Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
File: KgGcraFj42jMM2J2PyBrPerE0yA.mft (raw, json)
Hash identifier: BkxmeUn79uIghq+hg7rEZfNuoXgbizuoSIaV/dntWt4=
Subject key identifier: 29:3B:EE:6D:B8:66:BC:7B:DC:85:82:ED:CE:BB:07:55:ED:3A:AC:25
Authority key identifier: 2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
Certificate issuer: /CN=2a019cada163e368cc3362763f206b3deac4d320
Certificate serial: 0197499F4D204BEF81F9A832C4C4C0DF718F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
Manifest number: 0AEB
Signing time: Sat 07 Jun 2025 09:01:06 +0000
Manifest this update: Sat 07 Jun 2025 09:01:06 +0000
Manifest next update: Sun 08 Jun 2025 09:01:06 +0000
Files and hashes: 1: KgGcraFj42jMM2J2PyBrPerE0yA.crl (hash: q9h24O15vhiP22hxtcAw4xTf/PWmDDMBRCau97vj+aU=)
2: aZtA3Tb82BUczOl9SsTYverE7lI.roa (hash: LK8Z2BqrNCcDSNuABGRySwkLhGqKgLJf/sHl1VyEOIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:4d:20:4b:ef:81:f9:a8:32:c4:c4:c0:df:71:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a019cada163e368cc3362763f206b3deac4d320
Validity
Not Before: Jun 7 09:01:06 2025 GMT
Not After : Jun 8 09:01:06 2025 GMT
Subject: CN=293bee6db866bc7bdc8582edcebb0755ed3aac25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:26:d0:58:94:7b:4f:01:5f:25:85:0e:52:5d:
64:69:c6:db:c8:69:3c:f6:62:b3:90:56:69:0c:13:
42:59:d6:e5:6a:25:1b:6e:6a:96:b9:a8:44:ba:f9:
b9:8a:41:d5:7d:8e:ed:72:ab:1f:cf:0f:9c:a0:70:
6e:ed:69:05:89:4e:37:6c:31:81:d3:e3:94:67:7d:
dd:3b:c2:d7:5e:40:d9:15:65:31:7e:c1:7f:81:de:
ef:5b:22:d6:31:5b:91:45:ba:8e:bf:b1:a0:dc:f2:
ad:06:c0:f6:d4:12:d2:d8:ba:34:cf:2b:b0:2f:9c:
c9:69:53:2f:fe:c1:45:b3:39:11:8b:6d:f8:35:5d:
08:10:e5:c9:4a:23:2d:56:42:c4:4c:a9:f0:d6:c2:
e8:8a:00:3d:28:34:ad:36:29:6f:b6:8d:ce:00:9d:
c2:1a:a0:62:17:ba:cf:1a:ba:3f:1a:c5:8e:4f:2a:
60:2e:1c:65:4a:b0:d2:9e:2b:ca:42:fe:2c:e1:b9:
8b:e1:09:68:c0:c9:b3:a9:63:a2:ac:e5:78:7a:09:
c3:78:2d:74:f3:f4:a9:f8:9c:89:bc:01:41:7e:b0:
af:7b:45:8b:25:3e:e5:41:2a:0e:95:3e:a0:a3:f1:
ac:4d:f0:b4:9e:a8:92:58:f6:27:bf:ba:f7:cd:69:
a0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:3B:EE:6D:B8:66:BC:7B:DC:85:82:ED:CE:BB:07:55:ED:3A:AC:25
X509v3 Authority Key Identifier:
keyid:2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:3a:72:d7:aa:ec:a5:2c:99:98:e7:12:48:82:b1:8f:81:21:
b5:3e:76:e6:19:e1:79:60:dd:74:be:f4:07:65:40:73:f4:8c:
ff:f8:84:5c:3f:39:90:68:7b:7a:15:6a:c5:b7:0d:54:5d:80:
d5:b7:08:be:c9:d6:a3:a9:0d:9e:68:c3:b2:1f:24:8b:6d:37:
33:11:e7:5e:e3:ab:d6:a6:ef:a4:75:03:1f:79:fb:a4:5b:a4:
50:ba:f8:7b:a6:bb:26:b5:54:46:7c:b9:49:0a:8b:dc:0d:c0:
3e:7f:89:f8:be:71:33:26:78:b6:c1:df:41:a0:17:28:5d:1c:
57:be:df:2e:46:25:45:49:1f:c6:35:03:3d:29:fe:14:b1:23:
d4:27:9d:d2:c3:4e:6f:62:5d:8e:cd:f4:90:b0:d4:99:f4:11:
01:c7:56:76:03:36:6f:ab:9b:50:c3:4a:a0:57:8b:4e:05:06:
c6:80:d1:c1:c3:eb:d3:c7:17:1f:de:84:fc:b8:1e:9a:1f:b8:
b4:be:6f:af:f8:a2:2b:e8:fb:80:b7:a0:80:94:03:84:8f:73:
d8:43:86:5d:29:8c:e2:02:2b:65:8a:65:42:3c:fc:e6:0a:4b:
1b:a0:c5:76:45:df:40:0e:21:3d:70:f7:99:dd:fe:30:af:68:
cd:9a:58:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:26:21 2025 by rpki-client