Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft
File: KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft (raw, json)
Hash identifier: 1oQYdu6bomc1v9wT5uJHRJlR/6WasMiKSi7/ALpkCyA=
Subject key identifier: A8:6F:18:84:BE:A0:B5:DC:B9:B3:44:74:01:53:B9:CF:96:BC:37:0A
Authority key identifier: 29:F4:34:0D:F7:17:60:57:48:08:30:0C:B1:4F:C1:76:0F:AE:CC:F9
Certificate issuer: /CN=29f4340df71760574808300cb14fc1760faeccf9
Certificate serial: 0197500EF558F65E265E881339BCAB25BE9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft
Manifest number: 34
Signing time: Sun 08 Jun 2025 15:00:46 +0000
Manifest this update: Sun 08 Jun 2025 15:00:46 +0000
Manifest next update: Mon 09 Jun 2025 15:00:46 +0000
Files and hashes: 1: KfQ0DfcXYFdICDAMsU_Bdg-uzPk.crl (hash: fTa5XRXvHsQtYz912RvAFFaiBm129nUryv+vhwRX6gE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 15:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:0e:f5:58:f6:5e:26:5e:88:13:39:bc:ab:25:be:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f4340df71760574808300cb14fc1760faeccf9
Validity
Not Before: Jun 8 15:00:46 2025 GMT
Not After : Jun 9 15:00:46 2025 GMT
Subject: CN=a86f1884bea0b5dcb9b344740153b9cf96bc370a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d8:f3:a7:4f:ac:2a:45:73:94:74:75:42:ed:
27:04:98:d2:94:f3:47:7b:20:a1:42:5b:63:56:b7:
54:57:b5:66:9b:99:90:39:08:b7:c9:d2:1a:ac:e0:
85:7e:d0:64:a3:9b:a1:68:18:b0:dc:4c:32:71:71:
96:f8:ba:0d:ac:d3:be:ad:bd:88:d0:a7:60:d0:ec:
8e:a0:1c:4d:7c:0f:0e:2c:f9:f1:58:c9:1b:96:f9:
6e:30:48:23:61:7b:86:e6:48:65:7d:eb:eb:e9:17:
03:19:cc:a4:86:9b:31:d2:2f:54:12:26:7d:12:dd:
8d:34:21:b8:15:61:48:99:d3:1f:65:a1:a4:d2:87:
f3:1b:63:67:ae:f4:c2:a7:fa:87:cf:64:c1:37:e3:
5b:69:9b:55:ae:a2:bf:18:ff:9c:98:1f:3f:f4:69:
9c:c4:e9:b1:4e:fa:19:57:49:2c:a4:59:25:fb:ba:
da:f1:d5:0e:98:dd:88:60:8a:7c:2b:db:2f:29:7b:
a0:dd:b2:61:9d:8e:5c:d9:19:72:d6:21:81:3c:f0:
24:5d:6c:d1:35:69:69:29:9d:a0:23:d3:97:b9:5f:
2b:5f:64:25:4d:14:64:77:44:03:60:93:97:31:ff:
5f:d9:cd:db:34:cc:b5:01:e9:fb:20:8c:f9:24:fd:
1b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6F:18:84:BE:A0:B5:DC:B9:B3:44:74:01:53:B9:CF:96:BC:37:0A
X509v3 Authority Key Identifier:
keyid:29:F4:34:0D:F7:17:60:57:48:08:30:0C:B1:4F:C1:76:0F:AE:CC:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/70669e-5744-4477-86ba-795c3a612e8b/1/KfQ0DfcXYFdICDAMsU_Bdg-uzPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:36:b5:de:81:11:e1:f5:17:54:38:d8:72:bf:36:58:64:86:
e0:a4:8c:d6:9a:55:8d:61:00:ac:26:cf:c5:71:ae:92:7b:1d:
0d:39:5a:4d:f1:3d:0a:df:f6:3a:23:b6:1d:a6:96:15:40:33:
12:1c:03:0d:d6:2b:a4:70:ae:63:de:b1:a7:72:05:fe:24:35:
8f:31:3f:f8:9a:a8:1b:0b:c5:8b:ba:f8:dd:78:32:69:46:67:
b1:0f:58:23:cf:fc:d7:02:f5:71:76:fe:f3:1e:16:0d:0c:88:
f5:3a:39:8d:29:95:a4:16:d1:88:19:71:1a:47:f5:a5:e4:e3:
d4:1c:22:99:1c:31:bf:49:3e:98:3a:b8:14:40:25:7d:a1:71:
61:a6:c1:cd:89:e7:c5:c5:78:2e:4b:45:20:0a:d9:dc:c4:42:
58:ad:79:2a:26:41:bb:a4:ae:0a:d0:8f:78:93:52:3f:ad:24:
bb:f8:de:29:9f:44:4c:e6:a9:c8:d6:cc:25:b1:93:53:25:62:
d6:8a:55:be:3c:e8:55:2d:43:4e:e1:d6:65:eb:45:f7:10:75:
d5:49:d8:86:d4:ea:2e:c7:fd:c3:fa:13:5f:9a:55:16:22:ad:
5b:35:44:4d:9d:8e:45:aa:bd:f7:b8:dc:bb:5b:5d:59:e8:81:
0a:de:0e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 01:31:39 2025 by rpki-client