
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier: IvJRLIDZjXmu2LGvqB5Nz7tOyjmJspASlZ88PB613kc=
Subject key identifier: 7F:6F:AE:B5:29:72:00:C6:31:EB:19:2E:EB:89:25:17:92:97:0A:B2
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial: 019758A3FA3F40E3EEEF01F4327F421456AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number: 08A1
Signing time: Tue 10 Jun 2025 07:00:30 +0000
Manifest this update: Tue 10 Jun 2025 07:00:30 +0000
Manifest next update: Wed 11 Jun 2025 07:00:30 +0000
Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: /ynqSBXldJUcmfBP0R/b5R4J3lrebnGg8QreDQrS0WU=)
2: vDGDX2wIiExO6AcsphzPX7w0rD8.roa (hash: 6H+fcKSw03UJYZabhwRmpHlYumXXGe9flqc+/pdyWXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 07:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:a3:fa:3f:40:e3:ee:ef:01:f4:32:7f:42:14:56:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
Validity
Not Before: Jun 10 07:00:30 2025 GMT
Not After : Jun 11 07:00:30 2025 GMT
Subject: CN=7f6faeb5297200c631eb192eeb89251792970ab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:78:50:62:01:3f:ea:87:04:86:91:fd:05:9c:
29:43:5f:c5:46:d4:d4:c2:12:b6:d8:81:6f:08:40:
fa:cf:e7:92:05:50:08:f9:6d:ea:a9:0e:bb:62:25:
99:cc:77:9c:30:81:a5:bc:fe:3b:a2:b6:53:fd:cb:
ea:6e:0c:24:7d:cb:98:c0:f9:32:2f:3e:12:8c:f6:
90:34:5f:53:ce:7d:6b:5a:36:ec:38:c8:d2:de:5a:
32:60:9f:6d:0f:ff:eb:e1:79:14:d7:76:84:b5:10:
52:f2:3a:a3:76:92:3c:a7:b2:a4:1a:fb:16:a1:04:
10:6d:82:b0:95:e4:2b:b3:53:83:e4:78:c4:ad:62:
9e:29:39:c9:3e:8a:b3:f7:4a:e1:49:9d:49:6c:88:
51:f1:61:1d:eb:5e:24:fc:96:fa:6d:68:55:72:7d:
37:f4:ad:d9:62:86:e3:70:76:d3:de:65:4d:d9:85:
aa:1b:18:e6:25:d3:d5:6f:4e:1c:27:b2:99:bc:5d:
40:ec:e6:3e:88:de:e4:60:ba:a3:7d:8b:22:5a:16:
14:83:c8:b0:fb:31:6c:80:f2:2f:d0:09:eb:91:b8:
43:f4:2e:b2:71:67:18:25:d6:59:4c:eb:b0:c5:12:
99:4e:2b:07:0a:c1:8a:d0:3c:dc:1e:9c:1b:42:74:
80:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:6F:AE:B5:29:72:00:C6:31:EB:19:2E:EB:89:25:17:92:97:0A:B2
X509v3 Authority Key Identifier:
keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:e6:c7:a2:29:aa:f9:fd:27:43:90:b3:6d:47:97:3e:87:e1:
b6:82:82:42:28:d4:01:1b:ba:91:ad:22:44:c8:ea:11:7c:7c:
04:2a:64:0a:5d:ad:b9:ca:59:84:83:72:ce:4b:e3:00:08:13:
7e:a9:ab:19:e7:82:6f:b5:5f:04:fb:ad:ef:6c:ce:00:37:47:
c2:df:cb:90:00:08:76:16:67:97:46:0b:40:08:7c:74:1c:2f:
30:bf:23:1f:90:1b:47:1b:2d:6f:ef:0c:d9:9b:7a:ff:ef:5f:
09:72:cc:d8:37:13:29:b3:76:53:30:9c:49:48:8a:7e:d4:11:
9d:b0:4f:f9:dc:84:a7:c4:2c:61:47:f0:50:b8:8e:e9:d1:a2:
5e:96:84:1c:d1:c7:3b:b6:22:de:3a:3f:30:f2:b3:f9:9f:9f:
5a:01:5e:cc:c6:6f:85:09:34:9a:52:d7:47:c0:d7:ba:a8:b9:
2a:db:ca:4f:55:39:6a:f9:b2:12:cf:35:f1:ae:42:f8:8b:c0:
bb:8b:73:25:01:dd:f7:e3:eb:1a:85:90:b0:92:ff:cc:f8:1c:
2e:09:2c:1a:c4:44:06:8a:31:46:72:f2:7f:49:ef:82:72:48:
e2:96:74:e8:de:2e:2c:06:10:7f:a0:a1:00:c8:d1:05:ce:5c:
f8:f3:03:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 17:49:20 2025 by rpki-client