Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json)
Hash identifier: YVP5IKmp2j1ETfOonbF1PZPtemJdvE3YP50n4QD1WIE=
Subject key identifier: BB:06:C3:52:AB:2E:A3:91:7A:7B:8C:51:6B:BA:6A:BC:CA:82:3E:A0
Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109
Certificate serial: 019853E8BF6DBF0CEF9A66A69E66754FB330
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
Manifest number: 129B
Signing time: Tue 29 Jul 2025 02:00:18 +0000
Manifest this update: Tue 29 Jul 2025 02:00:18 +0000
Manifest next update: Wed 30 Jul 2025 02:00:18 +0000
Files and hashes: 1: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: WHZwIoVPKHI6Kf4b/R5W7kS+9/n4LsZqxb3JwM26t4M=)
2: KZGod_BqVRdmwfNvBiSAHniE4gQ.roa (hash: 6XoOJiv494XxgxSZpKNQsumj729QUswWc6xs9n2QuB0=)
3: M1t61zFriLUhV6w-rpKhVc5pbtI.roa (hash: SMrR4aeWQHwd+VhRNHme2dIKoEpbr73IPaO3PrfJOhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:e8:bf:6d:bf:0c:ef:9a:66:a6:9e:66:75:4f:b3:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109
Validity
Not Before: Jul 29 02:00:18 2025 GMT
Not After : Jul 30 02:00:18 2025 GMT
Subject: CN=bb06c352ab2ea3917a7b8c516bba6abcca823ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5b:d0:32:e8:c9:44:a4:93:9f:ed:47:36:5b:
36:04:03:22:2a:79:ce:55:21:40:f3:ed:e3:7b:3a:
42:f6:ba:05:1b:7f:92:2a:28:e3:36:b2:1e:15:33:
f0:7d:68:89:24:78:64:a6:ae:11:81:5e:32:13:82:
bc:67:fe:db:b1:2e:fc:57:cb:19:69:13:30:19:55:
a8:ab:ac:89:0d:8c:37:c8:79:b6:3d:60:c1:53:cf:
3c:76:87:5b:55:9a:28:c3:6c:41:ea:20:05:78:c7:
9c:17:7f:b5:9f:44:b0:38:01:da:6b:85:bb:30:5b:
1f:08:11:2d:ea:de:5a:cc:d9:fc:82:e6:6b:f1:48:
84:18:16:9b:b0:c0:21:e5:d1:ae:95:a4:10:65:f6:
f3:88:06:6d:72:91:74:5b:8d:d3:fa:80:cb:d5:92:
bc:17:ea:6b:54:01:2e:d8:5e:a4:73:a5:4f:f6:a1:
8f:48:71:48:75:68:74:45:cf:63:46:6c:71:88:d4:
22:2f:9a:b0:65:50:f2:26:b5:9d:1d:85:5a:f8:2e:
8a:53:a8:8f:86:1c:f1:51:f6:a1:76:85:46:57:90:
83:29:51:d0:40:f9:90:fc:90:eb:f6:85:eb:30:a0:
8d:e8:07:fb:af:ca:25:02:82:c3:97:08:ea:37:4f:
39:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:06:C3:52:AB:2E:A3:91:7A:7B:8C:51:6B:BA:6A:BC:CA:82:3E:A0
X509v3 Authority Key Identifier:
keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:38:8f:6d:7b:9b:04:4f:76:7f:6b:58:2c:4f:85:52:c6:fc:
94:8b:a2:21:62:0f:1a:47:49:98:ec:61:ec:06:b5:29:fb:32:
f7:d2:aa:71:80:b3:eb:4d:68:42:ed:4e:cc:6a:84:de:d5:36:
22:e2:7e:7c:da:68:ec:02:11:07:5b:e8:7a:48:8a:17:87:1f:
40:88:b4:bd:cd:11:b4:6f:a0:fc:b1:0c:83:e1:f6:ab:7c:be:
03:b2:8f:4d:c7:10:e2:63:d9:f6:7f:1e:2c:a8:a1:80:b5:22:
d7:db:49:ed:e3:b4:ce:a3:fa:dd:d6:65:f3:af:7a:2b:c2:fa:
8e:31:df:b6:35:0e:3b:b7:3e:bb:0d:54:d3:50:18:f6:e6:b5:
a4:89:b3:ed:4c:b3:ee:a5:74:2f:6a:5e:1c:30:11:dd:17:16:
9d:34:11:42:72:a4:67:7f:8b:2f:a8:2a:8d:48:df:30:36:dd:
ad:5c:e0:89:1e:8b:c2:78:85:c8:2b:ee:2e:08:d9:2a:26:92:
6c:c3:15:21:fa:6e:ca:77:f4:45:90:71:8e:93:ed:86:95:df:
c8:6b:fc:16:f5:d0:82:df:d2:f7:00:b1:10:02:f4:b4:2c:53:
e0:59:9f:92:75:80:19:bf:99:20:8d:45:b4:7b:95:6f:00:88:
07:b0:4a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 04:00:51 2025 by rpki-client