Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: 6hh4RWcKhZqjfgoGAMU1qlVH6xQkDK1BdI/6Loji9HQ=
Subject key identifier: 25:23:86:4C:4A:36:B4:B7:F6:6A:2E:84:99:E1:5B:86:F8:9C:4F:9E
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 01976D3E4044A1DE517FC86D032CD8210F68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 07:01:25 +0000
Manifest this update: Sat 14 Jun 2025 07:01:25 +0000
Manifest next update: Sun 15 Jun 2025 07:01:25 +0000
Files and hashes: 1: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: 6eqHvks21Yu+NtAzrclmjmohfdULkuC+s9Agp1WXZYA=)
2: r4bjJ2cCOInhIlG1f9hIdTm3g6M.roa (hash: aZToxg96BEY8Qvj4uVJxCXKyOgQmRt2zg6OKjNY/eQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:3e:40:44:a1:de:51:7f:c8:6d:03:2c:d8:21:0f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Jun 14 07:01:25 2025 GMT
Not After : Jun 15 07:01:25 2025 GMT
Subject: CN=2523864c4a36b4b7f66a2e8499e15b86f89c4f9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d2:81:63:9c:5a:dc:b0:4a:25:9a:4d:18:5f:
31:0e:42:89:7d:6a:ef:b5:82:ba:ec:6d:86:3d:9b:
1b:f9:06:df:f5:34:4a:31:37:cc:ae:e9:f3:72:de:
04:9f:f2:05:f0:29:c3:39:26:65:a9:5b:62:23:1d:
db:da:8e:52:82:97:d7:bb:0a:2e:43:b4:9f:68:fa:
11:03:91:09:ad:e2:9b:8b:53:63:06:ca:7a:1a:a1:
fc:36:7f:df:5c:08:6a:aa:1a:50:9c:3f:d1:fb:2c:
32:8c:d7:e2:d8:9e:f3:87:c3:1c:54:d7:44:ba:30:
7f:73:36:e7:cf:7d:f4:db:0d:db:7b:f5:94:1b:9e:
2a:9a:e4:38:13:fd:64:01:6e:b9:84:12:5a:4a:11:
85:7f:bc:30:c1:5f:30:56:c9:aa:12:df:83:cb:b8:
9b:ae:de:e7:92:9a:b0:29:8e:59:87:4f:ec:f6:89:
30:8b:e3:d8:fc:23:bc:81:71:6c:9f:2a:bb:f8:71:
7f:4a:13:6e:e7:4c:95:a2:e9:47:83:22:f4:06:bc:
99:6c:63:b1:37:6c:bc:20:83:fe:65:e0:38:06:05:
1b:e8:de:fc:20:7d:cf:3f:07:84:bc:75:38:92:dd:
f5:9f:7b:8e:83:ae:09:da:af:ba:cb:8e:3d:56:94:
53:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:23:86:4C:4A:36:B4:B7:F6:6A:2E:84:99:E1:5B:86:F8:9C:4F:9E
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:72:34:ca:fe:04:0b:6f:e8:ac:e7:db:f7:2c:61:d0:b4:ae:
eb:58:7b:4b:60:d2:29:74:27:a6:87:07:38:92:07:bb:e8:82:
c5:9c:e4:b0:63:da:26:47:35:e3:ed:e6:80:e1:85:1f:73:bd:
e5:4e:f1:0c:0a:41:46:52:5e:10:d3:28:2b:07:eb:e9:72:13:
2c:7b:05:34:42:43:cb:65:c5:fa:74:3b:ba:05:ee:6a:a9:40:
73:bd:c3:73:05:d5:a9:7f:f7:b2:d6:ff:db:43:4b:98:fd:61:
f1:e4:65:58:92:0a:ce:eb:09:5b:7b:b9:75:fc:d0:70:ce:5b:
1e:e2:0e:2d:e6:fe:6f:3b:9c:00:ed:a3:ee:d8:fe:32:0f:81:
c4:0f:e5:b6:43:8d:7d:ce:c2:33:d3:b1:02:27:59:5d:99:8b:
7e:a7:51:15:fb:de:2a:80:28:02:5b:07:e5:44:25:e7:72:52:
46:59:74:c9:13:23:ec:61:5c:2d:14:6b:26:50:89:de:17:65:
4c:ec:0f:0a:3b:07:aa:83:bc:6e:b5:ff:ca:bc:d5:9a:ea:0c:
46:9d:2c:e9:43:f7:57:9b:51:b8:ce:9c:78:a5:5b:34:c4:af:
a6:03:4b:61:71:43:6d:cc:d5:82:45:06:16:5a:5b:c6:63:59:
73:1c:6a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:00:28 2025 by rpki-client