Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: +goaxwUVtkHonJLOWVCRIDlNzE9kBgkdD6ear7dTbjg=
Subject key identifier: 49:C7:54:7F:F3:4B:91:63:17:E2:86:2D:FA:B3:2D:33:AB:6F:AB:03
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 01976EBDD5E4E68E8CA6A19C3E36CFDACE0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 02E6
Signing time: Sat 14 Jun 2025 14:00:24 +0000
Manifest this update: Sat 14 Jun 2025 14:00:24 +0000
Manifest next update: Sun 15 Jun 2025 14:00:24 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: j8CRZPrtmneohzOU3BZrdATDxeiy0pQOlbLlngsH2S0=)
2: OsS2avf_SCsvTL1pRqTL_5n-su8.roa (hash: q2VY8Sbvggao2o4h3H+VtLne6bMzXujw9hwcUuBVuOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:bd:d5:e4:e6:8e:8c:a6:a1:9c:3e:36:cf:da:ce:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: Jun 14 14:00:24 2025 GMT
Not After : Jun 15 14:00:24 2025 GMT
Subject: CN=49c7547ff34b916317e2862dfab32d33ab6fab03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:72:06:e7:6d:f0:bd:cd:56:b3:ed:12:d7:b0:
b2:e4:2d:56:4f:02:9b:ff:f8:f5:f3:1f:6f:b1:6a:
49:c3:06:1c:d8:7e:31:7b:c4:4a:00:6f:f3:9a:39:
48:6a:80:af:42:9f:01:fc:89:80:1c:88:c6:d9:5e:
ab:6e:b1:41:cc:56:2f:9d:c0:4c:d2:3b:8b:74:62:
7f:53:b3:e5:3c:14:a6:08:12:1e:2f:34:6d:58:f4:
9d:f1:54:cc:30:18:54:f6:03:42:eb:c4:4a:55:87:
70:90:62:47:f2:60:af:f4:fa:93:fa:9f:a8:0c:ab:
2e:3c:e1:cf:6a:fb:e5:4a:2a:26:6c:84:18:e7:12:
e3:aa:24:e8:28:96:cf:ca:0c:cd:2e:ec:cf:a9:7f:
6f:78:87:47:d3:fd:a9:2d:bd:e4:87:6c:dd:22:d6:
43:71:52:e4:1f:14:6d:e5:7c:d0:a3:3d:19:6a:c1:
91:e0:60:68:f4:48:fa:8e:95:89:7d:8a:ff:dc:70:
14:7f:84:61:96:1b:f9:e5:2a:56:d8:4a:7f:41:9c:
86:dd:c8:70:ff:f4:0d:e1:54:58:c1:c0:10:7f:ca:
72:b4:68:60:b7:07:80:f9:48:75:57:e1:43:58:27:
ea:83:f7:e3:c1:e4:8b:7f:36:64:8a:58:de:5f:5d:
89:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C7:54:7F:F3:4B:91:63:17:E2:86:2D:FA:B3:2D:33:AB:6F:AB:03
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:f4:ae:f8:e5:aa:f9:fc:c5:96:ca:ab:3f:f3:85:36:ef:81:
c4:9a:93:3c:81:bb:86:ee:2c:5e:cd:ef:ca:3b:84:3e:5c:27:
cf:8b:11:f5:83:ad:07:02:3e:9d:32:a8:e2:28:f9:52:85:b5:
17:2e:21:f4:59:70:43:d6:2c:9a:48:0a:4a:c8:1e:2f:59:8b:
1c:e4:48:27:f3:80:dd:f0:ab:d5:d4:c1:4d:c0:a5:0c:db:a4:
a2:23:a1:32:e0:0d:96:c1:56:6e:cd:77:6d:52:57:eb:a3:58:
69:b0:51:6d:15:8f:52:10:55:22:60:93:18:bd:fe:fe:2c:92:
aa:22:4e:8d:7e:c9:ee:54:d3:f3:39:07:f3:b4:9b:23:d4:57:
b1:56:47:79:7c:4f:b9:95:51:33:df:8c:9d:5e:ee:ee:c4:85:
86:b8:8a:af:41:b2:b5:2a:f9:df:ae:56:67:de:6f:f5:2e:ce:
a3:72:88:65:98:d7:4a:d2:5e:5d:51:1a:36:a4:4f:3b:2b:51:
aa:94:b5:7c:7e:58:49:a6:78:35:47:24:26:68:72:a1:9b:73:
b0:f4:5e:b7:33:30:e1:a9:16:32:be:ce:24:02:46:5c:1a:2a:
17:e0:c7:9f:ad:52:e9:65:78:0c:d4:2a:2a:e6:0b:3e:e0:42:
21:57:2d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:03:25 2025 by rpki-client