Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
File: KiZGBSRa8gGcKTw3KPal4lXYnyU.mft (raw, json)
Hash identifier: G35N4C4avTTRkLrE6sXV9bqqj46gq+VeXdI5K3q4JnU=
Subject key identifier: 2C:16:5F:4B:68:FB:22:B0:27:59:ED:7E:5E:78:C6:95:8D:E5:C6:6D
Authority key identifier: 2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
Certificate issuer: /CN=2a264605245af2019c293c3728f6a5e255d89f25
Certificate serial: 01974D0D7FA1AF8954DA663D6D4EB79B7F10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
Manifest number: 157E
Signing time: Sun 08 Jun 2025 01:00:19 +0000
Manifest this update: Sun 08 Jun 2025 01:00:19 +0000
Manifest next update: Mon 09 Jun 2025 01:00:19 +0000
Files and hashes: 1: 3KSN_k3KfyRIpkOpKsbbz9Bqq5E.roa (hash: iHgOduhUsida+9pHg8iFsStpH/s/1dREHiJkoJW0aww=)
2: KiZGBSRa8gGcKTw3KPal4lXYnyU.crl (hash: Vm7JvQf+uTKd/huPpSwbXPK3mydI5IDqCEVCKcHfIXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:0d:7f:a1:af:89:54:da:66:3d:6d:4e:b7:9b:7f:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a264605245af2019c293c3728f6a5e255d89f25
Validity
Not Before: Jun 8 01:00:19 2025 GMT
Not After : Jun 9 01:00:19 2025 GMT
Subject: CN=2c165f4b68fb22b02759ed7e5e78c6958de5c66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f0:68:38:be:5f:41:fd:60:c3:9a:28:d7:04:
37:24:a6:92:f8:65:17:5f:90:a4:dc:dd:37:78:6a:
5d:78:cb:c8:93:be:70:41:33:c2:f9:5d:f6:60:ae:
b6:4b:0a:be:0a:a5:07:90:5c:03:e8:56:31:dd:a7:
94:32:62:f5:10:dc:a7:94:d6:36:5c:1c:17:a6:19:
f1:a3:88:27:c3:2b:f0:1b:9f:fc:2d:89:8c:c0:ab:
22:0b:56:9e:c9:1b:87:fc:33:85:22:c3:e9:eb:54:
c0:07:16:09:3d:1f:1e:cc:20:53:f7:82:34:83:96:
ee:d2:d1:88:63:13:c0:0e:36:df:f3:8e:89:9c:01:
4f:07:3e:fb:ce:e7:42:a1:7d:c3:17:9e:7d:27:15:
e5:ff:8e:05:76:4b:22:26:f0:df:5d:e4:e5:a5:37:
49:05:50:3a:7f:82:21:75:a0:a8:d3:a3:56:d1:18:
99:e7:8f:a5:d5:bb:99:b9:ec:6f:8e:10:07:e7:e4:
cb:3f:a2:d1:b7:86:de:8f:59:ee:05:19:43:35:46:
d0:cc:41:d5:9f:55:95:d4:c2:d8:73:7a:6f:69:24:
f4:af:80:e0:56:97:b2:4d:df:cd:e3:07:7c:33:04:
8e:d7:76:47:35:48:25:cf:cf:bb:c6:1b:06:94:5a:
c6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:16:5F:4B:68:FB:22:B0:27:59:ED:7E:5E:78:C6:95:8D:E5:C6:6D
X509v3 Authority Key Identifier:
keyid:2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:b5:ad:63:15:71:82:bf:d7:8f:34:10:4a:2a:fc:04:a8:e4:
47:e3:36:1c:e5:3a:1a:6b:96:af:9f:08:2c:63:18:bf:56:01:
b8:d0:4d:6b:3b:ba:5a:d5:b5:81:9c:09:68:41:63:42:80:ae:
e7:4a:1d:fa:02:3c:7d:f8:35:96:d2:69:b1:aa:b8:ea:9e:eb:
a9:21:9a:13:e4:58:2b:e3:01:99:d3:50:b9:ea:26:fa:81:5b:
19:28:bf:f4:05:a4:38:3c:11:3f:40:9e:6b:2e:89:35:9e:02:
74:ec:75:93:46:48:35:1f:44:48:12:9f:43:0c:86:89:4f:2c:
95:bf:73:3e:b2:05:ce:f0:70:1a:a0:b5:01:e5:7d:0c:c5:ec:
5f:32:cf:89:51:a7:c7:28:c6:c2:c9:79:86:ce:f0:3c:63:27:
84:aa:35:a9:da:2f:6e:49:b5:1c:28:13:f1:44:23:b9:6b:f2:
1d:19:59:94:66:02:64:8e:29:f7:9c:61:5e:13:b9:d7:b1:68:
f3:98:42:c0:78:8c:f1:43:04:38:0c:45:cf:f9:3b:7b:97:86:
e5:b2:1c:f5:3a:62:94:6d:e1:3b:07:90:dd:62:87:5f:fd:0e:
a1:35:4b:d3:de:ee:79:c1:90:d9:d7:a2:ae:3c:5b:f5:ba:e1:
cb:37:2c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 03:50:03 2025 by rpki-client