Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: b40CWXEtWaMirsFcBNW1O7cnx0GPO5j9ilYCy65XJqI=
Subject key identifier: 3C:E7:29:8F:A0:2A:1A:68:75:C6:B2:7A:17:81:B9:F7:89:7D:D2:46
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 01976D3DEA86DAB2E74BAB11F1BC0CE073B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 0339
Signing time: Sat 14 Jun 2025 07:01:03 +0000
Manifest this update: Sat 14 Jun 2025 07:01:03 +0000
Manifest next update: Sun 15 Jun 2025 07:01:03 +0000
Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
3: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: 92gPB1+jsihURTerI1sIiEHH0JDu8ZuNobF7bTx/hkE=)
4: OdjteK9gKG4YNaSPtAZxPfbKTlg.roa (hash: C1n8BPEFHA0rRgZVDgK4q8CBrVeD5FeMnjLcyYE1XMw=)
5: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
6: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=)
7: xTf5pi1O1OBOL8Roy41K3aIww6Y.roa (hash: S2VqtYqj28mSbHWyl9+CNpKvGeC5wqTzL6SGHQbpvl4=)
8: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3d:ea:86:da:b2:e7:4b:ab:11:f1:bc:0c:e0:73:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Jun 14 07:01:03 2025 GMT
Not After : Jun 15 07:01:03 2025 GMT
Subject: CN=3ce7298fa02a1a6875c6b27a1781b9f7897dd246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:74:60:d3:e4:b3:b0:9a:cf:63:2f:9c:06:3f:
ad:5f:d1:e4:fb:21:b8:c7:bf:a1:03:67:57:4b:eb:
09:9a:bf:14:9e:9a:84:01:7b:c4:cf:7a:86:c1:63:
44:21:d6:aa:6e:10:45:19:a5:41:9a:04:97:33:e6:
f1:49:60:e3:b9:3d:21:47:d0:41:77:3b:35:87:a4:
12:7d:8c:60:cc:86:47:d9:4a:f7:a8:78:e4:a6:64:
14:3a:8c:95:d7:45:b6:b2:41:c3:5f:6e:97:84:34:
59:fb:af:e7:5f:ae:a9:df:18:86:93:8a:a1:5c:cc:
ac:37:d6:e6:20:17:f6:82:58:a3:f1:77:83:16:24:
b2:26:49:84:1d:b6:20:3b:0c:c3:b8:a5:2c:9f:3f:
3c:df:0d:16:7f:a1:96:3e:3f:fb:3d:aa:29:20:8f:
be:2c:a3:1e:a5:36:2c:82:3e:90:71:10:8b:a4:d9:
5c:63:32:18:55:e5:c5:62:47:69:91:47:0a:f9:61:
83:f0:42:4a:8f:62:7c:34:98:47:8f:b0:3d:cd:0d:
57:dd:19:f2:7f:25:fc:8b:11:fb:7e:f4:0b:76:45:
f4:25:1b:cb:48:48:48:88:c8:c3:ea:72:6c:96:ec:
a6:0e:8d:d9:82:c8:82:7c:f0:27:52:97:e7:31:ba:
e5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E7:29:8F:A0:2A:1A:68:75:C6:B2:7A:17:81:B9:F7:89:7D:D2:46
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:1e:f1:50:4d:20:73:c5:5c:cd:b6:3e:7f:1f:dd:65:f8:19:
2f:9d:7a:d4:10:90:a6:ea:32:fe:80:25:d1:14:5f:51:79:f4:
a6:20:3e:ff:81:52:34:70:f9:45:a0:1b:bf:f8:e1:1d:29:ef:
0a:a8:29:6a:69:d8:b8:a1:53:21:45:29:6b:9e:8a:53:51:23:
34:fa:9d:0a:4a:dd:50:55:fa:85:3f:5e:42:b7:73:1e:5e:ef:
eb:e0:37:f2:77:0b:f6:64:fb:9a:4c:10:8c:52:c8:94:28:6f:
4e:71:dd:92:c3:bc:20:f0:d0:30:d7:ac:0f:f5:a9:7d:14:60:
7b:8e:b3:23:5f:47:0b:53:89:85:73:2e:84:58:72:bf:bc:e4:
ca:ce:19:45:d1:81:ce:10:31:01:44:45:db:2a:08:54:34:f8:
4e:51:fd:d5:b8:ad:6e:5b:5f:7c:96:15:6a:ab:31:d5:25:5c:
76:b2:e1:10:c7:ee:30:bd:a7:f0:28:40:41:8b:09:3e:fb:e9:
a6:eb:03:69:34:b2:1f:2d:12:5e:1c:03:c4:84:d4:70:da:4a:
c4:b1:b6:f8:fb:91:b3:b4:98:26:27:ac:53:bc:d4:35:a8:28:
18:a3:26:64:a9:e6:64:f6:a5:5b:f7:e4:59:f7:27:0c:d5:db:
d1:68:e7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:09:16 2025 by rpki-client