Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: f18JzdFePAS30JnkpQMkrdDoznVKDxhYItUc8wqxjpA=
Subject key identifier: A3:BE:C6:5E:C3:89:B3:D4:AF:25:64:17:20:07:9F:63:F9:1E:0B:06
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 019770081A7783F5759B0A9B74DD612A18BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 0281
Signing time: Sat 14 Jun 2025 20:01:08 +0000
Manifest this update: Sat 14 Jun 2025 20:01:08 +0000
Manifest next update: Sun 15 Jun 2025 20:01:08 +0000
Files and hashes: 1: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: uaboYhffPV8QOOkri90wBgtM/Aj3seOA4cb2qVB/q/g=)
2: ffvaic9mo-Ox_7Jsdhd4jhWeyvM.roa (hash: nAU1XWM3o+xHaVb0+VtmU8Q3s90CIRxbMQo+s7S+UMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:08:1a:77:83:f5:75:9b:0a:9b:74:dd:61:2a:18:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Jun 14 20:01:08 2025 GMT
Not After : Jun 15 20:01:08 2025 GMT
Subject: CN=a3bec65ec389b3d4af25641720079f63f91e0b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:78:ab:75:d7:f4:12:02:21:4e:e7:12:bd:47:
e5:84:0f:cd:bf:b1:45:c6:de:22:d5:48:5d:6f:f4:
c6:a2:94:a2:ad:8b:50:09:f5:c9:54:aa:b4:e5:25:
4b:cd:6c:c7:5a:3a:52:57:20:e2:3a:aa:f2:32:1f:
c9:4e:80:ca:91:5b:4d:02:d6:73:cb:20:26:ec:2c:
d8:9a:5f:90:bf:23:81:d9:a0:2e:0b:06:cd:dd:53:
f4:d2:76:22:67:9a:95:a3:8c:11:bd:db:b8:f3:e5:
c5:5d:84:61:d3:36:54:64:64:6e:d6:48:f5:cf:b9:
6c:7c:8d:d7:9c:2b:64:bb:4c:23:f1:fd:2b:ec:d7:
91:35:17:fc:7b:a4:19:ba:0c:da:fe:45:b2:64:0e:
b0:53:56:7b:fc:31:f4:57:07:69:70:b0:87:19:d1:
7d:da:1b:11:d5:16:f7:95:45:3e:d0:b7:c7:ad:c1:
78:39:fb:ad:8a:bd:4f:1d:b5:e1:2e:e4:5d:b3:95:
49:c9:fd:ef:ba:9e:d7:68:ea:d0:cd:ad:53:26:60:
2f:3d:d3:71:c4:8c:dd:77:40:95:9c:ec:c7:e4:53:
f6:10:d1:b1:b4:9c:8a:51:97:9b:1f:05:96:8b:0e:
fd:fa:a1:40:e1:ed:a4:58:64:9e:b9:e7:3d:80:d2:
cc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:BE:C6:5E:C3:89:B3:D4:AF:25:64:17:20:07:9F:63:F9:1E:0B:06
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:e4:99:20:3f:d2:b3:0c:30:e6:83:49:e0:1e:54:09:e2:b3:
ed:75:20:19:99:cd:0b:95:a6:76:73:1e:82:fd:64:af:eb:dd:
ba:f8:af:02:1f:eb:5b:ef:96:85:47:53:1b:00:80:38:e6:03:
ec:4e:29:8d:f6:bb:24:69:86:59:6e:aa:48:e7:0a:02:9e:e4:
9f:aa:ac:34:bd:ec:c0:88:5c:d0:47:89:f3:d4:60:8e:62:9b:
b6:a4:5a:10:38:53:3c:77:14:9c:46:05:cb:e7:84:75:40:8f:
62:2e:c8:68:c8:af:bd:71:2b:13:07:7f:5b:b9:8f:d8:2e:b2:
68:bb:25:90:f1:2d:15:bc:23:58:7b:53:32:a3:8f:0f:23:1d:
67:73:42:21:26:1c:84:fe:2c:e1:7b:8b:4a:71:47:f6:5e:d2:
50:d7:9f:49:b8:34:fc:5e:3d:38:fa:50:97:5b:5e:9c:f7:c0:
04:f3:95:21:89:6d:87:c6:37:6a:68:e1:2a:41:45:4e:05:ec:
8c:a6:19:ce:bf:e3:64:97:ba:02:4c:01:8f:74:09:2b:89:20:
39:19:d1:fb:ee:fd:e9:29:15:30:8d:d9:4b:6b:fb:1f:cc:e5:
5c:bc:bc:64:b5:74:10:86:cf:3c:d2:12:04:ba:53:c9:06:d3:
ca:b3:09:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:35:50 2025 by rpki-client