Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
File: KT0QRM1I1hcW11ngIN29qoFNXNU.mft (raw, json)
Hash identifier: rRmZHDSXzZtt6VMGdJ0ZevlTnYre55M0l80gdUYI5kk=
Subject key identifier: 59:22:03:66:F9:58:A7:45:73:F2:61:18:08:B6:29:24:AC:6B:B6:3B
Authority key identifier: 29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
Certificate issuer: /CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Certificate serial: 019748FA04A6596799A8427A26992096CD22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
Manifest number: 0D83
Signing time: Sat 07 Jun 2025 06:00:34 +0000
Manifest this update: Sat 07 Jun 2025 06:00:34 +0000
Manifest next update: Sun 08 Jun 2025 06:00:34 +0000
Files and hashes: 1: KT0QRM1I1hcW11ngIN29qoFNXNU.crl (hash: JLUNle0giska3bPNAWbq5lghVzyMBdW2tnZw/2tK16w=)
2: dJ6Z6uHBiaScsgFwBNYwQYgTmkk.roa (hash: A47IWxTys6UPyaxxT7KgUDJag9HKcyHJ4nrmIQJOjaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:04:a6:59:67:99:a8:42:7a:26:99:20:96:cd:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Validity
Not Before: Jun 7 06:00:34 2025 GMT
Not After : Jun 8 06:00:34 2025 GMT
Subject: CN=59220366f958a74573f2611808b62924ac6bb63b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f6:57:73:ca:28:46:92:ff:7d:35:ec:8c:74:
ba:cc:56:b8:49:f5:56:c3:75:43:b7:04:a7:48:4f:
0a:88:d7:b9:1b:f4:fc:d7:24:e0:aa:3e:07:92:9f:
81:3f:a2:69:a8:77:43:38:e6:d0:d6:24:fe:02:c2:
8b:17:ec:75:02:08:ea:03:c7:80:bd:b5:03:42:7a:
34:67:35:7c:2f:8f:79:64:76:54:58:bd:2b:23:a6:
04:44:bb:44:e4:6d:ba:50:38:09:93:c6:9e:2e:4b:
30:ae:f7:b7:72:ad:35:41:73:50:ca:9a:61:f6:1c:
47:d3:d4:0b:c3:98:ea:4d:33:71:c4:3e:5b:14:f0:
c0:13:1e:1f:9b:d0:0c:b0:43:ec:26:51:e7:b6:02:
9c:b1:e3:2f:c0:de:b0:06:6a:42:b0:a7:09:b0:fe:
77:e4:c1:42:27:71:9a:9c:65:8d:3a:a1:7c:f4:0d:
e8:2c:9b:2f:90:fe:33:f8:46:31:1d:33:d5:f1:22:
f5:99:7b:df:6c:a1:36:fc:ba:cb:bb:e7:0d:48:c7:
da:a2:c2:46:31:dc:5b:d2:1f:b3:6e:ad:03:98:a9:
60:cb:07:9d:9b:7f:a8:9d:fb:77:65:37:7a:ed:0b:
9f:b7:d0:6e:0b:bd:e7:2d:bf:7a:0c:82:97:a1:ef:
4d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:22:03:66:F9:58:A7:45:73:F2:61:18:08:B6:29:24:AC:6B:B6:3B
X509v3 Authority Key Identifier:
keyid:29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:a6:58:87:6d:89:0b:4b:07:68:cf:21:eb:ba:41:88:c7:de:
0c:d5:2a:a6:3b:43:d4:e1:5e:7b:cd:ef:8c:9b:78:2a:46:82:
76:c3:ec:e2:45:f8:40:55:c5:aa:5c:b2:42:4f:ff:f4:b9:8d:
81:59:36:d7:3b:e1:d8:5f:69:b2:49:e6:62:f3:67:f9:4b:1f:
3a:d4:a9:94:b2:0a:3a:96:0e:07:46:f5:2b:51:4e:be:70:9f:
dd:47:23:2c:5c:52:9f:e7:5c:e5:e4:03:ee:f4:1c:e7:ab:ca:
66:b5:58:b2:2e:67:7f:58:d8:3b:43:46:9d:cf:32:cd:cc:14:
ae:6f:c4:e0:04:d9:c4:af:15:3d:47:99:3e:a9:59:56:2b:77:
a4:37:38:20:5f:80:01:71:61:c6:93:a6:c6:a1:eb:03:47:f6:
e4:25:1f:c2:a7:b6:28:e4:9e:5d:a2:56:3f:08:22:95:e6:31:
16:d7:ad:3d:6f:29:29:e4:45:1b:09:c2:d1:8d:23:08:9f:85:
1c:d7:30:2e:92:59:9f:07:5f:51:15:95:df:9d:b0:e4:aa:c2:
fb:ad:0e:01:a6:e2:15:51:16:cc:46:0a:4f:b0:86:c8:10:34:
39:03:52:05:c4:4d:df:47:1e:47:3a:67:a0:eb:80:6f:69:b8:
d4:b4:84:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:32:38 2025 by rpki-client