Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: mU6EiGEWP6ERlsEbCv3Ig9h/B2eZHER7eUkRcxac1bs=
Subject key identifier: E8:7C:81:21:84:8D:61:AE:02:85:08:3C:09:D4:C8:C7:ED:89:1F:79
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 019768BC23359BFC2C3A2C17412E913A7307
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 158A
Signing time: Fri 13 Jun 2025 10:00:49 +0000
Manifest this update: Fri 13 Jun 2025 10:00:49 +0000
Manifest next update: Sat 14 Jun 2025 10:00:49 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: 4N2MwvPgJV1kuWSUYZLdxgIYY8Qv9AZbkwgQRyhvbTE=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 10:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:bc:23:35:9b:fc:2c:3a:2c:17:41:2e:91:3a:73:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Jun 13 10:00:49 2025 GMT
Not After : Jun 14 10:00:49 2025 GMT
Subject: CN=e87c8121848d61ae0285083c09d4c8c7ed891f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:88:f2:53:9b:40:06:05:f3:27:2e:1a:a8:b3:
52:9f:f1:6e:83:1a:5e:10:a7:98:fb:33:ce:8d:0a:
9c:10:6b:39:1e:91:54:86:7c:42:dc:8f:8c:0a:5a:
4c:3d:2a:1b:c4:48:ad:37:2a:79:5d:f2:b2:2f:64:
85:41:ea:d2:ce:dd:8b:e1:57:f5:e1:e3:c0:eb:28:
e3:87:01:26:0a:91:e2:ab:82:22:51:9c:5e:aa:48:
86:ea:07:be:11:5a:c4:36:79:84:11:3d:87:1d:95:
8f:84:78:dc:4d:c2:f0:08:80:e0:f6:33:49:e2:05:
40:3a:d9:56:78:53:7c:ad:3a:09:b7:b3:07:60:68:
62:4e:5e:72:b3:8c:52:62:8d:1f:a2:4c:93:58:26:
08:c6:e9:81:47:0d:af:da:bc:d3:7a:48:4b:d3:a4:
ac:4d:32:bc:56:16:e9:b7:62:03:f5:68:b4:4f:70:
46:6b:20:90:9f:f6:ee:e4:90:31:9a:e9:ed:06:24:
c4:57:96:54:48:18:3e:ff:2d:c4:7f:4a:86:89:56:
4e:4e:0d:7e:71:1d:2e:dc:fb:66:20:12:78:90:ae:
05:84:45:81:6b:f6:6b:fd:59:e6:a9:49:17:21:42:
59:8e:56:70:43:95:aa:0f:cb:71:48:64:fb:3a:fe:
5b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7C:81:21:84:8D:61:AE:02:85:08:3C:09:D4:C8:C7:ED:89:1F:79
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:05:1c:88:07:d4:f6:c0:92:c2:c8:36:8c:9d:34:71:65:3a:
3d:ad:c7:44:79:7d:0f:9a:33:95:a8:70:9a:d5:d9:ec:2f:68:
4b:38:b7:ce:4f:77:97:c0:9c:56:30:cc:3c:cf:d1:e7:b9:72:
9b:15:a6:22:14:2a:e1:72:60:12:bc:b2:fa:99:1a:92:bf:bf:
54:91:5d:6a:55:ff:03:17:f9:ba:08:ac:43:fa:e5:1a:3a:bb:
ad:37:22:b8:59:39:c7:1e:8f:4c:6b:b9:87:c4:4e:9b:f3:af:
94:74:b3:07:12:a5:16:b0:9a:30:3e:7b:23:b4:aa:1d:8d:fc:
8c:51:3d:33:30:92:c4:42:0d:c4:2b:eb:66:91:a8:9a:a0:17:
3b:cf:cf:33:a0:89:31:99:11:bf:28:c5:0e:31:a0:e0:e2:19:
59:5b:ac:71:e5:6e:68:5c:c4:ae:94:d8:58:8d:b8:fb:9e:28:
93:17:ff:55:29:82:02:83:fa:f9:64:50:57:c0:da:74:d5:cf:
57:fc:f5:33:44:99:3b:ba:cb:cc:92:3d:20:0e:41:5f:fe:a9:
00:f5:f8:a9:0c:26:63:0a:28:b8:a0:98:35:ca:d9:0a:34:56:
d3:8f:06:12:8c:da:d9:8a:06:fb:07:9c:77:c0:25:bf:41:21:
82:01:e9:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:26:34 2025 by rpki-client