Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
File: KQzE0K1dr8J6pONC-oDjSBToRcM.mft (raw, json)
Hash identifier: A/1vf36mz9EmKfvqx528uKM21vsKnuWxfFFDazfH8YU=
Subject key identifier: AF:19:71:4E:AA:B6:3A:DD:2B:C8:59:EE:67:6F:77:43:84:7A:45:E1
Authority key identifier: 29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
Certificate issuer: /CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Certificate serial: 01974BFB5620BF26FCFD3B0AE0F33B43FBBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
Manifest number: 05BB
Signing time: Sat 07 Jun 2025 20:00:52 +0000
Manifest this update: Sat 07 Jun 2025 20:00:52 +0000
Manifest next update: Sun 08 Jun 2025 20:00:52 +0000
Files and hashes: 1: 187N4PB5lNzYnkhVyKxTgG2ufTQ.roa (hash: nnFT2Pv1VSMMW5/AFw9H17xWytd4IEI7JaypDZR0hFg=)
2: KQzE0K1dr8J6pONC-oDjSBToRcM.crl (hash: o6nunXUdRAKY/E2RqSET1v5Rxzwuto2uGQj/Z03Lmq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:56:20:bf:26:fc:fd:3b:0a:e0:f3:3b:43:fb:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Validity
Not Before: Jun 7 20:00:52 2025 GMT
Not After : Jun 8 20:00:52 2025 GMT
Subject: CN=af19714eaab63add2bc859ee676f7743847a45e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:79:53:5a:a2:6f:cd:f4:c7:77:09:b0:cf:ce:
64:e7:7b:e1:44:27:83:62:82:c5:6a:d0:33:df:da:
74:96:b6:d4:a2:02:db:2f:91:f1:09:58:eb:32:53:
b3:be:58:c5:69:b1:c9:3e:54:af:70:52:85:37:3e:
cb:65:b6:1b:33:b5:fc:f9:7d:a6:c9:b1:b4:19:fa:
7a:95:65:bc:d5:5f:e7:f4:3e:69:4b:d5:97:b7:39:
e9:8e:26:8c:dc:ad:c7:f5:fa:54:2e:f3:85:a4:96:
bb:7e:1f:bd:c3:23:49:a8:a3:68:64:f6:90:56:91:
87:d8:af:13:f2:ae:e7:8c:08:a2:79:27:8c:95:83:
9b:c6:37:7d:b4:2d:1b:4e:83:b0:74:7e:28:28:b4:
52:c1:08:f8:21:5a:71:95:7d:47:f1:2a:2c:ec:4b:
54:2f:b7:9a:49:62:ed:c8:2e:e1:33:14:0a:d3:4d:
44:b0:19:e0:ad:60:d1:75:62:35:20:3e:59:8f:b9:
ff:65:54:2f:53:33:c1:51:b6:93:e3:0d:d2:eb:d6:
bf:47:04:69:f7:f7:b3:3f:c1:0a:08:80:75:9a:69:
46:5d:c4:dd:96:b5:14:23:7e:7d:4a:af:f9:fa:7a:
46:89:01:27:d0:fd:3a:03:34:a8:64:82:14:1a:3a:
d0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:19:71:4E:AA:B6:3A:DD:2B:C8:59:EE:67:6F:77:43:84:7A:45:E1
X509v3 Authority Key Identifier:
keyid:29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:7c:4f:ca:e0:67:c1:29:5d:a5:19:8e:0c:f1:00:27:dc:01:
5d:eb:16:2b:a2:8a:f6:7e:5e:17:85:1c:5a:d0:f7:90:45:d6:
b2:2b:56:ce:8b:59:f6:40:99:c1:d1:29:d0:39:8c:2b:f1:d2:
c4:7f:27:68:1e:31:4b:9f:aa:93:d8:ef:43:64:86:30:14:25:
52:a0:6a:4a:4e:73:16:88:8c:34:af:cf:96:e7:81:e1:82:04:
ad:68:d3:8d:bf:78:98:4b:ae:45:75:17:f9:e7:74:6e:54:93:
7b:87:6b:09:b7:61:ef:a1:13:47:d7:86:18:68:69:0f:53:06:
f1:39:e9:fc:9d:a7:0a:29:8b:fe:e1:e5:9a:46:ba:e9:83:8a:
76:03:74:85:64:51:8d:14:4c:3d:4e:1c:e7:4d:95:29:4a:ce:
4e:7d:64:5f:3d:ee:59:b2:76:59:fe:70:f3:dc:25:92:e2:c6:
fc:6a:78:b2:ae:cc:77:8b:c7:5f:5e:c8:54:80:bd:45:43:b7:
f5:f8:75:72:ae:e6:20:80:9d:58:a3:c6:bd:f4:94:5d:1b:1a:
ef:07:ca:da:5a:0f:10:8b:1f:a4:52:bf:7f:41:3e:c7:c6:5d:
9b:cd:df:7f:d7:e3:4c:2f:6d:b5:25:c9:6a:eb:20:ae:0a:4a:
5e:74:b8:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:27:54 2025 by rpki-client