Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: Ya8mxS3A7UNBJkKNEAB68oLZCimDYzN/lM+Qq2tiT/8=
Subject key identifier: 3D:A4:08:73:B3:FE:B1:D7:36:6C:8C:70:E6:8B:DA:11:B1:36:D8:12
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 019759127D89BA33C923C97BEE2F83D59892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 071E
Signing time: Tue 10 Jun 2025 09:01:13 +0000
Manifest this update: Tue 10 Jun 2025 09:01:13 +0000
Manifest next update: Wed 11 Jun 2025 09:01:13 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: 9QmPsUYFViOfGSdkGliiJqq8CzxEC98wE1EiFb8U9lo=)
2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 09:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:12:7d:89:ba:33:c9:23:c9:7b:ee:2f:83:d5:98:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: Jun 10 09:01:13 2025 GMT
Not After : Jun 11 09:01:13 2025 GMT
Subject: CN=3da40873b3feb1d7366c8c70e68bda11b136d812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a4:0b:4a:6d:1c:9d:35:f7:6c:3d:36:0d:08:
2e:cf:3f:93:d4:5f:c2:df:dc:d6:d9:e0:8c:ca:32:
a9:39:55:2c:b9:ca:1b:77:ca:4d:08:a0:c0:e8:fc:
dc:cd:ab:ce:4d:00:7e:72:1a:2b:83:10:71:20:75:
9d:01:8f:45:f0:d0:6a:49:45:5d:2b:e4:b7:c9:1d:
2a:64:2a:09:1e:93:fe:5f:de:cd:a6:b1:92:24:d4:
0c:20:05:f5:db:d1:1c:e1:3b:0d:bc:f8:f0:51:f1:
fe:81:66:13:73:a7:32:d1:7c:61:cd:a5:e6:cc:a6:
45:cb:77:b3:26:b8:18:3c:70:d7:6e:12:68:75:fc:
7d:d7:4d:eb:58:a1:62:37:8d:8d:d3:8f:ec:c1:90:
3f:f1:14:20:74:25:a9:3b:68:12:34:73:a8:25:73:
55:0a:e8:8b:c9:35:51:85:04:f7:4f:bf:02:18:7b:
46:b9:d1:e6:ff:8c:ab:b5:23:9d:9e:d9:db:68:d9:
b7:0c:10:e6:68:4d:d0:04:29:f0:bb:bc:10:eb:d5:
3d:cd:db:ae:94:ea:08:fa:cd:8c:f1:07:3c:87:ca:
96:d7:53:0f:75:ef:04:fd:25:8e:06:7a:24:34:38:
ab:7c:ad:1d:7d:d2:e3:d9:2d:50:c7:8f:91:9a:d4:
b3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A4:08:73:B3:FE:B1:D7:36:6C:8C:70:E6:8B:DA:11:B1:36:D8:12
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:3f:4b:5d:62:64:72:78:b5:e1:3b:fa:33:15:2a:3d:0f:81:
86:b5:8c:fe:2d:9f:2e:8c:81:9a:52:c6:5c:57:c0:fd:99:42:
59:e2:36:32:00:39:9f:27:05:20:d5:0a:e4:61:27:fb:15:10:
45:bc:73:30:fd:44:ad:45:7e:5b:be:d3:f9:3b:9e:9a:c2:b4:
dc:59:9d:09:6c:c6:a3:85:fc:85:75:b6:73:d7:25:6d:a8:10:
a9:4e:cd:6a:48:d1:3e:d1:4e:fa:93:23:f5:3d:2a:21:2d:9b:
58:65:2e:9c:9c:21:9a:72:ff:de:eb:4d:32:5d:65:55:d9:18:
1b:b9:77:1a:d4:b5:14:52:13:24:82:bc:4e:f1:ab:4a:0c:0b:
98:47:46:ed:cd:73:b4:2b:35:1b:ba:cc:38:ca:3a:89:f8:15:
6f:ea:88:19:4b:50:da:f1:21:25:d9:1f:a7:b7:ca:77:28:3f:
65:99:02:60:cd:a2:f2:e3:e2:52:53:95:36:92:ef:aa:0e:d4:
2c:62:6f:bf:7f:4a:20:49:97:e8:10:ca:43:d5:43:e4:83:94:
90:dd:6d:32:8f:c1:d0:fb:84:71:fb:03:d3:09:86:27:93:9e:
59:d2:a5:08:a9:d4:c6:69:0d:4e:36:83:e4:e5:d1:f1:94:59:
8c:2f:e9:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 17:32:34 2025 by rpki-client