a:7c:e7:e7:67:0c:c1:34:16:ac:9b:33:
2b:e0:10:6a:e5:3d:b5:1b:65:a2:71:a6:19:5b:24:
6c:cf:97:ea:9a:73:92:2d:d9:14:d3:3f:de:66:6e:
cf:28:31:24:dc:b9:2a:83:ab:7d:2f:cc:31:5a:cb:
79:2b:82:ab:b3:4e:d4:61:ea:e5:7f:7f:1e:b3:bd:
51:58:74:a4:04:82:56:d2:34:7f:bd:96:81:27:a5:
f9:5a:cf:fd:9f:88:18:4b:ec:af:83:15:06:5a:96:
73:7d:13:6d:23:70:6c:4f:11:f8:d7:bd:d1:98:19:
8c:22:97:0a:98:50:ff:fd:35:14:17:2b:ad:b4:f9:
e5:a4:36:e4:5c:41:7b:04:f3:f0:66:11:d2:08:21:
b7:cc:3e:5a:cd:69:c5:60:de:f4:aa:90:d5:7f:63:
28:86:e8:fc:8c:fb:88:b1:48:74:12:e9:2a:46:1d:
21:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AF:C5:1B:59:D6:92:2B:26:D3:DD:5A:E0:2B:90:7D:EA:5A:9F:A7
X509v3 Authority Key Identifier:
keyid:28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:7b:cd:b1:bb:91:f8:86:28:ec:20:09:87:57:77:d8:de:60:
e5:af:73:f0:94:65:94:5e:b7:da:50:3e:b0:d7:55:af:92:2f:
0a:70:87:77:b0:9f:9d:67:5a:e2:a7:0a:ad:de:5e:17:c9:dc:
32:55:0d:9f:ee:ba:5d:2c:37:88:a3:aa:39:f8:03:1d:cd:9d:
19:3f:08:bc:bd:6d:e8:ef:06:e8:33:a6:2a:e5:49:0e:91:ec:
ca:73:ff:cd:66:77:c8:79:ba:93:20:e6:89:f2:cc:ca:66:a5:
32:55:7b:71:6f:2e:b2:d1:61:c1:00:4b:69:b7:cf:87:98:8b:
35:ea:62:59:f7:8f:d8:12:86:c5:39:2d:7f:f9:60:14:13:ef:
d2:22:d7:58:41:8a:98:5a:49:13:3a:93:ac:d8:77:0b:e4:8b:
55:be:aa:50:eb:7b:f9:31:23:74:ff:f3:10:83:36:a8:90:0a:
5c:44:ac:6b:28:d1:63:0b:1d:bf:7c:e4:83:48:eb:df:f7:3b:
63:4b:0e:d0:96:3a:39:68:1a:7a:a1:01:0d:b2:50:18:9c:9e:
5f:17:9c:6a:34:d3:6e:a3:a5:d1:5e:1a:84:d2:2e:2b:94:f1:
1a:a4:d0:34:a3:82:67:38:55:91:03:e8:bb:21:dc:41:15:6b:
5f:89:6c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 07:23:00 2025 by rpki-client