Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier: 9UuJd0B41eLOI3M8PBKA16AdTJJrZzSllktlBSIsJXw=
Subject key identifier: 93:AA:C9:31:FF:B3:50:E7:09:5A:28:3D:A4:FF:69:3A:1C:5A:FC:49
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial: 019756B60989C9257217B49882B69E6D8182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number: 08A0
Signing time: Mon 09 Jun 2025 22:00:59 +0000
Manifest this update: Mon 09 Jun 2025 22:00:59 +0000
Manifest next update: Tue 10 Jun 2025 22:00:59 +0000
Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: WIxKRBG83Z2gmoE7KcjrKockP3bW/qDeM2w/ALRDDl0=)
2: vDGDX2wIiExO6AcsphzPX7w0rD8.roa (hash: 6H+fcKSw03UJYZabhwRmpHlYumXXGe9flqc+/pdyWXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 22:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:56:b6:09:89:c9:25:72:17:b4:98:82:b6:9e:6d:81:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
Validity
Not Before: Jun 9 22:00:59 2025 GMT
Not After : Jun 10 22:00:59 2025 GMT
Subject: CN=93aac931ffb350e7095a283da4ff693a1c5afc49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8b:7c:82:f3:3f:39:ae:e2:77:6c:3b:3b:89:
0b:10:44:c2:5f:fc:6f:7a:82:e7:e4:e0:e5:4d:3b:
c3:32:5b:3a:ea:2c:66:70:bd:fc:0f:8c:56:c6:95:
3c:65:9e:cb:f5:b7:6e:e8:98:fe:d0:bf:47:5c:27:
b8:7f:3e:33:43:99:6d:15:7a:49:ba:80:b2:52:31:
12:18:8e:32:15:b3:21:56:2a:bc:a3:ce:72:5d:56:
a2:43:1a:d9:1c:40:c3:59:3a:75:4d:37:24:bf:29:
fa:d7:16:9b:60:5e:9a:e4:31:77:74:2d:84:81:8b:
0e:76:fb:46:c9:0d:d0:77:a4:fb:07:f3:dd:3a:b0:
7e:a4:db:37:7d:d3:6c:a1:71:c2:74:ab:ab:62:5c:
88:6b:93:6b:92:17:0a:43:14:c5:af:5d:cd:28:2d:
15:a6:43:81:6a:b2:24:81:74:c9:76:40:98:32:7b:
c2:08:dc:b2:a2:16:00:40:67:4a:84:d1:b0:3f:7e:
a5:9e:f7:12:bd:d7:54:ac:aa:fb:aa:8a:f3:05:89:
e5:88:e2:8a:16:65:b1:50:5b:73:6f:2c:c6:ed:6f:
5c:66:e0:c7:d8:25:4e:98:30:5f:93:ca:3d:34:2e:
5b:78:7a:72:a2:77:20:6c:c0:16:e7:c6:e2:9e:f6:
f1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:AA:C9:31:FF:B3:50:E7:09:5A:28:3D:A4:FF:69:3A:1C:5A:FC:49
X509v3 Authority Key Identifier:
keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:6c:68:60:7a:91:7c:a0:30:15:33:9f:6a:b8:5c:36:12:4a:
4d:93:8d:ce:0b:33:69:ec:a6:b1:7d:cc:a8:7e:ea:b0:f6:44:
f1:f5:21:33:a7:08:6a:d8:94:51:c6:b2:80:74:05:46:7e:ec:
c9:ad:7f:4e:41:16:a8:1f:32:ea:3b:2f:e0:74:86:3e:93:53:
b6:59:8e:12:32:61:be:c9:cf:d9:ac:92:27:79:57:6a:b8:4b:
f5:e8:56:37:2c:ae:75:ed:16:de:8f:8e:df:9f:74:2c:05:f0:
3a:ab:4c:f0:64:d6:63:a6:20:2d:9d:a1:7f:6c:47:4a:ee:46:
fe:8e:1d:3b:27:c5:54:d7:1c:29:5c:19:09:d8:25:fa:d3:c5:
68:a2:c0:f5:b8:8e:a6:0a:05:6a:27:2e:fa:2d:d6:cd:b2:e7:
72:af:4b:fa:e5:7a:88:5a:7f:ab:a8:3e:1e:18:f7:41:49:06:
00:6e:16:da:fd:23:1e:e4:57:19:cc:c1:5c:48:31:58:25:57:
ac:66:b6:09:b6:00:2d:c4:61:96:ee:e6:2d:8b:ee:36:80:48:
55:75:7c:52:5d:12:da:d2:74:44:7c:60:19:19:86:da:99:f7:
63:28:8b:3c:f4:72:05:8c:e4:82:63:e8:4c:7b:cb:f3:a3:64:
c4:bc:dd:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 07:57:43 2025 by rpki-client