Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: Krfh3FXHhr5vZh+dMTv1jPLecw4LiPF1d6CD+mUUto4=
Subject key identifier: 5B:AD:92:D4:F6:14:3B:43:EA:59:CA:70:C2:76:0F:17:C7:4B:FF:CD
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 0197488C27361D623D30782349F5D0D4ABBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 0495
Signing time: Sat 07 Jun 2025 04:00:33 +0000
Manifest this update: Sat 07 Jun 2025 04:00:33 +0000
Manifest next update: Sun 08 Jun 2025 04:00:33 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: yE9asOoDS/2N4qHNaJW3C4Jn/5RhD3urwuRdihSZSik=)
2: N3FIvLoAi-SrbWKri-QxAJXERl0.roa (hash: oePUnAR/4Fy7x02aEJQp05kRfdkIvxnqMAYzYP5D1B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8c:27:36:1d:62:3d:30:78:23:49:f5:d0:d4:ab:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Jun 7 04:00:33 2025 GMT
Not After : Jun 8 04:00:33 2025 GMT
Subject: CN=5bad92d4f6143b43ea59ca70c2760f17c74bffcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:18:ed:f4:25:43:a7:1a:27:8f:1f:52:52:b0:
6c:c9:78:2f:34:51:c1:fc:16:bc:b9:a8:81:d3:04:
5a:2d:d8:19:c1:2c:88:c4:52:ea:c0:cd:07:72:ce:
bf:f9:b9:80:62:b9:e5:85:eb:2e:27:5f:06:70:db:
68:b1:92:d2:63:24:da:d9:47:1c:19:96:91:3c:50:
4b:39:8d:69:18:83:53:ce:57:50:b2:cf:61:7c:39:
5a:13:cf:2a:2b:f2:e1:ca:35:38:7d:ad:fb:2b:bc:
ff:ff:f1:43:9b:5e:62:f3:51:2d:b8:66:5c:51:a1:
36:d5:0e:89:94:4e:d7:de:be:cc:74:3c:e1:47:48:
1c:fc:f7:30:4d:7f:78:4f:21:c8:95:af:f1:fa:50:
ca:38:fa:d2:a3:71:f0:03:3a:5c:bc:f9:fb:87:71:
1b:a3:33:57:72:48:51:82:a4:02:90:39:f6:e9:c7:
88:fd:6e:dd:b1:4a:f9:0d:b1:00:05:d0:10:c2:c4:
9d:b9:4e:ae:94:0f:cd:a9:ed:a8:ee:2f:8e:fa:ee:
dc:af:1f:96:26:5e:97:30:12:4b:bf:ca:32:93:9a:
49:c8:56:fc:18:64:bb:01:cc:1d:f7:10:df:9c:72:
02:52:49:6c:da:d6:05:16:b0:f8:f5:de:44:60:16:
65:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:AD:92:D4:F6:14:3B:43:EA:59:CA:70:C2:76:0F:17:C7:4B:FF:CD
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:1d:3c:57:06:94:80:97:19:03:23:8e:ee:fc:41:3c:a8:67:
85:f7:bc:a8:72:73:01:30:a5:b1:f4:fb:59:26:fc:4f:83:05:
16:46:0d:b6:c4:c8:be:05:d5:be:a0:26:87:b9:e5:89:31:5a:
58:9f:1c:df:cf:1d:72:c4:b6:d6:27:56:bd:71:de:17:fd:ca:
c1:06:b4:c5:5c:b6:6d:9b:e1:53:c0:65:39:d5:45:bd:01:fb:
33:39:d9:3b:03:b2:ef:d3:d3:fc:14:92:1a:eb:08:a2:97:02:
a1:50:7c:99:ae:36:f3:7b:59:75:a0:6c:97:93:30:95:e2:37:
ee:48:aa:c3:4c:b3:cc:48:e3:4d:4f:a5:00:32:ac:96:81:e9:
7a:cf:16:6a:53:37:cb:58:c8:97:80:a7:81:fe:10:fa:d1:5a:
a8:e9:2b:4c:4f:2a:cc:bd:84:2c:a3:5e:5a:fa:42:b6:06:2a:
0b:81:5d:44:bd:46:e8:26:1a:90:2c:55:ac:e8:7e:32:9d:58:
fa:90:04:26:94:6b:cc:18:28:42:e7:b7:02:2c:06:89:96:6b:
66:4d:1b:51:b5:0c:18:a7:05:7a:2f:d0:10:ed:14:3d:4c:6c:
80:7b:54:6a:b1:0a:11:81:5c:50:25:0b:19:60:22:67:84:9b:
c5:5d:8d:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:05:48 2025 by rpki-client