Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
File: KdlQvBhFV79QTPK3yUp9zsCHbWY.mft (raw, json)
Hash identifier: CZVHih4OjhxXhWxtrtx5SVon6XC92sYXkiXmOGH6zMw=
Subject key identifier: 64:15:B1:96:78:74:C0:2B:53:D9:70:60:09:89:91:F7:79:89:2B:E6
Authority key identifier: 29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
Certificate issuer: /CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Certificate serial: 019748552AEE776DBF56A3367200A0EF619A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 03:00:30 +0000
Manifest this update: Sat 07 Jun 2025 03:00:30 +0000
Manifest next update: Sun 08 Jun 2025 03:00:30 +0000
Files and hashes: 1: KdlQvBhFV79QTPK3yUp9zsCHbWY.crl (hash: d4oCp2JR+W/IF57/b7Rm5O5aCYDruZoig3uv9NoBG9c=)
2: zbr28h6G65Bn1Q6ZX_BmInmSKTE.roa (hash: ETLOFsK2osYgbAep7Hus0i1EKEQGmJzxLIzfnOkM508=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:2a:ee:77:6d:bf:56:a3:36:72:00:a0:ef:61:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Validity
Not Before: Jun 7 03:00:30 2025 GMT
Not After : Jun 8 03:00:30 2025 GMT
Subject: CN=6415b1967874c02b53d97060098991f779892be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f3:1e:6c:34:11:b8:14:92:ba:37:16:62:f8:
79:1a:f5:ac:d8:04:8e:9c:b8:9c:e2:68:cd:c0:0f:
24:04:60:b6:e3:56:8f:d8:32:20:ec:74:57:a3:5e:
ad:9e:a8:cd:1e:1d:5d:db:59:5e:5d:70:4d:cf:86:
4a:4c:83:7c:6c:04:4a:3d:4b:89:b5:2c:23:27:89:
be:c9:d2:ad:ce:5a:83:63:dc:9f:18:01:ab:44:c6:
f5:fd:f1:69:c3:a2:51:6b:82:77:3d:ad:7f:18:03:
b3:d0:19:05:ef:16:d2:5a:97:f2:8e:15:f4:f4:d3:
d1:0c:67:ef:f5:32:24:8c:a6:84:ae:60:c3:52:3d:
05:3d:c6:43:c1:d3:85:3f:c0:93:95:23:8d:ec:c5:
5a:33:c8:ad:93:03:e8:5f:97:01:cb:cf:be:47:af:
09:5d:b3:1d:25:f6:9e:87:7f:bb:15:ec:3d:69:4c:
8e:35:6d:10:f1:2b:b2:de:90:15:a2:aa:ba:af:c1:
eb:09:95:a5:56:67:0d:2b:75:2e:d2:1f:6f:8e:9b:
38:57:2b:d5:de:93:da:e4:55:e2:9a:40:d6:ec:3c:
21:6b:1b:98:41:16:29:6a:ef:0e:79:a5:17:3f:b6:
14:d7:eb:b8:4b:37:ba:72:20:50:ab:ba:10:cc:9e:
cf:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:15:B1:96:78:74:C0:2B:53:D9:70:60:09:89:91:F7:79:89:2B:E6
X509v3 Authority Key Identifier:
keyid:29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:30:70:e4:d1:42:d1:70:53:cc:fb:3c:f4:97:96:ad:b3:08:
0d:1d:8b:af:83:4f:c9:3c:dd:20:2f:41:b0:dc:af:d4:b1:2b:
ce:99:bd:14:fa:aa:66:0b:1a:59:53:81:fb:99:00:81:fd:7f:
5f:1c:b1:6b:ac:2c:c6:a4:5e:bd:0d:54:fe:99:86:9f:65:8f:
09:21:9a:7b:79:79:a8:61:ee:38:38:64:96:fe:c0:63:5d:2b:
0b:81:92:17:ee:8d:4f:1f:e0:81:90:69:f4:3a:a8:b1:70:07:
27:04:64:59:fc:b2:08:b5:b7:f8:25:05:15:72:43:5a:02:88:
c6:36:e4:29:b9:d6:09:7b:1d:6b:30:1e:b2:38:51:15:21:ce:
f6:09:76:be:25:0e:ed:19:f4:ae:d7:23:1f:2d:90:10:c3:08:
7a:40:db:d3:ab:cb:6e:5a:ca:bb:6d:3b:20:e7:96:d3:45:cc:
23:18:21:fd:fd:c8:bf:88:99:22:0d:be:a0:10:72:e3:12:21:
31:e0:31:d5:88:67:dd:c5:ee:60:ec:cf:6f:89:81:13:c6:9f:
38:1b:68:23:b8:89:e2:b1:66:95:51:d4:57:77:26:b2:b3:cf:
9b:42:74:7a:c1:99:df:53:90:51:61:0f:34:5a:db:13:8e:0e:
fa:3c:04:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 13:56:33 2025 by rpki-client