Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: p6awkD1rGli3eI3dHnsiZCPRyX8SOElhVwygXC6/kI4=
Subject key identifier: D1:FA:B9:5A:9F:DE:0E:6B:0B:48:83:69:BF:05:BA:C6:3A:71:58:EE
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 01974F3340BEA6A14F26C52CC8DB38368F66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0C14
Signing time: Sun 08 Jun 2025 11:00:48 +0000
Manifest this update: Sun 08 Jun 2025 11:00:48 +0000
Manifest next update: Mon 09 Jun 2025 11:00:48 +0000
Files and hashes: 1: GDngKunQly0rXAZJTM9K6ouZldE.roa (hash: srWtclzCrCIl56nGBNOU8VqqYjtRTWRgnKIo2g1oYz4=)
2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: OCNRZXwOrBDpDCosMk/cQBGP1L76Yfe8qDIa6Xk0bkE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:33:40:be:a6:a1:4f:26:c5:2c:c8:db:38:36:8f:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: Jun 8 11:00:48 2025 GMT
Not After : Jun 9 11:00:48 2025 GMT
Subject: CN=d1fab95a9fde0e6b0b488369bf05bac63a7158ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ee:83:50:43:2a:ae:77:1e:b5:0c:37:53:b7:
42:4b:30:a1:56:c6:45:6f:dd:0d:4e:89:5f:9b:af:
e5:40:3b:fe:00:e0:aa:40:e5:9c:90:73:42:f9:2d:
b6:9a:33:53:63:fa:fe:2d:e7:83:93:ee:60:cf:91:
ee:44:b4:1e:21:a5:60:1a:14:d2:98:44:b4:b4:ed:
58:97:c1:2c:5d:5a:26:28:a8:f8:6c:b3:cb:3a:33:
aa:b6:c2:53:b3:02:8f:78:f4:c5:d5:4f:43:1c:de:
ab:57:94:95:4d:67:18:2b:b8:88:9f:51:f2:74:50:
99:a6:48:f7:c0:7c:bd:b5:d6:f1:60:a0:58:fa:84:
86:49:da:05:e0:f2:eb:84:82:c1:d9:37:24:9f:87:
bd:c3:de:ef:91:e1:ea:90:f1:94:47:45:79:2f:36:
c8:84:63:e6:ef:59:d1:8a:ed:eb:d8:b3:65:d7:d6:
eb:13:27:5f:9f:dd:35:97:52:c8:67:d2:ec:7c:41:
cb:c8:24:c0:d0:28:52:3e:c2:37:25:ef:9b:12:8b:
dc:e1:2e:18:cf:a5:7b:5f:b4:2a:23:54:ef:20:50:
28:26:f3:0b:79:0c:c9:08:5a:2e:4e:2e:64:70:c8:
82:2a:0c:48:17:9a:4c:35:7b:48:34:74:c1:8c:fc:
92:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FA:B9:5A:9F:DE:0E:6B:0B:48:83:69:BF:05:BA:C6:3A:71:58:EE
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:b6:68:dd:33:06:f0:50:aa:f7:b3:96:e9:4c:e9:6b:3c:8d:
88:2d:3b:0c:1a:58:63:4d:7d:1e:55:b1:b2:34:dc:82:77:f3:
6a:e3:bd:b1:6d:09:ea:e9:2a:4d:86:15:f0:34:11:64:c8:72:
2e:62:94:a0:0e:d7:21:37:b8:3c:34:39:65:eb:92:d2:00:7f:
e1:31:1e:57:56:ab:9f:d9:29:6d:ca:7c:46:7c:e6:93:e6:55:
d6:ef:3f:da:b8:a8:22:36:5a:b7:2d:2d:1e:f0:4d:d8:6d:fd:
44:b7:0e:56:99:22:79:76:20:5e:42:4a:12:e0:e0:62:e9:bd:
10:e6:79:00:ce:8c:76:4f:65:33:0e:0d:66:6a:3b:9f:0f:c7:
73:51:5d:5a:f6:d3:7f:d9:72:d5:9a:e8:e0:c7:10:95:02:ed:
42:9d:8f:46:da:16:55:ac:38:11:83:34:9f:d2:df:9c:c3:a1:
2f:96:59:01:bc:42:00:4f:c5:12:99:f5:e2:f6:55:0c:6c:37:
e0:ea:c9:ba:9a:ce:66:24:55:65:78:c7:74:66:aa:4a:f4:bf:
e0:69:b1:37:d1:d2:74:2e:8c:bf:69:de:46:ae:36:e3:48:25:
37:f4:f5:a2:b7:77:5e:f7:c8:cb:7a:c1:d8:7f:2b:5b:83:70:
44:d9:0d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:40:39 2025 by rpki-client