Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: pZOrZAQ9zEkGXJJKriJkdjHjuXHerWg0IdRUupMxGTY=
Subject key identifier: C3:03:27:F5:92:11:8C:98:2A:25:DE:60:AF:9A:E0:8C:12:5B:AE:AA
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 01976FD14751697D1892DC203D5EFCE29A31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 099E
Signing time: Sat 14 Jun 2025 19:01:15 +0000
Manifest this update: Sat 14 Jun 2025 19:01:15 +0000
Manifest next update: Sun 15 Jun 2025 19:01:15 +0000
Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: 8BHb6e/Jy/sz2J5iwg0D3SeUM2C30uYtimVRfOwmT/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:d1:47:51:69:7d:18:92:dc:20:3d:5e:fc:e2:9a:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Jun 14 19:01:15 2025 GMT
Not After : Jun 15 19:01:15 2025 GMT
Subject: CN=c30327f592118c982a25de60af9ae08c125baeaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fb:7e:2c:2f:e1:b1:e0:98:05:f6:3c:7a:bb:
1d:80:5b:3d:9b:20:23:af:87:e6:b3:df:a9:55:38:
1b:75:7c:17:a2:fd:56:5d:f6:17:91:69:c6:e8:c7:
46:5e:8b:61:dd:e4:06:df:ef:6c:bc:fe:d8:ed:d3:
73:38:82:75:12:1d:d2:f8:88:5c:0a:a9:aa:5b:2c:
7f:c2:2d:33:64:df:c4:db:cb:3d:23:ff:f3:9f:46:
e5:0b:e1:b4:f3:16:10:91:ff:fc:b5:18:c0:e1:a4:
14:b8:13:fc:ca:bf:28:c9:a9:96:70:12:09:8c:a1:
e4:29:67:53:2a:37:7d:15:68:2d:56:fc:81:ba:4f:
38:d7:91:4a:01:f9:f8:9c:8c:b9:6d:24:b2:2f:1f:
e7:b3:86:f7:a8:f9:5a:84:c3:63:ec:88:ca:83:cd:
23:9f:a3:68:d7:83:5a:42:f6:33:64:82:1a:ac:f4:
7e:a2:66:6c:e6:8b:ec:c1:53:d4:18:ea:43:9e:1f:
06:6b:b3:6c:5b:44:89:4c:d9:ed:31:ca:47:00:fe:
17:96:c6:50:b5:b3:53:fb:c2:f3:80:0d:6e:53:9b:
08:1e:9d:21:49:52:c4:43:b3:e8:2c:9a:95:23:b0:
29:10:4e:e6:65:a5:4f:d4:69:02:c2:9a:c1:18:17:
29:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:03:27:F5:92:11:8C:98:2A:25:DE:60:AF:9A:E0:8C:12:5B:AE:AA
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:01:86:e4:f7:90:34:05:df:b2:9d:84:96:c3:7c:f3:da:87:
8b:0b:f6:e2:2e:b5:c4:7a:07:1c:62:f6:1f:4a:af:c1:a4:c8:
14:68:8d:99:2c:0f:c6:81:6c:ff:b2:c0:6e:63:48:6c:69:73:
8f:6f:a0:28:e8:04:7c:a7:c3:58:31:09:94:38:ff:54:2b:11:
35:8e:92:d7:29:60:da:07:59:ab:8b:62:5d:11:8e:c8:24:97:
67:bc:bd:19:db:3c:38:7e:8c:95:b5:03:d4:de:f1:67:19:69:
01:12:70:4c:78:ac:83:57:c1:a4:63:1c:0b:0b:43:b2:71:11:
92:ed:b8:d4:df:3d:54:ad:db:3b:f6:e3:9a:2c:dc:41:33:f3:
c7:20:3b:f8:04:1c:b6:d5:65:59:05:e6:64:f7:b1:3d:5a:f7:
0b:85:38:4f:12:db:22:9a:15:38:2b:de:3e:9e:86:d6:d8:be:
0f:f6:02:fd:e8:93:cb:14:e5:0d:40:03:63:54:27:8e:8b:7b:
f4:61:f4:1d:31:80:fc:25:3b:74:5b:ca:88:0f:c4:4d:8f:9c:
9e:cd:15:b4:33:aa:79:6b:33:b1:62:10:84:df:6e:ea:77:ce:
fc:39:96:96:8c:7c:02:e0:da:92:61:8b:0a:cd:74:05:31:15:
2f:f3:e4:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 22:13:45 2025 by rpki-client