
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: /6+YBrSvLNxlB0jFDka76CuTAWBQWVVfOw1XEIdnFcE=
Subject key identifier: 18:97:76:64:85:1A:4F:B9:6C:81:5E:6D:E7:57:B0:B1:F0:9A:CE:53
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 019766CD9087C64742E90CB6B32E87D1332F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 09D6
Signing time: Fri 13 Jun 2025 01:00:37 +0000
Manifest this update: Fri 13 Jun 2025 01:00:37 +0000
Manifest next update: Sat 14 Jun 2025 01:00:37 +0000
Files and hashes: 1: HlpYPKfUTSJ7pDq2oQziu1OJN70.roa (hash: 2/lnsP1apTOPlsNH0YhFprUwFbQM2G9j3yZLF5vZFt4=)
2: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: hGJ0O9KVl1BdIXg+/yE99AeYRk6ZbJlpKpDf/yxXLIw=)
3: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (hash: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:66:cd:90:87:c6:47:42:e9:0c:b6:b3:2e:87:d1:33:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Jun 13 01:00:37 2025 GMT
Not After : Jun 14 01:00:37 2025 GMT
Subject: CN=18977664851a4fb96c815e6de757b0b1f09ace53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4d:2a:c5:51:68:a1:b5:26:01:bf:9d:1f:0e:
70:21:d4:76:20:2d:88:a3:cb:cc:9f:a5:db:07:8a:
c2:58:83:1e:1b:50:93:4b:80:0e:ac:75:9f:72:ca:
6d:48:6c:5f:07:eb:13:0e:7d:49:03:9d:fd:f1:27:
97:25:fc:3c:7b:73:5e:a9:66:52:ea:ec:34:b0:6b:
4d:67:89:79:08:3d:bf:95:6a:f7:d3:ab:74:18:56:
e6:5d:e7:dd:d8:e3:c0:03:6c:50:3b:7a:9d:99:96:
52:f4:39:37:c5:c9:75:65:40:f7:0e:92:4a:36:7f:
e7:eb:75:04:94:88:c2:f9:22:aa:ca:77:fb:f6:16:
8c:fd:9c:56:7f:a3:25:d2:a5:2b:cb:6e:a5:43:3f:
df:2c:73:f0:15:2f:b3:59:97:a7:7c:4b:c0:3b:ca:
0c:78:fa:84:e1:89:71:b2:05:12:b3:3e:94:f2:af:
5a:a4:55:67:31:51:39:f7:74:dc:cd:dc:b5:af:eb:
55:f3:76:19:ec:fb:85:13:a7:98:66:94:e7:4f:1a:
23:a0:f8:d7:26:7f:4a:fe:7a:58:c2:d5:35:da:70:
d0:44:02:f8:73:82:3d:08:8c:c9:f6:27:d0:32:5b:
dd:0d:e1:e6:a4:45:dd:b0:38:24:6e:31:ee:6b:99:
31:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:97:76:64:85:1A:4F:B9:6C:81:5E:6D:E7:57:B0:B1:F0:9A:CE:53
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:b4:0e:60:37:17:52:a1:4d:a6:91:87:2a:27:a6:91:0e:b7:
25:c2:1d:39:e3:9d:fb:84:90:eb:37:2a:10:04:e7:25:38:5e:
ca:22:c4:b4:71:21:43:5e:3d:83:62:ab:03:54:f1:59:5f:d3:
02:8a:af:2a:b0:5f:c4:d1:37:56:d9:06:5d:dc:41:9b:6a:15:
1d:78:1a:75:ec:6a:a6:63:d9:5e:65:e9:4a:53:b9:93:5c:1d:
d3:1a:76:c0:0c:3a:31:65:09:0e:03:1b:3b:11:c9:03:21:e7:
4c:de:ee:de:2a:06:33:1d:fa:c8:b8:f3:38:6c:94:f2:55:c1:
35:0a:66:47:4a:31:bb:aa:5c:b1:ee:6d:5f:aa:62:f0:c0:f2:
eb:c2:44:ad:83:b9:86:e0:b7:37:50:43:d6:1c:34:25:d7:1a:
8a:3b:7a:b8:b7:46:07:27:08:24:cf:8f:42:d5:71:b3:ca:1f:
f6:06:b4:d0:4b:23:d4:de:eb:a8:32:b3:00:b6:d6:fa:59:d5:
7e:77:bc:1d:1a:0c:e1:af:60:1c:22:57:ad:8b:63:77:b8:05:
c1:3c:d2:77:bd:68:b7:7f:e9:a3:31:ff:f7:5a:e4:47:ee:c3:
c3:a2:53:a3:6e:71:88:e3:e0:e2:b2:d1:3e:16:15:6c:c7:2f:
da:31:04:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 03:06:02 2025 by rpki-client