Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
File: klbr9muA8IE1hY0UTO1veFg09fQ.mft (raw, json)
Hash identifier: KHBJRXIUPVivfYQFTX9TUynteBfYNIwrnect+eFqMS4=
Subject key identifier: EB:DA:5A:40:AD:B9:1E:57:51:AD:60:38:70:D5:8B:B3:9E:4E:90:1F
Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4
Certificate serial: 019748C316A17940E11C29B67AACB26B00EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 05:00:34 +0000
Manifest this update: Sat 07 Jun 2025 05:00:34 +0000
Manifest next update: Sun 08 Jun 2025 05:00:34 +0000
Files and hashes: 1: 0cwv1kps50n5fxH17jZ6DrIm1N0.roa (hash: undM2lyLTll3NMITFEXa/JcW5GP1KelrAOfh7Rau6zQ=)
2: DFcDai4MmMP-4I9ZmvHSmiuuiVo.roa (hash: P1EgClV7bkG9omjLGc5Uu3/ShqO9L3Dji7Yyz/EuHLk=)
3: V_xEHpefO5u5KSTu-XYSWan-kRo.roa (hash: jYILx7U+IDJR4gLw2si3w1xLilgSY3Xi257sg6Z15eA=)
4: Z26jB8MmkVPCobutKSYkZRRffSw.roa (hash: jtYR3qZJ5WEi/+pEZva2m9kUb9g5HMevovBDi8SuUfU=)
5: e1u7bA6PuDBeHm9U9nKjSLDhACw.roa (hash: DvBt+9eFN/dfM+tx+F5jn+yDWZNZsODtMhC5M+LFI08=)
6: klbr9muA8IE1hY0UTO1veFg09fQ.crl (hash: 7XlQtIcTWDa9KyltvZCRuVQg/xnWv57g3uKXxD960EI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c3:16:a1:79:40:e1:1c:29:b6:7a:ac:b2:6b:00:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4
Validity
Not Before: Jun 7 05:00:34 2025 GMT
Not After : Jun 8 05:00:34 2025 GMT
Subject: CN=ebda5a40adb91e5751ad603870d58bb39e4e901f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:de:e5:70:6f:83:92:6e:a1:16:ca:90:ed:79:
87:00:78:e6:e0:0d:06:47:d3:32:94:b1:ad:ff:d5:
94:97:5d:f2:48:0c:7c:b5:8c:a4:f5:a6:ed:73:06:
7f:d6:fe:ef:d2:d2:f5:da:3a:87:ab:55:4d:6f:ae:
bd:58:f5:8a:a8:70:3e:ba:de:21:70:dc:5f:b9:bc:
4e:07:3e:e5:cd:b5:76:f1:ba:c8:a7:7e:10:24:07:
7a:d5:36:57:0a:13:05:03:33:80:3b:a3:71:b5:62:
54:f2:8a:5c:48:fd:c9:75:10:17:2e:55:b7:8b:8f:
9f:36:91:c6:c4:19:9f:22:23:12:e2:18:8c:95:a2:
f0:dc:8f:4b:aa:76:4c:c0:c8:64:02:6e:17:f3:77:
2e:ca:e8:07:5e:5e:d2:2a:7c:d1:2d:0d:ae:3c:c8:
b4:a8:b3:97:f0:73:ec:40:97:49:f5:6a:bd:ff:e6:
93:0a:ae:6b:d9:09:2a:20:55:81:24:7f:1d:b9:d6:
70:12:ab:d3:75:91:ff:54:f4:fd:4f:5b:f6:e6:5c:
fd:e6:bd:77:29:1e:47:0f:8d:83:e3:b9:c6:de:d1:
73:52:45:62:18:8d:c7:2a:d5:ee:9a:62:12:02:d1:
94:45:80:4d:a9:ee:5a:37:d9:4d:b6:15:fb:15:12:
42:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:DA:5A:40:AD:B9:1E:57:51:AD:60:38:70:D5:8B:B3:9E:4E:90:1F
X509v3 Authority Key Identifier:
keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:bc:ae:68:1f:22:c6:5f:4c:f2:0a:41:61:3a:43:ac:78:53:
84:01:08:43:1d:81:49:bb:39:bc:0c:89:4c:ac:fc:d5:63:bd:
ce:62:dc:f6:c9:d1:ea:d5:9a:68:2d:a3:98:83:f9:1f:a9:7e:
e7:69:59:27:be:bb:b2:fe:4e:1f:f2:00:17:f3:53:61:13:fc:
9e:14:a3:4a:7a:0c:8d:a7:b0:17:d5:8e:46:5f:1b:a4:4d:ea:
26:34:eb:25:3f:26:68:4b:b6:09:5b:27:67:fe:28:79:81:ba:
99:cb:65:e7:33:0b:2f:eb:e7:05:c5:6a:eb:68:08:5b:b9:62:
3c:52:f4:47:2e:23:2c:b2:8f:a7:91:0c:25:13:24:93:cb:aa:
06:fe:ec:b1:70:d3:d2:d1:4b:42:ad:c4:29:d5:f3:95:ac:63:
95:b6:af:d9:b9:4c:f0:f4:6a:f6:00:91:90:ae:44:71:2c:41:
ab:df:98:ae:39:f8:30:1d:f1:b1:06:96:84:b6:15:f4:86:b6:
86:33:f7:6c:0d:4c:75:92:e2:f7:b3:2d:8d:b7:a4:05:d9:91:
cc:8a:ca:33:97:cd:6e:83:0e:18:32:85:93:86:e6:fc:c2:a1:
2c:66:e2:cc:1c:34:03:6f:ba:3a:7a:79:d7:0b:78:69:66:58:
b0:5a:47:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 10:34:01 2025 by rpki-client