Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: 52Jt1N1FiuyHUHmldCMU197ANhda23NgGLCivG9feNM=
Subject key identifier: CD:51:53:C3:11:14:59:66:43:73:9D:07:44:24:7B:DD:41:CC:5B:7B
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 01975EDD0558A246B888F55DE1B7977428E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 0721
Signing time: Wed 11 Jun 2025 12:00:32 +0000
Manifest this update: Wed 11 Jun 2025 12:00:32 +0000
Manifest next update: Thu 12 Jun 2025 12:00:32 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: z/1lHKfjG+3qqVeXv8wsv7jRL/1VGGvehDjdJrUy0nE=)
2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 08:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5e:dd:05:58:a2:46:b8:88:f5:5d:e1:b7:97:74:28:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: Jun 11 12:00:32 2025 GMT
Not After : Jun 12 12:00:32 2025 GMT
Subject: CN=cd5153c31114596643739d0744247bdd41cc5b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2b:71:cf:70:7a:e5:24:5f:1b:08:70:6f:f2:
3b:2f:f9:45:4f:ea:6e:2d:22:ed:4e:23:59:24:a2:
3a:13:72:8f:17:08:48:a2:33:d2:64:db:03:e8:9d:
fc:97:87:44:b1:b8:69:34:47:3e:5a:2a:b9:eb:0a:
f1:24:fd:d7:4e:3f:52:79:4e:31:68:8f:26:f3:c3:
2c:cc:60:a5:47:dd:8a:ab:82:15:5b:e5:d7:74:32:
e7:65:4f:e0:27:bb:e1:d0:bb:3a:fe:f2:2b:75:63:
39:06:86:4e:d0:4c:9a:1a:a5:da:64:c2:51:13:7f:
94:0a:73:2d:5d:d9:df:cc:bb:c9:f4:cd:84:b0:1d:
df:9a:81:42:1b:c7:1f:73:bd:12:d3:2f:75:62:0a:
95:fb:49:18:2c:4b:3a:6a:4b:03:2a:a4:68:82:7f:
39:b6:02:85:ac:63:a4:f1:25:29:18:79:46:3b:e3:
65:df:7e:2e:fd:73:12:f1:14:51:3d:72:a0:3a:0c:
80:48:95:76:23:47:81:f4:c4:bf:15:23:b8:a2:db:
68:f3:50:d7:f6:50:a4:32:a8:4a:4d:0e:2e:82:78:
e5:67:58:d1:ff:04:a7:41:6d:cc:d1:14:c7:ac:3f:
ae:42:bd:84:18:f5:de:db:40:a5:4d:c2:bd:33:92:
4b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:51:53:C3:11:14:59:66:43:73:9D:07:44:24:7B:DD:41:CC:5B:7B
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:37:b1:08:4d:3b:4f:4c:32:33:85:41:43:c1:5d:3c:e1:1f:
c6:ef:d5:f1:b6:73:49:3c:fa:51:cd:b4:1f:71:a7:d7:92:6f:
7b:b9:bb:b4:21:d8:3a:e4:a7:a6:1a:ca:4c:f9:e4:33:b3:2a:
1d:b0:d7:1f:3a:1f:03:ba:2e:41:ca:5c:c0:a4:4f:75:ad:a1:
84:61:06:b7:d5:55:ca:bc:a0:57:6e:aa:8e:a7:f7:ca:31:9c:
ee:4a:c4:15:18:70:bc:65:6d:41:2b:ab:d7:d0:e1:5b:79:2c:
df:b8:a5:cc:fd:53:ec:43:9a:d5:38:e3:9d:0e:3f:41:74:9b:
0e:0f:b9:eb:73:2f:db:3e:bf:f8:42:ed:30:7e:be:46:9b:2b:
bb:d9:86:27:13:32:ee:32:75:8c:10:fb:b3:b9:b7:9d:93:c4:
fd:5b:ef:f0:84:40:24:fe:54:b8:ee:c7:ab:38:40:46:79:e5:
e9:b5:ed:eb:fe:c7:ad:18:87:70:5b:bf:90:09:cc:3d:36:06:
7e:ce:f6:21:a7:f5:b5:bd:37:f3:ee:51:89:a6:f9:e3:da:dd:
d6:75:44:85:2d:09:36:2a:24:68:d5:cf:79:6f:27:2b:1d:eb:
b0:a3:d7:ba:d3:68:18:e1:1d:5e:60:9f:1d:eb:e4:0c:19:62:
45:e9:01:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 14:39:23 2025 by rpki-client