
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier: xSwLdqHr2TcrJYezaaUJrK3zaV+KxQI2kfBED6+/wb8=
Subject key identifier: D2:31:D7:0C:E8:CF:63:61:B0:0A:E9:35:00:3C:43:B1:1C:6E:0E:FB
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial: 01976A05A7762ED107C59D2870C8BF3C70CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number: 08AA
Signing time: Fri 13 Jun 2025 16:00:44 +0000
Manifest this update: Fri 13 Jun 2025 16:00:44 +0000
Manifest next update: Sat 14 Jun 2025 16:00:44 +0000
Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: 7dmKqA1WfK8KbWnfSChI1z9VfLpkG1uttczoEcHOgiU=)
2: vDGDX2wIiExO6AcsphzPX7w0rD8.roa (hash: 6H+fcKSw03UJYZabhwRmpHlYumXXGe9flqc+/pdyWXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:a7:76:2e:d1:07:c5:9d:28:70:c8:bf:3c:70:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
Validity
Not Before: Jun 13 16:00:44 2025 GMT
Not After : Jun 14 16:00:44 2025 GMT
Subject: CN=d231d70ce8cf6361b00ae935003c43b11c6e0efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8c:df:95:44:ec:06:5c:1a:ab:1d:74:f9:00:
fa:3a:56:f5:1b:24:77:ba:e8:75:cd:da:a9:dd:02:
04:44:41:ca:37:0c:7c:f1:18:69:cc:ec:88:4a:ed:
63:36:00:59:0f:ce:65:e2:6d:88:46:2b:2f:8d:5a:
95:7d:1f:d6:31:e9:3a:21:66:b8:d6:b9:4b:57:5b:
f7:84:9d:f0:bf:98:b4:f2:da:6e:5e:12:0e:8f:3c:
19:4b:b3:49:da:7b:59:6a:80:87:c4:b1:8b:50:6c:
af:60:a3:ae:97:b5:81:89:a6:68:0f:fe:73:17:03:
68:40:1c:07:4d:ed:fb:bf:98:b0:db:c4:93:13:d9:
a4:d4:1d:52:6d:df:7f:16:45:a1:fd:7e:c5:f7:07:
0e:42:29:ca:36:03:29:1c:a5:ca:b9:01:b2:a7:cf:
cc:c3:e5:80:ad:53:ea:f9:22:ea:bf:c4:51:30:eb:
f8:31:ff:44:bd:bc:f6:e7:b7:8c:41:ed:38:09:04:
07:ae:7d:77:70:33:32:9e:f4:aa:ed:e3:14:8a:34:
40:47:22:89:8a:64:db:d7:68:99:a3:8e:2d:e4:dc:
53:8a:87:0e:84:3f:7f:46:d3:76:78:c7:8e:c7:ff:
7d:4d:12:7e:ae:c3:80:20:c2:98:b8:a4:f1:3e:14:
b1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:31:D7:0C:E8:CF:63:61:B0:0A:E9:35:00:3C:43:B1:1C:6E:0E:FB
X509v3 Authority Key Identifier:
keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:1a:b4:41:45:e9:13:23:b8:8e:b5:be:6f:e9:c9:23:31:2f:
9f:99:f8:47:ff:cc:89:0d:9d:c6:36:4a:52:a9:7f:59:f1:d7:
b7:9a:ce:94:56:3b:f1:3d:54:b9:0e:80:a8:2f:fd:4c:ad:06:
2c:4b:cf:9d:5d:78:54:0e:8b:ca:da:48:14:11:db:0b:d8:a3:
0c:60:8a:35:7c:cb:2a:31:b6:54:7c:ad:f3:21:ca:f1:af:11:
40:50:0e:31:57:6e:83:f3:63:24:ba:99:3f:06:b7:79:68:4a:
bb:6f:08:87:20:64:6f:ac:d3:1e:47:bc:c8:7d:69:23:e0:a6:
07:64:e6:61:ae:9b:30:4d:1b:01:73:1b:d4:dd:d1:54:31:cd:
3e:81:6a:84:92:e5:1c:2a:21:70:09:da:76:78:78:d1:81:3e:
cf:7b:0d:72:ac:fd:55:93:e0:92:ff:23:9c:45:5e:64:d5:bd:
9c:3c:fe:13:aa:c6:46:9e:c8:f9:05:36:9d:de:fd:82:b7:f0:
f3:e0:d7:f5:ab:df:1d:41:85:30:8e:d8:32:cd:5a:67:2e:f5:
1e:32:49:0f:e0:9d:98:26:69:22:88:ce:07:64:c7:86:54:d4:
ab:ef:e2:e3:5d:64:73:08:d7:1e:18:e7:ee:a2:68:62:0d:a3:
c4:ef:f7:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 23:45:51 2025 by rpki-client