Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
File: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft (raw, json)
Hash identifier: 0P8+X9Oury28WUWmORYSQDb+EnAgLwlIRBf3Zxeoo9Q=
Subject key identifier: 90:8C:2E:D3:3A:81:BF:94:6F:10:39:80:30:FC:06:37:1F:F0:34:65
Authority key identifier: 91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
Certificate issuer: /CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Certificate serial: 01974EFC782B36239562D11704AAF92810A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
Manifest number: A6
Signing time: Sun 08 Jun 2025 10:00:57 +0000
Manifest this update: Sun 08 Jun 2025 10:00:57 +0000
Manifest next update: Mon 09 Jun 2025 10:00:57 +0000
Files and hashes: 1: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl (hash: dKVECJjtzE26KbLZBIUDtacOrk2/17hatXnb4ZziGfE=)
2: t_GXvizzbbtQwSd_rqjoEMAWE2Y.roa (hash: ZkiqsfUq4HUiMQwjqugEWSy9vPbelZw6D7VGclM/F3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 10:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:78:2b:36:23:95:62:d1:17:04:aa:f9:28:10:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Validity
Not Before: Jun 8 10:00:57 2025 GMT
Not After : Jun 9 10:00:57 2025 GMT
Subject: CN=908c2ed33a81bf946f10398030fc06371ff03465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:c9:c2:b7:9a:be:ce:86:f7:29:64:d8:4d:cb:
69:ac:85:a2:57:c1:b2:88:55:7e:40:96:20:fa:34:
a8:df:3e:89:01:0b:29:c4:8f:14:95:73:43:eb:6b:
44:d1:a9:f9:58:7b:99:64:06:ba:b8:4b:c6:13:68:
74:9f:bc:a7:22:64:d0:4f:3d:82:a7:97:3e:a2:39:
3d:8d:63:ce:1f:a1:3d:d0:d2:b9:d6:7e:6e:82:93:
ce:5b:8c:84:72:4f:b8:14:6f:b5:c7:0f:fe:41:c7:
45:1e:fe:49:6f:ab:6a:bd:73:93:dc:fa:a2:3e:ff:
5f:df:c0:3e:b6:84:d8:80:94:c9:58:98:30:1a:39:
11:00:74:84:64:0b:6d:f1:f8:49:9c:05:a6:85:bc:
e5:b6:d1:93:74:91:8d:18:02:b2:1d:bc:8e:cb:3c:
71:2b:d8:f1:39:63:c0:f7:e3:7a:1f:2d:5b:84:d1:
a4:c0:d1:69:2f:5c:6b:26:c3:7a:1b:cc:5f:2f:41:
9d:02:40:ec:31:c4:1e:a9:1c:8f:46:10:57:eb:03:
45:59:9d:a4:49:bd:6b:a5:f8:6f:82:50:85:8d:ee:
e8:a0:aa:1b:44:5c:92:ee:9b:01:d0:04:fd:dd:52:
af:7e:e3:00:2e:1e:98:90:53:9d:84:13:ca:71:1b:
7d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:8C:2E:D3:3A:81:BF:94:6F:10:39:80:30:FC:06:37:1F:F0:34:65
X509v3 Authority Key Identifier:
keyid:91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:5a:9f:c0:e6:fb:bd:33:5c:6e:8e:4b:0f:d7:91:cd:87:57:
9d:58:df:43:61:8a:1e:c2:60:1f:78:7e:67:b9:29:c9:cd:0a:
0d:ea:2b:0c:67:c4:13:d5:d2:7c:d4:9c:62:ea:d0:c9:b8:2a:
f6:f3:3b:11:64:b4:83:1d:36:e9:78:00:b7:5a:ae:83:ef:5f:
1f:f8:21:5c:91:5e:fa:8c:a6:fd:26:06:0f:17:54:5e:f6:45:
00:2f:3d:13:30:57:9b:23:23:40:fe:8c:ff:06:01:a7:cf:0f:
eb:ba:fd:96:35:3f:ba:81:15:87:fa:f1:15:d0:e2:c9:58:7a:
68:75:3d:db:d4:d7:ae:87:18:15:67:30:14:09:db:ad:32:5a:
30:82:89:91:ca:a6:19:28:a8:ac:ba:ed:5e:15:2e:4a:2f:02:
24:3d:f5:f3:af:89:40:7d:27:88:8a:96:92:93:1b:cf:01:9e:
73:d2:75:b8:bc:41:ff:42:e6:1a:aa:e2:a2:59:11:10:fc:79:
95:7d:1d:96:60:58:a0:a4:73:9e:89:d7:79:c6:98:c1:3d:93:
6c:17:33:c1:7c:ab:08:17:24:c0:69:57:3b:03:8f:c2:29:61:
dc:f0:40:11:17:89:f6:b0:af:c2:bf:a1:03:2e:53:47:be:32:
77:a7:5c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:37:56 2025 by rpki-client