Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
File: kfWJGibPpDaiPn4f-XZki-5573c.mft (raw, json)
Hash identifier: ILdNWw+auUlJakc95ctajLw0C04uVKwwILNhp4mvYRo=
Subject key identifier: D7:F1:3C:61:B8:04:3B:5C:9D:18:AA:9F:FE:B2:B4:AE:96:B9:A6:F7
Authority key identifier: 91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
Certificate issuer: /CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Certificate serial: 0197488C0C469BB5E281F7D453550AB45CDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
Manifest number: 13EB
Signing time: Sat 07 Jun 2025 04:00:27 +0000
Manifest this update: Sat 07 Jun 2025 04:00:27 +0000
Manifest next update: Sun 08 Jun 2025 04:00:27 +0000
Files and hashes: 1: AwtKEHfYyxnQ1th-VlZxSnr7g6Q.roa (hash: kaMvuNz15dIgQL2M/Qvml14U3ZSUX9PuIaFhO+5H45U=)
2: DIxBuJDWRajN2G8Xp5FV5TyPSvA.roa (hash: OfQWp1njClDrdouukOkCvfJ95D6ij98TPOIuqpcwAzY=)
3: kfWJGibPpDaiPn4f-XZki-5573c.crl (hash: TPnJoMZd+ce6CN/DJeJtTBrjwwVk2htCA4X2tFVy4vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:0c:46:9b:b5:e2:81:f7:d4:53:55:0a:b4:5c:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Validity
Not Before: Jun 7 04:00:27 2025 GMT
Not After : Jun 8 04:00:27 2025 GMT
Subject: CN=d7f13c61b8043b5c9d18aa9ffeb2b4ae96b9a6f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d5:1f:1f:c0:c0:2c:8a:17:a0:49:06:b3:97:
51:f5:d7:ce:42:d9:65:6a:1d:4b:ad:f4:22:ea:27:
8f:f7:4f:e3:3c:69:21:71:1e:5b:1a:52:1f:fe:bd:
f0:a0:c6:e8:67:b5:6a:c6:88:f6:af:85:bd:42:73:
eb:f6:37:d3:bc:a8:23:df:da:9d:09:34:a0:b2:6f:
f0:de:58:98:d1:c1:a4:28:8d:f0:5a:ac:56:11:43:
57:1b:70:fd:99:cf:fb:59:e3:14:4e:63:a4:53:7e:
bc:94:5c:58:97:2e:18:4d:d1:af:3b:b0:04:70:f8:
08:37:03:64:7d:a4:da:c1:7e:5e:76:71:2d:56:d6:
86:5e:ab:a3:55:8a:49:3d:fa:f9:60:1d:68:d0:81:
ef:3a:a4:44:a7:42:a7:3a:bc:a8:2a:fe:26:2c:dc:
5e:0a:4a:6a:28:f0:d2:7a:a8:b1:28:5c:47:00:08:
65:fc:8b:52:ee:5f:3a:57:86:c5:60:ea:3a:85:5b:
a8:a4:15:64:1d:2c:ae:02:50:05:ca:74:b6:b9:37:
7f:a2:94:c7:01:e7:fd:ac:fd:6e:08:85:71:e6:f0:
39:da:a8:60:17:61:c4:47:25:ab:ae:50:49:66:ea:
67:dc:ad:a1:d1:49:d9:a7:cf:31:e9:79:5d:56:81:
b9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F1:3C:61:B8:04:3B:5C:9D:18:AA:9F:FE:B2:B4:AE:96:B9:A6:F7
X509v3 Authority Key Identifier:
keyid:91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:54:28:bf:e2:29:80:7a:4d:69:92:66:1c:ac:53:34:53:a9:
27:46:6f:ef:b4:96:c8:2d:16:c5:5e:5c:59:2c:25:26:f2:da:
0d:86:47:f1:9a:42:22:72:92:8c:a9:39:8b:1d:50:51:25:f7:
cf:83:56:e3:95:11:a9:7d:e7:4f:fc:43:67:53:e3:49:9a:dd:
d3:b7:fc:52:99:83:8c:72:af:9f:1f:8f:00:88:d9:31:41:02:
b8:54:91:3a:58:d9:8e:7b:5e:01:00:47:c6:cb:d2:6f:5a:ad:
6f:e8:15:77:5c:7a:21:e4:aa:7f:5c:d7:b3:39:6b:bd:2a:d8:
f8:f7:39:20:87:d6:56:c8:ef:b0:6f:69:e3:1b:ad:f1:7b:8d:
f1:1f:7c:e5:54:a6:69:c5:1e:39:d5:0c:60:ef:72:0b:04:a9:
89:a9:f7:19:91:80:9b:97:85:14:87:81:ae:9a:a4:a6:73:2c:
fd:8f:de:51:1b:5b:e2:e4:42:b3:90:f0:26:61:b6:be:3e:a2:
88:45:a6:22:4f:72:13:29:39:3c:db:28:98:0b:58:9d:19:24:
84:49:0e:ed:20:89:3f:62:a5:2a:c7:8e:85:be:6f:6b:24:4f:
2d:6e:12:a7:94:3b:e8:a3:79:d8:bd:ff:94:36:34:21:62:1c:
05:84:0e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 11:33:45 2025 by rpki-client