Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
File: KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft (raw, json)
Hash identifier: t7LdJyhrlSNcbg0OFmoEfF4U3V6dIrdCwItBOgIHPYs=
Subject key identifier: BE:14:3D:9C:81:9F:E9:01:64:DB:35:30:31:96:0D:AE:98:76:70:34
Authority key identifier: 29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
Certificate issuer: /CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Certificate serial: 019763956E94068EBFBF8C3996FBF72C3182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
Manifest number: 0818
Signing time: Thu 12 Jun 2025 10:00:26 +0000
Manifest this update: Thu 12 Jun 2025 10:00:26 +0000
Manifest next update: Fri 13 Jun 2025 10:00:26 +0000
Files and hashes: 1: IrS-qV3W0Ik-KE138sR-ycmjsj0.roa (hash: ZrhZqy7V3sNpl24EYUX1sc+YyDytYvN7JDm/U17ihTc=)
2: KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl (hash: YipDifG0NkITc5LxYlzxwUvwPhsojX47gQtqV4K3/ZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:95:6e:94:06:8e:bf:bf:8c:39:96:fb:f7:2c:31:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Validity
Not Before: Jun 12 10:00:26 2025 GMT
Not After : Jun 13 10:00:26 2025 GMT
Subject: CN=be143d9c819fe90164db353031960dae98767034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:57:ec:03:17:8c:32:f2:1b:ac:8a:87:ae:da:
11:53:34:2b:2c:1f:ad:b6:83:25:2b:a3:38:b1:be:
e1:2e:a7:54:d7:72:99:93:05:92:d3:83:7d:b5:8f:
d4:a5:e3:03:90:cc:a5:7b:04:81:ab:63:34:4a:4c:
6e:62:31:eb:3f:bc:8c:64:c8:2f:03:ea:5c:85:d9:
51:0f:da:7d:15:b3:fc:8e:f1:f2:45:d1:a2:46:b0:
9a:4d:2e:9b:41:36:5f:93:eb:5f:e0:93:94:89:c3:
ac:12:62:07:4b:4e:55:9d:ba:2d:c9:60:6d:c7:c9:
9e:f2:f3:fb:54:80:36:91:42:ad:d1:a8:50:48:b7:
49:a2:ad:a2:e8:d1:8b:13:94:7f:92:21:04:b2:d7:
ec:ce:cf:0f:ec:08:34:da:3a:48:91:83:fe:9d:7e:
d7:b4:59:03:52:41:1b:f0:d1:55:c4:03:30:2a:61:
d3:f3:38:27:b5:9e:6f:c6:8e:44:76:eb:93:00:61:
38:7f:2b:cc:27:9d:ad:e2:aa:09:f2:43:15:f2:8e:
0a:f4:25:f3:3b:f3:9c:b1:12:43:d3:39:f3:a3:f7:
60:14:32:a2:dc:15:42:7b:65:7d:93:ae:a1:5a:be:
04:54:0e:be:35:5f:ef:7e:d7:39:9e:38:8c:fb:b7:
1b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:14:3D:9C:81:9F:E9:01:64:DB:35:30:31:96:0D:AE:98:76:70:34
X509v3 Authority Key Identifier:
keyid:29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:e9:ab:16:fb:07:5c:03:dc:9b:fa:cd:60:42:43:45:d4:71:
e7:10:3a:56:7a:e9:00:7b:01:b0:f2:78:e5:57:98:a8:ca:f0:
18:2f:2c:73:9c:b1:a3:66:57:e2:3c:3e:cf:e3:cc:92:34:db:
d4:c7:5a:78:a6:2a:c0:36:36:6a:15:d7:b3:60:91:c4:da:84:
56:6c:a3:7f:6e:ee:51:a6:f7:6f:ab:47:f6:b6:03:a5:f6:1b:
b0:50:d6:29:bf:29:6d:aa:5c:9e:29:ee:5d:42:0b:34:6c:2c:
d8:e4:02:30:a9:32:99:48:86:25:d7:2a:c3:f8:19:c8:82:56:
ed:51:a1:55:9b:1b:27:57:86:02:03:6d:c1:f5:e7:7b:13:e3:
7c:a6:9d:c1:22:2e:a6:ba:23:1c:af:38:f8:b9:c0:7d:81:53:
f8:73:0f:c3:2b:3b:17:57:89:7e:64:6e:f0:ad:1d:4c:90:47:
70:87:52:5e:53:33:d6:bc:3a:5a:f8:c3:61:90:02:05:44:c4:
28:5e:d9:30:09:85:95:08:a6:b0:70:08:02:b7:25:a8:83:b2:
5c:d6:8c:8f:d7:6d:d9:ea:51:c6:d3:3a:34:d9:39:3e:a6:ea:
79:54:4e:56:4a:9f:59:28:bc:a9:27:89:66:2f:b2:ec:cd:6e:
d1:ca:00:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:56:32 2025 by rpki-client