Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: vEUbcdflBbCDlcGJf2rj3RafiUxpb6hsNgL5X2FnCFc=
Subject key identifier: 70:02:1F:15:24:7B:35:AF:32:15:53:BA:35:25:EC:9A:E7:F5:CB:ED
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 01974BC46AC1DF932B9F3B4BBE15F85F84F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 19:00:52 +0000
Manifest this update: Sat 07 Jun 2025 19:00:52 +0000
Manifest next update: Sun 08 Jun 2025 19:00:52 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: 0ZKmOkSJKCyshUre1EoaTOfUoKG8jngy7QWIb/AGhfU=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:6a:c1:df:93:2b:9f:3b:4b:be:15:f8:5f:84:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Jun 7 19:00:52 2025 GMT
Not After : Jun 8 19:00:52 2025 GMT
Subject: CN=70021f15247b35af321553ba3525ec9ae7f5cbed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:01:57:d6:7c:7f:ed:90:de:1e:20:f0:85:d9:
c1:e3:b4:27:54:18:19:14:ae:19:cb:5f:91:29:42:
1c:20:f7:58:4f:fe:a8:9f:ce:c6:29:75:dc:d2:77:
94:6e:61:ef:8d:54:4a:08:78:82:7a:de:39:09:2c:
20:fe:19:41:b6:7b:6f:d3:76:25:74:cf:17:07:91:
cc:ec:cf:08:10:9c:e5:79:ac:b2:9d:ce:a7:6c:b4:
5e:25:a1:05:da:ba:b9:ca:b7:76:1d:b0:a6:58:b6:
21:88:ac:3d:96:ad:41:ec:f8:36:82:4b:02:6b:90:
08:45:fe:e4:31:e9:b9:7d:04:72:cf:48:28:0b:12:
21:b7:c2:70:a1:71:a8:b5:37:9c:61:e1:7c:4f:f2:
ef:77:42:a6:ad:11:b7:23:d0:b6:60:a2:d7:cf:44:
0b:64:66:79:04:41:ed:d7:e6:19:7f:38:5f:af:27:
16:0d:de:30:a6:95:4f:67:02:b2:f4:6f:00:9c:93:
d1:35:7a:ae:e0:f0:80:3a:a4:00:00:fa:8e:ab:40:
78:fa:31:97:d3:9b:9f:c6:0a:60:c6:37:64:c8:03:
60:e8:13:7e:8a:1d:33:17:fa:09:f6:3a:88:bc:d3:
00:9b:73:8b:60:87:c7:ac:ac:78:d7:2f:1b:0a:82:
e6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:02:1F:15:24:7B:35:AF:32:15:53:BA:35:25:EC:9A:E7:F5:CB:ED
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:84:7d:55:cb:7f:50:6b:cc:17:92:e9:74:4c:58:ed:08:25:
89:ba:f6:5e:41:e3:1f:ff:62:5c:5f:41:c4:cd:d8:77:a1:07:
bb:ca:dd:53:c7:9a:b3:49:83:91:99:52:21:35:25:c4:79:c9:
7f:c8:f7:2e:06:d6:4d:bf:02:0a:98:03:fc:fc:2a:ce:f6:7c:
13:ce:a3:89:15:17:7d:a6:bc:5a:52:ee:e5:4f:a7:77:39:f8:
9f:4c:97:d5:f3:ee:2d:63:9d:21:dd:cb:8e:7a:8b:15:89:16:
91:8b:03:81:ba:d7:19:26:6f:67:8a:2a:d2:d6:05:9f:22:32:
ec:34:0f:d5:5d:62:1c:8d:60:cc:0d:9c:e5:78:44:61:66:0b:
31:cc:5c:b5:b9:b8:b3:d7:48:ca:88:45:1c:b2:00:51:6f:a2:
f2:9a:58:a8:d0:fb:a0:88:da:e3:13:26:79:b3:d3:b7:1c:d1:
56:8c:20:b9:00:a2:ff:91:ea:cd:ae:5b:bd:36:28:4d:ec:5c:
4d:e7:bd:70:e4:5b:b4:73:ef:cc:e1:f8:30:08:76:52:74:29:
b3:8d:8e:b8:0f:56:4f:d9:9c:49:85:61:94:dd:49:56:46:74:
a9:94:ac:59:f6:84:f0:72:b5:82:64:40:98:57:a4:5b:c6:a7:
b3:1e:f7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:14:54 2025 by rpki-client