
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier: KtR4M2rTEG1iBnUfWZZFjZBlwrNdQ5Nwsp0/wrve3W0=
Subject key identifier: B2:30:51:62:B7:AC:3C:44:BD:3C:15:B5:F5:2A:A9:BD:E1:55:C8:D0
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial: 019768176DB5BFB2EEC1016B51949B6512C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number: 08A9
Signing time: Fri 13 Jun 2025 07:00:55 +0000
Manifest this update: Fri 13 Jun 2025 07:00:55 +0000
Manifest next update: Sat 14 Jun 2025 07:00:55 +0000
Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: IWaHfHKAv2HSIurM6PzAi52Vx4uynQ6vJrcP8I9ta0k=)
2: vDGDX2wIiExO6AcsphzPX7w0rD8.roa (hash: 6H+fcKSw03UJYZabhwRmpHlYumXXGe9flqc+/pdyWXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:17:6d:b5:bf:b2:ee:c1:01:6b:51:94:9b:65:12:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
Validity
Not Before: Jun 13 07:00:55 2025 GMT
Not After : Jun 14 07:00:55 2025 GMT
Subject: CN=b2305162b7ac3c44bd3c15b5f52aa9bde155c8d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:65:4e:4e:9f:b9:bf:c3:e3:42:7a:55:1e:9c:
5b:59:03:c1:9e:40:21:83:86:49:6c:83:36:1f:8e:
76:65:6b:03:5d:30:00:ef:46:74:e2:b6:f2:8d:aa:
3c:c5:1e:77:1a:44:b2:e0:0d:cd:ef:26:8b:f4:c9:
7e:b4:87:81:23:34:5c:69:32:02:39:3d:63:7f:79:
b1:41:c4:6a:c2:55:a0:7a:61:da:d5:b4:ae:11:63:
36:f9:f5:17:70:f3:00:ab:57:85:84:14:2d:40:28:
65:a9:1d:c4:2a:6c:c3:26:40:d0:01:9a:25:e5:0b:
f0:55:77:54:e8:20:0a:d7:69:f0:7b:68:71:54:a7:
95:1f:d8:15:2a:28:30:f5:be:37:40:28:19:2b:57:
7d:8d:cf:af:c5:37:00:a1:72:57:79:0b:78:de:6f:
73:6c:fe:46:91:e9:49:6b:d2:34:a9:9a:34:22:cb:
69:89:3a:5d:28:14:03:9c:68:ad:b6:47:44:2a:a4:
a5:d0:4e:75:fe:6e:25:e9:4e:35:cf:3b:b7:8e:fd:
1d:9b:bb:d7:fc:3b:d7:2b:99:44:a7:f3:fe:d2:b5:
b9:55:18:5f:d2:86:37:54:7d:c0:f7:a5:05:a3:bb:
af:3b:ad:af:d3:e1:49:c8:1f:1e:3e:38:03:70:b9:
ed:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:30:51:62:B7:AC:3C:44:BD:3C:15:B5:F5:2A:A9:BD:E1:55:C8:D0
X509v3 Authority Key Identifier:
keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:cc:70:46:ed:9c:04:7d:f8:73:af:93:52:f1:8c:66:05:a8:
0c:4d:ea:f2:11:c6:70:5c:f6:3d:c0:12:ec:0f:68:de:a5:a4:
fe:ac:e1:3a:55:ef:ea:39:d4:64:e3:44:f0:28:00:43:cb:fb:
c3:9e:05:f9:8f:12:b1:1c:ed:70:f4:1a:43:0a:c1:de:59:4d:
b1:8e:d9:ae:57:13:75:b5:e4:d7:23:73:14:be:34:1b:f3:8f:
36:f8:21:73:2b:42:85:09:0d:6e:9c:6a:f7:4d:55:c6:d3:54:
e3:a5:65:68:fe:26:7f:83:20:0d:b1:e6:a2:cb:83:6a:2d:26:
4f:97:6c:d5:42:0f:7e:2a:1b:2c:b5:ae:82:86:97:f0:4c:ee:
74:7a:6a:79:9a:e9:36:bc:62:81:f3:9e:07:a1:d5:17:fc:12:
55:17:ec:cb:75:31:65:59:1b:59:33:82:61:30:0c:63:c2:c2:
99:b1:1d:69:50:8d:94:8c:fc:6d:6c:95:ea:d9:a6:72:05:c5:
33:d2:5a:e3:2e:f5:67:fb:d2:38:21:8f:da:b7:30:2f:bd:0f:
ab:8b:28:52:9d:e6:5a:4c:0c:83:27:9a:b7:8c:a3:3b:69:0e:
dc:13:21:61:5c:22:34:71:b7:bd:11:bf:89:71:3f:64:a1:f5:
00:e8:d6:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 13:28:59 2025 by rpki-client