Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File: kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier: ASV6rcOaUtoGAVJwXZyde1UxPQNaTS+v1Pp+eIUnQgo=
Subject key identifier: ED:3B:F2:06:CD:3F:A3:92:BB:D2:08:F6:CC:EF:ED:2F:C9:0A:0F:B0
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 019750EA4341ED62B8D327673295AC385CCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number: 1585
Signing time: Sun 08 Jun 2025 19:00:19 +0000
Manifest this update: Sun 08 Jun 2025 19:00:19 +0000
Manifest next update: Mon 09 Jun 2025 19:00:19 +0000
Files and hashes: 1: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: GRHQrNIdbCj1+fQAoBNfMDsOEBGDdzgtR6WEjK0w2yg=)
2: yaNI0_QU-og_a5wIKL7nblpP3wo.roa (hash: mocSKnatPWu2K5HO5VSBkHGD9dsGk50fbeHRajNzTSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:43:41:ed:62:b8:d3:27:67:32:95:ac:38:5c:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Jun 8 19:00:19 2025 GMT
Not After : Jun 9 19:00:19 2025 GMT
Subject: CN=ed3bf206cd3fa392bbd208f6ccefed2fc90a0fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7a:55:77:51:2c:f3:b0:df:d3:d0:d4:f0:d1:
71:d6:4c:53:ec:99:95:ba:91:4b:9c:b2:21:50:66:
74:1d:11:52:d4:e9:4d:4a:55:29:99:43:b3:99:44:
39:37:82:c6:f6:93:d5:52:07:1a:7f:0f:6a:6a:f7:
e1:e7:f2:90:a4:9a:68:0d:de:b9:c9:da:02:4e:d0:
43:c7:43:4d:ff:ef:5a:63:21:4f:e0:3d:aa:6b:4e:
13:7c:c4:b2:16:a1:b5:86:4c:45:fb:0f:7b:41:c7:
d1:48:2b:c0:81:95:66:ed:23:43:44:bc:53:d3:31:
76:ca:7b:93:c7:09:9e:3e:59:92:49:1f:c4:fd:3f:
77:8d:ea:0c:e2:97:9a:28:34:d4:bc:3f:7e:be:ba:
34:cd:df:d3:c0:ba:cf:3c:a0:db:3d:a8:f5:b7:57:
1f:78:e5:86:64:fe:2d:6b:3a:24:5f:13:03:af:35:
c8:ca:56:76:13:db:5c:02:de:1a:c1:1e:eb:be:cd:
cf:2b:5a:9d:9f:4f:bb:2b:24:db:d6:41:8b:3b:8c:
e0:31:54:c3:93:87:58:13:23:be:fd:d4:54:eb:a3:
59:ec:24:16:b6:f9:1f:36:9b:72:4c:8f:10:1f:a3:
5a:02:2d:07:73:20:8e:86:91:fa:37:11:86:c1:70:
ed:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3B:F2:06:CD:3F:A3:92:BB:D2:08:F6:CC:EF:ED:2F:C9:0A:0F:B0
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:a1:75:7a:1e:4c:23:ae:a8:d0:54:79:d9:83:30:db:c2:2c:
cd:4d:a2:12:18:ad:c9:0a:79:3c:11:93:f7:84:33:30:a9:50:
5a:6b:df:34:38:cb:db:ea:f1:6b:05:45:e9:be:b7:1c:ac:63:
b8:2d:e4:1f:df:08:3f:6a:bd:05:50:1a:42:86:4e:9d:a2:1c:
29:14:10:70:2b:65:e0:ea:09:3c:0b:3a:fc:d8:88:13:b6:4c:
17:62:3f:3a:ba:bf:e0:bf:f7:d6:56:cd:b3:27:f8:0e:41:f6:
e6:12:9b:fd:72:ad:52:7b:75:7b:10:10:1b:b5:da:c5:0a:f9:
fd:22:61:f7:34:7f:9c:c4:a0:89:71:42:70:12:8c:ac:d3:80:
09:74:c8:d0:a2:e3:ea:6b:79:29:50:08:00:ca:3a:29:f3:24:
a8:a7:7a:b2:19:ee:dd:f5:ce:6e:f6:2e:3d:26:c1:ee:23:61:
9f:b6:80:a0:43:d2:21:0b:9c:cf:c7:70:5a:a4:9c:db:bd:ce:
7d:c8:88:f6:fe:1d:ad:38:1b:01:4a:6f:74:1c:d2:1c:d3:45:
21:7f:18:ac:4a:0c:b7:9f:6a:1b:8a:58:ac:dd:2f:2e:d4:76:
b9:4a:c0:63:f5:0a:0d:89:0a:c2:ae:74:0a:9a:c6:62:e6:8b:
fb:c2:18:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 22:14:33 2025 by rpki-client