Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
File: KoyNUYbIdxRVvhMbDHz9ZufThlU.mft (raw, json)
Hash identifier: Y8vr2/HnZYuQjrREVn2dle0AexhBJZGQF8ZN00IvI38=
Subject key identifier: 5B:FE:8F:48:C9:0B:64:FF:B1:71:77:90:56:8F:03:1E:3C:60:DC:3C
Authority key identifier: 2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55
Certificate issuer: /CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655
Certificate serial: 01974E20AB7053C0D34A82853213FBCB295A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
Manifest number: 0385
Signing time: Sun 08 Jun 2025 06:00:53 +0000
Manifest this update: Sun 08 Jun 2025 06:00:53 +0000
Manifest next update: Mon 09 Jun 2025 06:00:53 +0000
Files and hashes: 1: KoyNUYbIdxRVvhMbDHz9ZufThlU.crl (hash: 040TeJPES5gttCoa7xQGcD0RIb6nrDa5u/Z28mljD3o=)
2: _L4_714o--k52AHUTKE5ELIZMFQ.roa (hash: ji6+L6kBm6VqOpTZxUmb7EEqHaNzozcu4JNvhJv1V2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 06:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:20:ab:70:53:c0:d3:4a:82:85:32:13:fb:cb:29:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655
Validity
Not Before: Jun 8 06:00:53 2025 GMT
Not After : Jun 9 06:00:53 2025 GMT
Subject: CN=5bfe8f48c90b64ffb1717790568f031e3c60dc3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a4:f2:d8:48:b9:d8:75:0b:df:e1:d5:2f:8e:
02:aa:e3:67:a9:1a:60:20:fa:18:a1:16:6f:6a:70:
73:0d:a2:cc:c9:3f:a8:a5:51:5a:39:da:df:57:7e:
31:1b:eb:c5:8d:a5:07:ff:4b:2c:f6:91:41:8c:a5:
44:2f:02:b8:97:f6:f7:f1:27:9f:4f:e4:e9:df:6c:
bb:dc:4b:89:ea:42:c8:0d:fa:e2:a4:d6:64:49:1f:
ff:e5:76:fb:87:13:a7:b6:9c:50:ad:19:6e:e4:84:
7b:08:12:75:d7:3f:df:83:61:2d:b4:68:a3:09:61:
e9:35:7d:62:b1:f3:01:bc:8f:17:6d:d8:7a:18:19:
12:d8:54:2c:ac:b7:27:d4:52:38:8f:e3:7b:68:5d:
41:24:02:7c:d3:75:51:b3:39:81:78:df:8a:04:8e:
da:65:f7:1b:b2:22:4e:11:d4:b3:be:27:e6:da:58:
35:9b:8e:9d:05:48:b7:d1:72:38:ff:33:35:04:7f:
10:bd:50:51:9a:6d:35:62:35:c8:2d:24:06:b1:a7:
8c:e1:40:57:25:ca:3a:18:72:21:4e:fb:bd:6c:71:
24:22:d5:22:d1:f9:dc:c2:b6:40:6e:a3:d4:6f:6f:
2e:8e:64:73:f4:36:55:01:81:d8:89:6c:c0:ea:81:
68:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:FE:8F:48:C9:0B:64:FF:B1:71:77:90:56:8F:03:1E:3C:60:DC:3C
X509v3 Authority Key Identifier:
keyid:2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:89:c9:28:75:9d:eb:64:7f:9f:32:22:34:07:01:03:58:df:
d9:e6:47:e7:c1:86:37:55:d2:7c:79:49:12:2d:1a:f3:88:fd:
c2:89:2f:e3:d3:2d:34:b9:f5:16:1e:96:60:29:7d:14:63:08:
39:63:0b:c4:ec:5c:93:e0:b4:73:5c:70:bb:bb:d1:7c:24:ff:
d2:68:3d:e6:21:61:4d:71:54:69:ac:0e:1b:14:70:b6:fd:57:
d2:e1:6f:15:0a:31:42:06:05:6f:3d:80:00:b2:15:70:64:f7:
1c:a7:dc:0e:f5:b1:5a:2a:ce:9b:8c:47:51:8f:c8:9c:c9:1b:
cf:0e:d1:21:f8:3e:4f:9f:98:d7:35:ee:48:4c:03:e1:72:ab:
6f:57:26:d5:26:36:37:77:8c:7c:88:2f:ee:7e:3a:6c:c8:57:
2a:39:af:49:51:cc:d7:5a:d9:b2:84:35:c4:54:ac:cf:27:94:
c8:86:50:a6:32:6e:fb:0a:e0:4e:b1:ea:c0:6d:44:df:42:fd:
e4:a9:98:93:d1:12:64:78:79:8e:b2:08:47:5d:a8:23:0b:95:
97:05:3b:ba:af:40:61:74:42:3a:3b:d7:99:83:84:27:9c:c7:
8a:89:07:f6:9d:3f:24:72:1a:e7:01:2e:bb:c4:1a:bc:d3:51:
3d:ff:1f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:47:53 2025 by rpki-client