Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft
File: KANYk6JXplTz-FSVxBaevobeGNE.mft (raw, json)
Hash identifier: TxZzaWJbTVnig8U+FK5UZJ7kP/ut7/9GPcUfZkncr70=
Subject key identifier: 95:DD:39:EB:45:BE:0D:F0:28:5A:1A:70:95:FF:26:A2:00:23:53:12
Authority key identifier: 28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1
Certificate issuer: /CN=28035893a257a654f3f85495c4169ebe86de18d1
Certificate serial: 019747B077777EAE5006FAEE287574A54341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft
Manifest number: 0AB8
Signing time: Sat 07 Jun 2025 00:00:36 +0000
Manifest this update: Sat 07 Jun 2025 00:00:36 +0000
Manifest next update: Sun 08 Jun 2025 00:00:36 +0000
Files and hashes: 1: HzZn0ba7QItzyWun3HWfVhfe2Mw.roa (hash: iE4IEBeKKD6peBsX5m6y9GBML1LTBu1RqbqOosqLhr0=)
2: KANYk6JXplTz-FSVxBaevobeGNE.crl (hash: I5msOoep4bf3yABEci615VXKD5d3ud18L+xE+U5/Dm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:b0:77:77:7e:ae:50:06:fa:ee:28:75:74:a5:43:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28035893a257a654f3f85495c4169ebe86de18d1
Validity
Not Before: Jun 7 00:00:36 2025 GMT
Not After : Jun 8 00:00:36 2025 GMT
Subject: CN=95dd39eb45be0df0285a1a7095ff26a200235312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:32:1b:7f:90:00:dd:bc:9f:13:70:14:26:20:
7b:ad:f8:fd:1e:38:9d:dd:cc:45:78:02:6e:0a:ef:
ef:99:be:c0:41:63:a7:88:88:e6:41:1a:b4:58:5b:
ea:47:ed:ff:2f:90:45:ac:67:05:79:a1:c9:91:4a:
01:b5:50:65:07:2f:a3:4f:8e:8f:3f:8f:de:90:46:
fe:8c:c3:d7:ba:1c:b8:15:58:12:88:ba:f2:44:a8:
8c:df:11:6c:3c:31:24:72:57:ce:50:21:f4:62:c9:
66:a1:87:a2:b7:11:fb:20:19:8f:46:ca:82:a2:0e:
08:ee:87:e5:e2:49:e5:9b:11:6d:92:6b:77:04:25:
de:49:e8:38:93:8c:1b:89:1e:07:ea:51:76:9b:24:
8c:d6:39:3a:c7:da:1f:ca:75:a6:be:8a:8e:b8:0c:
17:9c:e3:f2:4f:71:7c:40:2e:5a:92:da:8b:7a:23:
85:53:61:5f:7c:14:c7:cd:33:17:10:db:7f:ef:b6:
84:c4:89:d5:71:07:0e:77:2b:bd:ce:6c:50:30:ae:
66:a1:56:c2:a6:25:7d:aa:13:f3:74:5c:50:8f:19:
f1:27:76:d0:6b:a7:86:11:ce:3a:d9:2a:cd:ba:20:
ef:57:a0:5c:2c:12:04:50:55:9a:1d:3a:d5:35:fb:
c4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DD:39:EB:45:BE:0D:F0:28:5A:1A:70:95:FF:26:A2:00:23:53:12
X509v3 Authority Key Identifier:
keyid:28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:88:4c:ad:99:81:0d:8c:86:f4:a1:43:e3:19:17:94:a7:21:
73:48:b9:90:a9:51:bd:cd:5e:32:e4:d5:1b:d5:4f:26:d6:fb:
a5:b2:cf:d5:a8:54:6a:ca:0a:4d:3d:f2:59:28:b7:d2:4f:12:
ca:9c:3f:88:46:a5:04:8a:a7:26:85:96:f9:0a:94:64:72:ca:
05:f4:71:08:10:63:4a:ca:a6:af:78:b2:67:c4:92:0e:fa:e2:
fd:a7:2e:ac:8f:9c:94:bf:03:f1:37:0b:27:cc:f9:af:a8:09:
32:21:29:e1:52:8d:71:95:24:fc:47:d8:07:04:81:c0:dd:9a:
3e:69:0e:09:d6:93:1c:2c:0c:19:09:a5:1c:76:6d:86:7a:80:
c4:a3:e8:8f:39:ec:3c:c6:8e:9b:1e:38:eb:bd:81:3a:5e:29:
02:27:72:43:cc:20:1f:4e:83:46:9d:94:b7:d3:89:18:bb:dc:
0b:e6:9d:a1:4d:e9:e3:5f:42:d3:72:fd:ac:39:04:8e:fe:60:
7f:68:a9:20:6f:df:0e:69:c2:b7:31:6b:fe:17:eb:d8:58:0c:
c1:70:2d:48:7c:91:62:49:10:28:0a:6b:97:00:20:6a:06:26:
b1:0c:df:5d:8c:73:c2:4c:c2:69:13:23:fc:fa:71:2c:12:7a:
a4:89:b9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 08:58:03 2025 by rpki-client