Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
File: KRl7xzMOqZkA9PyRAzozF-VvdeI.mft (raw, json)
Hash identifier: 4U4jr+kWQvj6yaSeR3R7sQAEN4IoAqHQh6krMt3rr78=
Subject key identifier: 76:12:4D:8F:B2:BD:D7:A1:AF:3D:63:27:17:26:08:71:8A:B8:4C:ED
Authority key identifier: 29:19:7B:C7:33:0E:A9:99:00:F4:FC:91:03:3A:33:17:E5:6F:75:E2
Certificate issuer: /CN=29197bc7330ea99900f4fc91033a3317e56f75e2
Certificate serial: 01976A0618544BDCB3B1466070B537A14974
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
Manifest number: 03AF
Signing time: Fri 13 Jun 2025 16:01:13 +0000
Manifest this update: Fri 13 Jun 2025 16:01:13 +0000
Manifest next update: Sat 14 Jun 2025 16:01:13 +0000
Files and hashes: 1: KRl7xzMOqZkA9PyRAzozF-VvdeI.crl (hash: DXNZq47dSpr4YPQuyimZPGpLse04OeJNgsD3i11H0+Q=)
2: lzjPjehPcPKbzhp_BORqJSFXL5w.roa (hash: o7m8VbYXK8WyV5y7PTGt6HIYSCCP18Dfj928jAcIW9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:06:18:54:4b:dc:b3:b1:46:60:70:b5:37:a1:49:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29197bc7330ea99900f4fc91033a3317e56f75e2
Validity
Not Before: Jun 13 16:01:13 2025 GMT
Not After : Jun 14 16:01:13 2025 GMT
Subject: CN=76124d8fb2bdd7a1af3d6327172608718ab84ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:61:c6:6d:66:da:ad:44:d3:8d:33:95:a5:4f:
92:aa:31:e9:e7:92:80:96:b1:7f:9d:5c:3f:86:a9:
3f:19:db:4b:a0:75:61:c8:68:80:bb:0d:00:6c:0b:
c1:83:f0:ba:12:cc:8c:29:fb:a3:f6:3e:c2:a2:04:
c4:f3:ef:18:47:f4:f5:9d:45:1b:7b:69:12:84:09:
d7:e2:9d:10:db:cf:57:57:51:e5:c8:5c:ad:f5:b0:
83:66:4c:d1:f2:d2:ae:ce:ea:10:68:eb:35:14:d4:
67:14:b8:50:00:8b:64:4e:b8:af:99:ad:5e:2b:20:
6c:13:bc:1d:bd:b2:e9:1e:89:04:48:42:8a:09:a0:
58:18:07:38:6b:be:f8:04:24:74:e4:74:76:3d:d2:
ca:c6:7d:bb:ea:6a:a8:cb:c6:57:2c:5e:1d:21:c6:
69:7d:8c:f8:2e:cc:fb:41:02:d0:eb:d0:c4:b3:cb:
dd:73:66:8c:9a:ac:48:ce:95:b7:83:d4:af:56:46:
08:6a:23:52:48:2f:aa:35:ae:22:0a:81:1e:86:c0:
80:ec:05:dd:69:92:51:c5:d6:37:af:33:14:25:5f:
52:69:ef:0d:8a:42:15:2c:91:cd:b0:d8:1e:d2:9b:
bf:6c:20:59:95:21:37:09:6d:a4:e2:fe:29:35:b1:
85:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:12:4D:8F:B2:BD:D7:A1:AF:3D:63:27:17:26:08:71:8A:B8:4C:ED
X509v3 Authority Key Identifier:
keyid:29:19:7B:C7:33:0E:A9:99:00:F4:FC:91:03:3A:33:17:E5:6F:75:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:8f:11:f3:3d:0a:d2:e6:79:1b:94:0f:b8:70:e0:fe:ee:fd:
f3:ff:31:06:27:39:d8:6c:3c:b0:4d:56:76:22:38:65:e2:23:
92:42:62:e3:13:85:d4:7f:1b:e0:45:c1:e0:08:0b:0a:6f:e0:
ff:dd:ae:3d:6b:ab:8c:95:a9:48:c2:54:42:de:b6:a2:41:a1:
25:1b:74:57:e1:4a:c8:30:7e:a6:69:ee:3b:f1:d9:58:06:ce:
58:3b:24:86:01:6d:f4:4d:24:54:1b:1f:3a:4d:57:9d:6b:88:
43:c9:58:8e:e4:e0:36:06:1c:03:08:6a:40:3c:e9:a7:34:5e:
c9:d8:79:ba:09:23:c5:9a:44:49:bf:db:a2:ac:91:74:c2:51:
12:8a:91:91:d9:4d:b6:5e:f3:dc:32:fb:73:a6:40:c8:f5:c7:
19:de:eb:8e:0e:de:0e:9d:cf:ee:05:3a:20:41:a8:ae:e4:ed:
f1:3c:e3:1f:b8:f0:86:3d:46:32:74:5f:65:66:5d:b3:c6:a1:
4c:85:8f:3a:ce:44:80:86:ee:0a:64:81:7a:15:bf:b8:6f:66:
65:81:b4:b7:84:f7:0c:7a:80:fd:18:3f:c9:b6:8b:c3:a6:ee:
a1:88:ed:dc:da:39:cb:e7:cb:42:28:19:ce:48:76:a4:91:dc:
de:81:d1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:10:46 2025 by rpki-client