Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: bFaJ7jZfEoVPzsSh4SPOMtCT/6ssCaeSaNzr2Rs1//U=
Subject key identifier: C8:B5:A2:5F:3E:CC:DC:CE:1F:29:4D:57:08:6E:CB:3F:F8:76:E3:FF
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 01974A7ADD88C7947F90959233311155E672
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 0F0D
Signing time: Sat 07 Jun 2025 13:00:55 +0000
Manifest this update: Sat 07 Jun 2025 13:00:55 +0000
Manifest next update: Sun 08 Jun 2025 13:00:55 +0000
Files and hashes: 1: 79LYqjKNTJN0ouKGzdcbqvTlAUQ.roa (hash: ql/wdfFz1qsER0EkZDThbVWptAlBg9mw+jziuKWlZyc=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: Nd8HsPobUj6lWktVkXHETrEyhvlsBF4W9oKdolpbIPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 13:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7a:dd:88:c7:94:7f:90:95:92:33:31:11:55:e6:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Jun 7 13:00:55 2025 GMT
Not After : Jun 8 13:00:55 2025 GMT
Subject: CN=c8b5a25f3eccdcce1f294d57086ecb3ff876e3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:aa:ce:3d:04:2e:70:33:a5:05:31:fb:74:99:
e3:a8:7f:e3:18:6c:df:1b:f9:8c:5f:cb:94:ec:4c:
07:eb:96:55:fe:ba:7a:1f:a6:e8:c4:14:e0:23:ef:
3c:47:8a:29:9b:5a:a3:41:11:62:71:6f:d1:86:dc:
09:9d:d9:54:a1:cc:ca:37:1e:4c:94:e8:72:82:69:
74:61:bf:27:1e:b6:5b:b1:fb:ce:28:04:0a:1e:09:
cc:70:25:5b:a0:29:53:2a:43:af:44:bf:69:bc:a2:
f1:2b:1c:03:f3:e3:68:b5:71:bf:9f:7b:2f:f1:f4:
79:76:23:5b:93:c4:cc:b6:cc:a8:cb:d9:cb:ee:72:
08:8d:78:d5:2c:48:fb:e6:49:d1:6e:99:9c:98:64:
59:d7:ef:33:b7:01:7b:98:79:a4:9a:60:78:74:28:
ec:c6:e1:77:2a:f4:ec:f3:71:0d:62:ca:0e:aa:7f:
aa:cf:11:2b:78:74:28:91:62:5a:a8:dc:45:24:43:
ac:d3:f4:94:22:d4:9a:1b:21:7f:13:92:8b:71:7b:
ab:9d:84:cc:85:21:7d:92:1e:e8:e9:96:bf:d7:20:
8e:11:dc:99:1b:5f:7a:61:cf:62:7e:31:ea:dd:cd:
b7:90:dc:a9:cc:5e:ea:de:d3:11:60:46:02:b0:15:
21:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:B5:A2:5F:3E:CC:DC:CE:1F:29:4D:57:08:6E:CB:3F:F8:76:E3:FF
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:2c:c4:e1:db:5b:ed:71:69:16:c1:dc:99:1e:03:4e:5d:86:
b5:e4:8b:aa:f3:1a:d0:44:91:db:be:8d:24:5a:04:ce:ea:5f:
a0:3f:4a:a7:56:67:b2:73:84:a7:15:34:9a:b9:26:e4:12:97:
9b:90:16:9c:d1:ae:cc:0a:e5:bd:06:1d:1a:14:a5:4c:69:5d:
82:2e:cb:11:91:49:36:7c:50:20:58:f1:45:4b:a6:b5:58:25:
12:3a:3a:19:f8:b5:be:6d:11:e9:47:ab:17:d4:17:a7:9c:ca:
40:9e:98:c6:ab:2f:dd:f7:2e:24:e4:dc:23:30:32:9e:84:aa:
04:56:56:3d:30:93:61:52:6b:47:bd:1e:55:da:24:49:2c:4b:
b1:7f:8d:4e:96:48:a5:f7:48:19:c9:44:20:08:6f:be:ac:20:
13:50:fa:c1:9c:ed:56:73:5f:57:7d:ec:43:3c:4a:6a:46:18:
2b:7d:6d:fb:43:f9:84:ee:75:79:1b:7a:4f:de:11:e7:23:f5:
36:15:ef:24:56:25:24:e2:67:9c:81:06:87:32:ac:b5:96:31:
cf:87:d1:6e:b3:8e:62:13:5c:36:2c:ee:f0:87:7a:e8:7e:3a:
16:9d:05:37:d5:e9:13:20:d0:ee:8c:51:31:53:5b:09:f1:8b:
19:a9:1e:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:41:05 2025 by rpki-client