Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
File: KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft (raw, json)
Hash identifier: GaJwDnydxiKUQJbqAoHsKT6Tj722VM51SjNYYoChuaI=
Subject key identifier: FB:7C:13:97:CB:F3:14:EE:5D:00:4B:18:60:24:45:51:E3:6D:52:91
Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411
Certificate serial: 01976F6327C53D7955660EC49DA2E6FCC127
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 17:00:58 +0000
Manifest this update: Sat 14 Jun 2025 17:00:58 +0000
Manifest next update: Sun 15 Jun 2025 17:00:58 +0000
Files and hashes: 1: KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl (hash: o1Zkh24cn1mZDi2keS6r41V9nz4BbL/8Iqw1CkCYKf8=)
2: rzOkydR3EHFZXD3XEkRebB02-_4.roa (hash: df7jTqxQL8Sw059sbRTkyG9ltt5KtHFaW+BfP29wPTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:63:27:c5:3d:79:55:66:0e:c4:9d:a2:e6:fc:c1:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411
Validity
Not Before: Jun 14 17:00:58 2025 GMT
Not After : Jun 15 17:00:58 2025 GMT
Subject: CN=fb7c1397cbf314ee5d004b1860244551e36d5291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c8:85:4a:05:84:9e:bf:87:49:03:24:e3:bd:
65:55:eb:fd:09:c9:b5:bf:38:19:85:df:74:89:2b:
ff:f8:b7:d7:4a:c2:2f:72:20:7a:fd:e8:47:8d:6f:
6b:8c:d4:6c:bb:d0:db:6e:5d:be:48:3e:68:7a:38:
72:a1:a8:53:45:dd:f4:7b:eb:2e:04:90:d2:f6:ae:
47:0d:7a:02:b7:7b:d1:77:dd:c6:16:36:73:72:d2:
5e:d2:6d:8f:21:97:3e:e6:43:fa:cf:c0:a9:a2:73:
97:95:6a:0f:62:9f:f2:a2:d5:b6:64:10:d4:04:b2:
eb:b9:5d:40:3d:20:9b:b7:3b:df:bd:88:33:12:27:
86:10:b5:47:d1:ec:90:8e:22:5d:5b:08:dc:57:f4:
ee:65:2b:e3:84:f9:d3:31:e8:3e:1c:83:e3:42:13:
0e:c0:5f:83:6a:81:e3:b1:86:2c:54:07:62:85:d3:
29:11:f9:0a:6f:03:14:1f:37:eb:fd:d8:ae:c5:01:
bf:cb:56:5f:a9:41:4c:9b:6f:92:e6:c4:48:10:e9:
d5:08:42:76:9d:69:27:65:c9:c5:12:95:8f:21:91:
1f:5c:99:fc:d9:59:a6:fb:77:42:95:57:aa:80:1c:
60:78:fa:fd:39:39:e3:38:83:3a:2e:bd:83:11:03:
d9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7C:13:97:CB:F3:14:EE:5D:00:4B:18:60:24:45:51:E3:6D:52:91
X509v3 Authority Key Identifier:
keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:3a:e3:33:9e:bc:aa:fc:69:46:39:da:a7:1d:02:af:3a:a0:
d3:8c:7d:ce:97:e1:78:3c:76:c1:5e:18:b0:ee:92:33:2f:16:
ec:28:85:43:7e:88:b3:6c:3a:42:73:58:15:d1:95:e3:ed:01:
71:bc:32:1d:0e:aa:6a:ec:e5:20:01:fb:e9:d5:ba:6f:1f:38:
7a:3e:83:79:94:03:89:84:ac:26:85:c1:7b:5f:99:3f:b0:fa:
55:2f:f7:a2:04:32:c0:85:a2:d3:50:0c:60:dc:72:3a:ba:fc:
53:7a:3d:ab:33:8b:96:d0:25:2d:ac:86:40:98:e6:7b:88:87:
7b:2c:1f:58:2a:9f:70:b7:20:fb:87:95:a5:a6:14:8b:26:77:
a3:87:9f:56:5f:51:f3:7a:da:f2:1c:31:7d:14:9f:1e:ac:8d:
c2:90:f7:9a:3d:78:bb:6d:a3:8a:de:70:59:5a:64:75:e7:ec:
e6:82:54:6d:46:7e:f8:d9:a5:ff:0b:59:00:8e:ec:52:0d:63:
ac:fe:a0:77:a5:be:d6:18:4c:6c:06:26:53:ec:21:24:37:bd:
9d:d6:83:39:7b:7a:88:0b:5d:d7:11:df:82:19:04:a6:ff:b8:
bf:ea:1d:77:24:b7:da:37:bd:d0:b6:06:d0:7c:83:0a:3a:e3:
3d:65:5c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:17:54 2025 by rpki-client