Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: rANxKHRpNbddIj8Ehw75/EaeQsjd9SPKWZ8Y8KwLfP0=
Subject key identifier: A3:20:2F:5B:4E:A7:73:0A:AB:96:02:D5:BC:C1:2B:27:06:F3:16:69
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 01974A0CF5B30C02E0DAD5D99DE301C38D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 0170
Signing time: Sat 07 Jun 2025 11:00:52 +0000
Manifest this update: Sat 07 Jun 2025 11:00:52 +0000
Manifest next update: Sun 08 Jun 2025 11:00:52 +0000
Files and hashes: 1: 7RtSvYvJ-s26z4jJmihBpc9PPTg.roa (hash: +WPL+eLMOyDQbtRDqabesCoaqYzO2nUYgvkky6oLihM=)
2: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: lOeijE39f8U2NvQS8hwnkMxgVQUvShSnFO3Bn3TjHzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:0c:f5:b3:0c:02:e0:da:d5:d9:9d:e3:01:c3:8d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Jun 7 11:00:52 2025 GMT
Not After : Jun 8 11:00:52 2025 GMT
Subject: CN=a3202f5b4ea7730aab9602d5bcc12b2706f31669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0b:51:ee:86:77:96:ba:36:95:20:b1:04:cc:
c8:2d:a6:8a:3d:48:3d:96:97:c4:3e:ed:ed:b5:66:
13:82:b2:58:72:bc:2f:70:8c:39:dd:f6:92:59:90:
c2:16:8e:8d:cf:84:95:b6:d5:ca:0e:c4:59:a3:1c:
9c:3a:a0:44:4b:01:3a:6b:96:0c:37:0c:c1:51:a7:
2c:38:d6:ec:1b:92:c9:3c:0a:ab:41:a8:56:34:4e:
bd:26:9a:3b:c2:61:7e:8a:6e:03:54:38:b3:f5:2b:
2d:d8:1b:dc:68:5e:eb:8b:ad:40:7b:2f:17:25:16:
9f:f6:78:b8:eb:76:c5:8d:2e:c3:6e:de:f3:fe:db:
25:2e:d0:ce:b6:de:70:7a:3d:48:75:dc:c6:7f:ae:
dc:df:bf:8f:1f:65:de:7b:8e:e3:ce:83:2b:aa:2b:
a4:9a:af:8b:72:16:a3:13:f7:bc:04:0b:0a:91:ad:
6e:01:75:6c:f0:7a:25:4a:45:0a:2c:8f:49:e8:16:
5e:82:4a:c6:3e:d3:cb:fa:e9:fd:3c:f4:a6:e7:a3:
7b:4d:a1:59:d3:4e:e8:eb:2d:ce:70:30:47:b6:1d:
83:15:60:14:76:4a:7f:d1:2d:cc:88:88:7f:58:37:
42:32:9f:13:f3:09:bc:ab:d8:b5:82:3c:e4:d7:33:
7c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:20:2F:5B:4E:A7:73:0A:AB:96:02:D5:BC:C1:2B:27:06:F3:16:69
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:59:4c:82:0e:0f:e6:2c:6e:ed:c9:c8:13:7f:65:ca:95:62:
98:86:b6:af:fc:c0:f0:90:9f:ba:86:4f:d5:6c:cd:43:ad:40:
2f:c3:41:43:8e:32:d3:c4:41:33:c5:09:59:a7:ab:ab:41:07:
b7:77:07:2f:25:62:ca:4e:06:08:90:b7:44:a5:eb:41:93:18:
2c:cc:81:ad:fd:f5:60:a5:cb:f6:9c:74:82:07:67:f4:ca:06:
94:14:58:e1:a6:21:02:b1:4f:df:dd:04:36:a0:3d:49:b4:fe:
ef:f8:a1:4c:50:89:5c:2e:98:34:99:ff:25:20:da:bd:d7:8c:
8a:83:59:d2:15:b4:09:87:59:bd:05:3c:93:ed:d8:ef:97:53:
67:5a:52:b7:4d:91:b0:98:1f:72:40:a8:56:3b:5a:36:60:61:
73:9c:78:7c:fd:59:89:e1:98:2f:95:30:13:a0:ab:92:ce:d6:
51:5c:b2:ce:43:88:30:d6:e8:71:37:2e:d7:a9:21:f6:89:85:
60:cb:53:19:9d:c2:b3:f3:9c:28:83:19:6f:54:11:ef:25:e4:
53:d9:6a:6f:88:ef:51:76:87:ec:6d:4f:8c:a8:be:19:9c:99:
ed:7c:b0:22:be:43:9b:8f:08:bb:8d:aa:ba:81:14:37:25:0a:
22:20:3e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:37:29 2025 by rpki-client