Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
File: KL8ecjI3QqxNgTarbI6F33ujfus.mft (raw, json)
Hash identifier: 6W/mfJGdgQcRl7IvkhTPbQN0VTlhMtMTszIu0cWoXcw=
Subject key identifier: F0:D6:E4:16:9A:B2:3B:0F:EC:B7:61:24:A8:DF:9C:A2:79:18:D1:A8
Authority key identifier: 28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
Certificate issuer: /CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Certificate serial: 0197771CA602F6E8963ABBE5F81D1B2BCA40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
Manifest number: 1595
Signing time: Mon 16 Jun 2025 05:00:55 +0000
Manifest this update: Mon 16 Jun 2025 05:00:55 +0000
Manifest next update: Tue 17 Jun 2025 05:00:55 +0000
Files and hashes: 1: KL8ecjI3QqxNgTarbI6F33ujfus.crl (hash: w/KgTkQI4LB5Bwgz9kdGNfxzUKoQWzveBpcrVoW2fcQ=)
2: tkt4SudQfK9uwQrgGKvvYflAjl8.roa (hash: dFUnqKo0rasEdebFDefgA9DnqivcqZmMoexL2NOUY5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:77:1c:a6:02:f6:e8:96:3a:bb:e5:f8:1d:1b:2b:ca:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Validity
Not Before: Jun 16 05:00:55 2025 GMT
Not After : Jun 17 05:00:55 2025 GMT
Subject: CN=f0d6e4169ab23b0fecb76124a8df9ca27918d1a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:18:c2:6d:21:0e:cd:97:77:aa:18:93:f5:5a:
ed:1a:fe:81:26:fa:a1:01:95:75:a8:63:76:5b:79:
63:7f:72:14:84:6d:e8:fb:04:64:11:18:a1:ca:ae:
97:fc:a4:4d:c4:3e:44:d3:5c:db:8f:ee:17:2e:f2:
5a:81:87:17:46:4f:97:0d:83:b2:b1:81:91:b6:69:
ba:d7:4e:ff:46:eb:c6:15:bb:04:4e:40:97:1f:1c:
8e:e3:49:6a:06:29:40:87:bc:ab:33:28:e2:c8:14:
d8:ff:bf:8c:c9:32:6d:3f:c4:92:af:a4:8d:c0:76:
62:a5:ff:ae:20:ad:f1:bb:c7:79:9d:2b:f5:46:00:
ab:cb:98:c4:26:1f:58:27:04:c4:f7:ae:61:f8:01:
5f:65:6a:3a:85:ae:e2:b2:de:eb:b0:29:d4:12:d9:
e4:4b:16:93:05:6d:b0:d3:b4:e7:86:54:86:24:ce:
99:15:ac:e3:2f:47:55:4c:9d:44:6a:43:04:16:41:
04:4e:cc:4b:c2:41:98:2c:c5:75:9b:a6:62:f5:22:
62:56:fb:e2:24:88:d5:12:81:b1:95:12:c9:37:81:
16:2f:d8:fc:2f:2e:a5:53:81:81:ee:a9:a5:31:71:
12:91:97:03:9e:f3:30:9c:e0:6f:3b:b5:12:34:51:
88:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D6:E4:16:9A:B2:3B:0F:EC:B7:61:24:A8:DF:9C:A2:79:18:D1:A8
X509v3 Authority Key Identifier:
keyid:28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:b8:0c:f0:cf:f4:90:51:f7:bb:bd:95:32:3a:c8:b4:98:4f:
d5:25:ee:12:c5:bc:ce:e1:4d:db:b9:0a:12:28:79:43:26:6d:
1c:22:19:f6:5f:dc:9a:c4:1f:d5:69:d0:55:ef:6d:f2:c7:c0:
1e:1c:9f:ff:66:15:9f:f8:5e:bb:84:03:3a:f3:8d:65:60:d0:
87:a8:a1:45:fb:13:ba:98:67:8a:57:b7:64:8f:50:62:ef:d2:
b9:5d:45:24:e1:99:70:af:1c:1f:8e:5a:d5:a5:5a:0e:e3:f3:
6d:11:e3:39:c4:45:7c:53:38:cb:5e:c7:64:21:db:21:ba:c6:
34:72:65:30:a9:fa:ab:c9:51:85:f7:25:7c:91:bb:04:38:45:
84:df:94:2f:55:8e:9d:32:6c:3a:b4:42:e8:00:e0:7b:ca:76:
df:e3:97:c1:48:7d:df:2d:db:e3:4f:6b:b0:7f:9e:44:0c:e0:
8f:4b:5d:94:5e:c6:e6:ca:68:5e:90:64:b7:83:81:76:31:a2:
86:4b:34:bf:74:6c:6e:76:27:9b:dd:4c:3f:7e:ea:18:8e:64:
64:3d:49:d1:89:d0:07:ac:7e:8e:24:dc:48:43:7c:bf:a2:8d:
9e:93:57:7a:bd:32:48:ed:13:a8:fe:53:96:65:3c:69:36:6f:
39:cd:4d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 07:53:24 2025 by rpki-client