Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
File: KaA5l7KPWbCAMciYQH3V5RN93bE.mft (raw, json)
Hash identifier: nStPfSyab+mB3V14bLzv7kb3+i0BCB1DdMVMtxfioF8=
Subject key identifier: D4:6A:DB:6A:27:A6:C6:A4:72:E3:11:97:28:88:58:B7:5D:0E:58:81
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 0197477995C5E78CD447F911589D2D78C83D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
Manifest number: 1267
Signing time: Fri 06 Jun 2025 23:00:39 +0000
Manifest this update: Fri 06 Jun 2025 23:00:39 +0000
Manifest next update: Sat 07 Jun 2025 23:00:39 +0000
Files and hashes: 1: KaA5l7KPWbCAMciYQH3V5RN93bE.crl (hash: vhXZxGdlsequ6fRmarFiVoTUytwtygViY7SQ0HJuSBg=)
2: TFGcxJc1hz5sSLNvCaBuhb3JcFY.roa (hash: IVGRn6jYdKaVvVkrmcrSKzMRsOoEhE2vOI0riR6WQTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 23:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:79:95:c5:e7:8c:d4:47:f9:11:58:9d:2d:78:c8:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Jun 6 23:00:39 2025 GMT
Not After : Jun 7 23:00:39 2025 GMT
Subject: CN=d46adb6a27a6c6a472e31197288858b75d0e5881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:59:5a:44:b2:6d:fc:ed:1e:68:41:25:7f:dc:
ad:0a:4f:65:8a:4f:3c:66:ca:50:d3:f9:c5:16:6b:
6a:e1:5e:f5:25:b3:6b:a0:c2:2e:54:1b:ff:76:65:
31:16:06:eb:75:44:62:b4:f1:98:fd:7d:97:ff:01:
23:da:49:b2:da:74:b5:ab:62:44:9e:b2:a9:c0:44:
92:c8:b4:e6:51:0e:3d:5a:01:64:15:ff:45:29:3f:
da:4f:04:26:9d:97:12:69:cb:95:f6:89:eb:be:54:
d7:c3:28:3c:01:8c:34:a9:ab:1f:88:b8:e8:a1:0c:
f9:57:4c:05:35:f1:10:4c:9a:2f:88:e0:a7:23:f2:
e9:21:36:bd:43:a6:e4:46:0a:28:13:06:e2:54:92:
52:b0:d7:ba:ab:69:da:64:c7:b5:66:bf:12:a6:6d:
d4:2c:65:8d:5f:7f:02:c3:6e:e1:85:86:49:3d:db:
d3:32:56:97:b4:3c:c4:d3:66:24:e7:d1:ec:ab:a2:
4d:41:0f:11:f4:db:2a:4a:e3:ae:5b:2b:86:12:74:
bf:d3:da:f2:5e:0d:77:e9:ec:2d:ae:d6:47:9c:9d:
3d:29:7b:00:47:38:49:ab:e5:c1:50:26:cb:42:d3:
1d:01:dd:3e:e5:5a:64:e8:30:d5:f4:d4:1c:56:4d:
ca:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6A:DB:6A:27:A6:C6:A4:72:E3:11:97:28:88:58:B7:5D:0E:58:81
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:4d:98:0c:84:a8:b3:71:2b:7e:0d:39:97:0f:d7:7f:c7:8a:
90:17:7d:e4:43:39:18:d9:88:86:05:27:90:cf:c6:7b:08:b9:
e8:e2:85:44:5b:9c:24:c4:c9:90:b4:39:73:ef:86:e0:3d:da:
1b:ea:e6:7b:b1:fa:38:62:e1:37:65:40:fc:31:00:d8:e4:f2:
47:70:91:b7:ea:2f:b3:e6:62:1a:ae:16:40:f5:80:0e:a7:e3:
22:ef:3d:bf:15:ed:2d:7a:89:f7:ed:2a:e1:13:8b:cb:d1:73:
da:4a:0b:ca:c6:7f:c4:cd:72:3b:27:69:67:ab:1a:e3:65:04:
04:6a:ce:42:99:75:b0:21:86:b1:e8:94:9a:91:c9:b5:1e:b3:
72:bf:9d:26:50:90:55:86:cb:f8:23:9e:31:35:c2:17:be:7d:
f9:f6:74:a1:17:7b:6a:46:2d:cc:8f:ab:5b:e3:93:a6:eb:82:
39:44:d1:da:80:0a:99:05:6e:ac:17:64:53:a8:c0:74:fd:ef:
79:93:a9:68:9d:d4:12:6d:e9:f3:56:cf:3a:3e:24:ab:88:06:
51:71:a4:04:6e:63:1b:b9:2d:c5:db:d7:f9:c3:fc:02:84:9f:
83:0d:28:06:50:b3:7f:65:22:03:5d:bd:db:00:16:fb:f8:94:
77:a4:57:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:14:19 2025 by rpki-client