Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
File: KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft (raw, json)
Hash identifier: N2CEUY9yfwDd4NsfgR3s/byYMYGWS8NjzPRb9/jJtmE=
Subject key identifier: CF:4F:6A:16:C8:7D:6A:AE:F2:79:44:C3:61:83:AD:33:8A:E3:CF:9C
Authority key identifier: 29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
Certificate issuer: /CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Certificate serial: 019754236EECF1E779CF0DFD4CB135490C90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
Manifest number: 0810
Signing time: Mon 09 Jun 2025 10:01:37 +0000
Manifest this update: Mon 09 Jun 2025 10:01:37 +0000
Manifest next update: Tue 10 Jun 2025 10:01:37 +0000
Files and hashes: 1: IrS-qV3W0Ik-KE138sR-ycmjsj0.roa (hash: ZrhZqy7V3sNpl24EYUX1sc+YyDytYvN7JDm/U17ihTc=)
2: KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl (hash: mJcQ7Xs0ZIUGTHFt6wp99P50HUZ+JmbojYq1JgMGhbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:23:6e:ec:f1:e7:79:cf:0d:fd:4c:b1:35:49:0c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Validity
Not Before: Jun 9 10:01:37 2025 GMT
Not After : Jun 10 10:01:37 2025 GMT
Subject: CN=cf4f6a16c87d6aaef27944c36183ad338ae3cf9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:42:97:c4:3f:6d:e2:3d:dd:6b:c4:94:a2:30:
5d:4f:af:df:5e:8e:36:dd:f6:d0:5d:d3:b8:76:b0:
88:c0:de:38:82:9e:b6:2c:17:34:d1:59:1a:e1:82:
c3:48:b3:c7:11:9d:09:0f:49:4d:b6:55:64:f5:c0:
c1:d9:51:8c:4a:ef:3c:06:27:fd:da:9c:e4:c3:41:
a9:40:bd:ee:97:80:14:c8:0c:c7:56:97:c9:57:d0:
bd:f8:4b:bd:4e:cd:59:fa:de:b0:ca:76:bf:4c:09:
63:ab:46:fe:46:b9:be:12:6f:4d:59:bd:5c:aa:a5:
2a:55:88:b2:42:66:e8:22:c2:c0:79:0c:c2:fd:c5:
78:f4:8d:97:6f:c0:1f:d1:2f:5c:84:dc:ec:2f:62:
10:ef:dc:71:33:a5:e1:ea:8a:b9:5e:51:c1:b7:b8:
9f:e1:3f:de:84:ba:6e:ab:1b:41:14:bd:8c:af:ab:
81:54:7f:26:cd:dd:93:a5:7e:59:26:d3:a4:0b:95:
16:6a:a0:3d:c8:88:d7:16:2a:79:77:5e:71:9d:f5:
b3:e0:31:4c:fc:db:b6:e9:52:f2:5a:1e:55:7c:38:
7d:c9:1e:3a:fb:c8:95:b1:66:56:9d:90:0e:dc:8b:
e7:09:c8:6d:65:5f:9e:9b:39:64:ac:5e:ba:f7:33:
b3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4F:6A:16:C8:7D:6A:AE:F2:79:44:C3:61:83:AD:33:8A:E3:CF:9C
X509v3 Authority Key Identifier:
keyid:29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:61:7c:9a:ab:a4:ed:c5:71:e3:f1:e1:dd:10:a8:11:4d:94:
67:95:2f:3b:d4:93:a0:30:3e:6c:74:91:5d:80:6b:73:d4:3a:
f0:5b:21:56:82:7d:df:f3:1e:f9:a9:01:21:c9:70:18:b6:30:
dc:87:8e:22:a7:88:61:72:9b:0d:4a:a7:4b:cd:1f:ec:58:d5:
a0:fc:34:60:94:56:f5:c8:16:0e:4f:22:d4:b2:56:65:ee:25:
c0:80:f2:28:59:3a:8a:4c:11:81:7b:62:9f:cb:ce:89:d7:50:
3a:b4:82:dc:67:db:08:e2:f4:f3:3d:4e:d9:8a:71:c1:d6:ae:
b8:6b:be:82:75:66:f8:74:ca:3e:fc:7b:25:e9:11:87:a0:d4:
30:c9:c1:5b:8b:74:ec:0a:e8:28:aa:1a:98:e9:bd:22:25:a0:
95:e2:89:40:59:3f:16:a5:85:6b:46:c1:96:3a:76:1e:80:66:
63:8b:76:68:29:b4:c9:4d:ce:19:92:57:74:89:24:57:41:15:
75:4e:fe:52:8a:32:e0:c2:6a:f9:88:f2:30:96:0a:9a:67:ca:
0b:cf:4d:59:0f:00:85:77:47:a5:97:29:21:dc:03:26:32:00:
59:b2:4a:21:ec:9f:c3:ae:e9:f8:77:4c:dc:6f:b8:df:f7:69:
96:2a:03:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdUI27s8ed5zw39TLE1SQyQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5N2E0MjI5NzE0ZjM0ZTI5ZDNkOTJiMjVmN2I1OWM3NDhm
MGRmYzYwHhcNMjUwNjA5MTAwMTM3WhcNMjUwNjEwMTAwMTM3WjAzMTEwLwYDVQQD
EyhjZjRmNmExNmM4N2Q2YWFlZjI3OTQ0YzM2MTgzYWQzMzhhZTNjZjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0KXxD9t4j3da8SUojBdT6/fXo42
3fbQXdO4drCIwN44gp62LBc00Vka4YLDSLPHEZ0JD0lNtlVk9cDB2VGMSu88Bif9
2pzkw0GpQL3ul4AUyAzHVpfJV9C9+Eu9Ts1Z+t6wyna/TAljq0b+Rrm+Em9NWb1c
qqUqVYiyQmboIsLAeQzC/cV49I2Xb8Af0S9chNzsL2IQ79xxM6Xh6oq5XlHBt7if
4T/ehLpuqxtBFL2Mr6uBVH8mzd2TpX5ZJtOkC5UWaqA9yIjXFip5d15xnfWz4DFM
/Nu26VLyWh5VfDh9yR46+8iVsWZWnZAO3IvnCchtZV+emzlkrF669zOz1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM9PahbIfWqu8nlEw2GDrTOK48+cMB8GA1UdIwQY
MBaAFCl6QilxTzTinT2Ssl97WcdI8N/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1hwQ0tYRlBOT0tkUFpLeVgzdFp4MGp3MzhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8xZDcyY2UtYmU0Yy00NDk4LWE4MjMt
M2FlYmM5ZjgxN2NlLzEvS1hwQ0tYRlBOT0tkUFpLeVgzdFp4MGp3MzhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8xZDcyY2UtYmU0Yy00NDk4LWE4MjMtM2FlYmM5ZjgxN2Nl
LzEvS1hwQ0tYRlBOT0tkUFpLeVgzdFp4MGp3MzhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsmF8mquk
7cVx4/Hh3RCoEU2UZ5UvO9SToDA+bHSRXYBrc9Q68FshVoJ93/Me+akBIclwGLYw
3IeOIqeIYXKbDUqnS80f7FjVoPw0YJRW9cgWDk8i1LJWZe4lwIDyKFk6ikwRgXti
n8vOiddQOrSC3GfbCOL08z1O2YpxwdauuGu+gnVm+HTKPvx7JekRh6DUMMnBW4t0
7AroKKoamOm9IiWgleKJQFk/FqWFa0bBljp2HoBmY4t2aCm0yU3OGZJXdIkkV0EV
dU7+Uooy4MJq+YjyMJYKmmfKC89NWQ8AhXdHpZcpIdwDJjIAWbJKIeyfw67p+HdM
3G+43/dplioDsQ==
-----END CERTIFICATE-----
Generated at Mon Jun 9 14:40:21 2025 by rpki-client