Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
File: KBZKV1f91XJaYIRPKufvc7EHpMA.mft (raw, json)
Hash identifier: POJcHf2dg3kIpYW+E92skh6KwyMHcmIWKcsR4zXcFk0=
Subject key identifier: 55:3F:CF:16:DF:E4:CB:E3:94:41:BC:78:66:41:A8:8A:E7:99:82:74
Authority key identifier: 28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
Certificate issuer: /CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Certificate serial: 0197722CA539F68027324A850ED88B1E1BB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
Manifest number: 158F
Signing time: Sun 15 Jun 2025 06:00:17 +0000
Manifest this update: Sun 15 Jun 2025 06:00:17 +0000
Manifest next update: Mon 16 Jun 2025 06:00:17 +0000
Files and hashes: 1: KBZKV1f91XJaYIRPKufvc7EHpMA.crl (hash: svFWv2MNBzGkXPq8V2H18dzg72joDLoCekuitiTNwSQ=)
2: MhHg4JFChvahbVNUw3bJFSkkmEg.roa (hash: 4DOu8CWNY1OjDP1XSPeR4I2ZieWWV4v3/yu30qnq/P4=)
3: jPXAyTxRg6IHrumUsMVZCICaKwI.roa (hash: yu/3MPqNqBbwh5Kh6v8tYgtrr60bnzQOIu7M1/9ZqhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:72:2c:a5:39:f6:80:27:32:4a:85:0e:d8:8b:1e:1b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Validity
Not Before: Jun 15 06:00:17 2025 GMT
Not After : Jun 16 06:00:17 2025 GMT
Subject: CN=553fcf16dfe4cbe39441bc786641a88ae7998274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2e:18:5d:81:1f:72:ee:e7:e1:d9:5e:38:43:
13:26:a4:d3:bd:45:4b:f8:8b:60:91:e5:c7:49:8b:
cb:8e:ea:74:c2:15:4d:94:cd:ee:e5:c1:59:51:d0:
2d:9a:97:23:ed:41:85:48:8b:8d:02:06:69:1d:51:
6d:ad:9d:36:b9:d0:f8:a5:4f:ba:82:c0:24:40:3c:
e6:58:a5:f3:ff:62:b3:e6:50:1a:85:b5:18:98:6d:
97:45:05:e8:f5:a5:53:3e:a3:19:8e:7f:15:3a:42:
83:82:e8:79:b2:06:6b:1c:f9:97:d0:df:7b:1d:e9:
51:c6:d0:53:61:bf:f0:7f:64:81:62:58:00:44:c9:
86:aa:2c:03:ef:06:f6:fc:6d:96:e3:42:7e:f2:38:
2a:76:f0:c6:fe:ac:0e:0e:28:97:64:08:80:42:be:
5b:76:ec:c2:57:c7:0b:c8:39:64:10:28:bf:ad:44:
37:91:73:7a:d9:b8:c4:dc:55:24:92:fd:c2:7e:95:
bf:67:f2:b6:c9:6a:2c:73:74:00:95:b1:3a:1f:59:
63:2c:93:bb:73:6d:a5:05:37:a4:74:54:d4:d2:9d:
d9:47:af:cd:21:6d:00:32:ee:d8:92:97:16:a7:6b:
a9:e8:54:7d:a8:1f:9c:0a:21:6c:23:76:f9:04:17:
8e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3F:CF:16:DF:E4:CB:E3:94:41:BC:78:66:41:A8:8A:E7:99:82:74
X509v3 Authority Key Identifier:
keyid:28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:80:99:8b:c2:a8:54:ce:2e:79:17:3d:ff:5f:f8:f6:c6:75:
ce:52:a0:c5:3b:54:ab:36:5b:81:09:c3:1f:5a:58:2c:84:b1:
20:26:2a:55:53:a5:28:70:9f:48:3c:57:80:76:86:72:bc:87:
98:82:29:97:39:a8:09:50:f5:1a:6d:d7:ee:c8:dd:c6:32:04:
3b:4b:b8:87:ac:d1:6a:d7:94:ae:dc:48:0f:b6:3c:31:0d:fe:
4b:88:fd:9f:30:69:b7:44:45:99:26:82:a5:2f:c9:0a:c6:0c:
9b:6d:95:e4:7b:60:87:94:20:40:54:b0:44:50:b0:a5:80:b1:
7b:85:be:61:2b:46:52:90:20:c5:ab:1b:32:b9:6a:bf:e1:29:
71:6b:7c:14:e7:71:af:ad:ed:60:8d:21:3f:0c:73:a7:c8:23:
21:4c:85:71:66:c8:13:fc:ed:c4:9e:43:49:43:9c:ed:6e:5b:
fb:f4:8e:d9:5c:03:c6:0d:ab:98:db:0d:63:0d:80:05:b2:ed:
66:83:08:23:ff:49:9a:03:c3:cb:a2:37:26:8c:99:9e:32:53:
c7:98:e6:4a:cf:c1:3a:e2:19:d7:2c:73:95:e4:ba:d4:19:19:
3a:1a:34:cd:8c:f6:ea:75:03:0d:8a:d6:4b:4e:5a:79:a7:a9:
e4:02:f5:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:43:29 2025 by rpki-client