Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/174c3e-fa5b-49d1-9d21-e2bd2e4c5232/1/kffw_3S3yfrqKXjtlehAmEkE3NY.mft
File: kffw_3S3yfrqKXjtlehAmEkE3NY.mft (raw, json)
Hash identifier: pPB1gQKeukBXzCe3wIcTB3V/aI+ZNJySIOYn/2+BbOA=
Subject key identifier: 69:57:81:DF:81:A5:EC:4A:AA:AA:68:E3:59:33:3C:52:3A:AD:4D:B4
Authority key identifier: 91:F7:F0:FF:74:B7:C9:FA:EA:29:78:ED:95:E8:40:98:49:04:DC:D6
Certificate issuer: /CN=91f7f0ff74b7c9faea2978ed95e840984904dcd6
Certificate serial: 01976BBD6697C701E5030BA4884649B10846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kffw_3S3yfrqKXjtlehAmEkE3NY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/174c3e-fa5b-49d1-9d21-e2bd2e4c5232/1/kffw_3S3yfrqKXjtlehAmEkE3NY.mft
Manifest number: 094A
Signing time: Sat 14 Jun 2025 00:01:03 +0000
Manifest this update: Sat 14 Jun 2025 00:01:03 +0000
Manifest next update: Sun 15 Jun 2025 00:01:03 +0000
Files and hashes: 1: kffw_3S3yfrqKXjtlehAmEkE3NY.crl (hash: x9QYXg8/eYxf7dtnmclIHRp65vRMjlqyLzd/aCigtvc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/174c3e-fa5b-49d1-9d21-e2bd2e4c5232/1/kffw_3S3yfrqKXjtlehAmEkE3NY.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/174c3e-fa5b-49d1-9d21-e2bd2e4c5232/1/kffw_3S3yfrqKXjtlehAmEkE3NY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kffw_3S3yfrqKXjtlehAmEkE3NY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 00:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:bd:66:97:c7:01:e5:03:0b:a4:88:46:49:b1:08:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f7f0ff74b7c9faea2978ed95e840984904dcd6
Validity
Not Before: Jun 14 00:01:03 2025 GMT
Not After : Jun 15 00:01:03 2025 GMT
Subject: CN=695781df81a5ec4aaaaa68e359333c523aad4db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:56:82:3c:51:bc:a2:33:d4:e5:6f:f0:ee:62:
92:99:6b:86:7b:d3:fa:ba:03:a5:69:79:42:0b:63:
6a:62:f6:16:31:a1:26:85:67:08:24:8e:a6:35:0c:
16:3d:c4:d9:60:b1:9b:ad:3a:44:2a:cc:9c:91:f3:
a1:60:e5:5a:3b:5e:56:3c:af:c2:7e:cf:11:5a:01:
2d:4c:f2:49:e2:19:04:6f:9c:99:c8:90:b8:60:1f:
e2:94:03:59:a2:f8:4d:29:0c:e6:1a:5b:d4:71:b3:
08:3f:a3:92:d6:60:c3:0e:f9:07:13:9e:dd:61:d1:
41:be:e3:2a:d1:b9:c3:e2:64:7c:bb:8c:03:1f:1d:
a7:19:c1:fa:2e:63:dd:98:a9:4d:30:a0:94:c4:2d:
42:4c:17:ac:80:e4:6e:5b:34:e6:91:41:dd:3a:2d:
7a:d5:1f:90:c1:8f:99:75:6a:a1:dd:54:59:97:56:
3d:94:16:13:62:82:f7:ef:1a:b0:14:69:32:15:61:
01:fc:79:77:83:90:10:bc:96:ce:85:24:e5:3f:68:
c0:5d:35:c9:69:50:01:28:ac:0f:81:1c:84:1e:e7:
72:c8:77:36:34:9e:b6:2f:92:29:b6:b8:3a:43:73:
d1:b3:1b:41:82:54:14:b3:c9:04:36:54:45:b3:b3:
3e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:57:81:DF:81:A5:EC:4A:AA:AA:68:E3:59:33:3C:52:3A:AD:4D:B4
X509v3 Authority Key Identifier:
keyid:91:F7:F0:FF:74:B7:C9:FA:EA:29:78:ED:95:E8:40:98:49:04:DC:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kffw_3S3yfrqKXjtlehAmEkE3NY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/174c3e-fa5b-49d1-9d21-e2bd2e4c5232/1/kffw_3S3yfrqKXjtlehAmEkE3NY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/174c3e-fa5b-49d1-9d21-e2bd2e4c5232/1/kffw_3S3yfrqKXjtlehAmEkE3NY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:ab:cb:1e:05:81:98:17:59:c3:a1:db:f6:3b:c5:87:fd:6d:
34:53:0b:ef:e7:15:9c:f6:f8:68:e9:69:fd:59:83:ed:a8:e2:
44:72:b8:c8:84:0c:2e:02:18:c2:07:fe:81:a4:f1:a8:6f:ab:
e1:d4:9f:2a:a5:c1:ef:a2:8e:6d:a0:27:d2:88:5f:a5:16:52:
bb:4d:0b:18:ef:4c:3a:06:1b:ae:0c:ea:42:b0:41:8a:4f:a5:
93:37:ef:01:dc:20:42:57:ed:50:b4:28:d8:6c:56:0d:7a:b1:
49:09:75:b9:69:1f:af:db:d2:96:a6:fd:b5:c0:51:98:7b:ad:
c5:e8:bf:a8:0c:7c:20:75:21:01:4c:72:cf:43:3b:0a:dd:17:
8e:9b:0e:fa:42:0e:b5:7b:fb:13:c6:1d:06:10:53:c7:7f:b8:
ce:64:43:2e:93:96:2a:3c:bb:00:b6:e3:d8:39:50:4a:1e:2d:
f2:5b:1e:4d:a5:dc:e6:6b:ff:c7:31:4f:d9:ed:4e:e2:32:91:
d1:4a:30:58:bf:75:c4:7a:7a:fa:a3:3f:7b:7d:8f:46:17:d5:
ed:e8:36:ba:64:a4:53:51:6f:07:c9:21:b7:bd:08:4b:12:f5:
54:35:01:79:5d:bb:e6:f0:f2:37:1f:67:c5:80:e9:6b:c3:59:
db:69:f1:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:47:06 2025 by rpki-client