Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
File: KYlkeFHvzRmJcu09FJzLvenFXAA.mft (raw, json)
Hash identifier: qM+M0jg4oUECWs3EF5XwrA6zOLUly3xGk1iYhAy6zgY=
Subject key identifier: E3:9A:DF:2D:D0:22:AA:52:A9:A6:2D:25:BA:98:E0:B3:FE:05:EE:02
Authority key identifier: 29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00
Certificate issuer: /CN=2989647851efcd198972ed3d149ccbbde9c55c00
Certificate serial: 019747E7AFFBF098C02C23EA001795EA03C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
Manifest number: 08B4
Signing time: Sat 07 Jun 2025 01:00:55 +0000
Manifest this update: Sat 07 Jun 2025 01:00:55 +0000
Manifest next update: Sun 08 Jun 2025 01:00:55 +0000
Files and hashes: 1: 1ndyHQjZ22gElMY09b9UIH97Fd0.roa (hash: d9wD6lD21fFSwiL6i7e8/Tvl1y891h5uDv49+B9KB5s=)
2: KYlkeFHvzRmJcu09FJzLvenFXAA.crl (hash: 0kjK3q9BAt4LQg85pbSfxl7OwJNo10qitOoUnihO3uQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:e7:af:fb:f0:98:c0:2c:23:ea:00:17:95:ea:03:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989647851efcd198972ed3d149ccbbde9c55c00
Validity
Not Before: Jun 7 01:00:55 2025 GMT
Not After : Jun 8 01:00:55 2025 GMT
Subject: CN=e39adf2dd022aa52a9a62d25ba98e0b3fe05ee02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:68:06:12:58:d0:28:89:9a:71:9e:2d:cd:ed:
c4:fb:65:49:0a:e1:45:6a:9e:e5:5a:56:e4:6d:1a:
61:3c:56:02:ae:09:59:6d:96:48:25:9d:44:69:14:
dd:e3:e1:10:df:56:f3:f8:a9:ea:fa:7f:95:4f:18:
a9:08:26:31:eb:c7:37:32:9d:72:39:90:97:c7:91:
2f:fd:43:e1:80:ad:ee:2e:cd:ba:04:3c:16:a2:1f:
8d:e9:96:f1:0a:d3:d7:df:3f:29:d8:a2:67:17:0f:
f3:db:7f:47:d9:0b:81:35:92:b9:65:bc:c9:ab:8f:
3d:72:15:0c:f6:ed:79:5c:cd:ae:59:cf:0e:24:19:
f2:20:6c:e1:a0:5f:41:c9:00:1f:b7:06:df:b1:c8:
a5:8b:ed:e1:e2:d6:95:c6:d5:08:63:00:23:e5:6f:
d3:bf:92:30:29:9b:9f:c8:ce:e9:b6:73:f4:ee:5d:
db:b4:c0:4b:b1:b3:09:c6:fa:2b:56:99:99:53:4a:
9d:2b:4e:f3:61:e7:52:00:72:92:4e:67:4a:d0:fc:
47:7d:3a:00:58:72:92:b0:77:c7:14:d2:7f:bd:8e:
5d:59:4a:d6:a3:a3:9d:b9:1d:ae:f8:ee:a6:0e:74:
53:bd:15:9a:18:9c:39:62:ce:41:3c:7e:7d:ec:e8:
96:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:9A:DF:2D:D0:22:AA:52:A9:A6:2D:25:BA:98:E0:B3:FE:05:EE:02
X509v3 Authority Key Identifier:
keyid:29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:52:67:03:78:25:fc:b5:de:55:99:92:72:ca:ab:9e:49:2f:
d2:b3:42:56:61:f3:92:90:95:a3:dc:36:55:39:2a:84:0c:f6:
e7:5a:fb:fc:c9:8a:70:20:f2:69:82:8c:57:a8:94:74:d3:d1:
85:eb:ac:39:a6:fd:1e:04:c9:a1:3b:0b:34:e6:f7:ec:b8:e1:
21:2e:06:55:1f:a2:21:b3:cd:8d:23:b2:f0:76:09:20:97:e6:
a2:46:22:fa:d4:f8:fd:f6:15:cd:47:eb:d6:73:62:46:f0:01:
4f:af:3c:83:36:fb:a9:ac:f8:40:25:d2:9e:bc:2b:11:3b:e8:
f0:43:66:ac:11:b1:5b:b1:89:ff:5e:28:f4:de:0f:05:54:e6:
91:af:bc:61:09:ee:61:20:03:4e:2a:72:9d:35:48:8a:b5:e8:
e5:1e:d0:9c:ec:4c:32:e4:78:28:70:59:e3:43:f2:38:30:56:
d0:f6:a2:65:23:96:4d:1b:38:a5:41:a3:d3:48:71:3b:e6:ba:
88:25:10:51:71:48:5c:00:33:96:39:8c:fd:02:94:3f:69:81:
c5:29:39:b0:b0:86:0e:b5:08:71:da:e9:46:78:d6:a5:04:82:
f0:00:95:10:52:48:e3:31:6b:2c:1a:d9:5e:e7:2f:67:09:e6:
aa:36:7c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:29:59 2025 by rpki-client