Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
File: Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft (raw, json)
Hash identifier: 7TPttOnw4b40lihUmo46kBAq7xFcyhe5THgTyTe8WJg=
Subject key identifier: 9C:34:8F:43:01:8D:D9:BD:C7:5F:FB:DE:F7:AB:B3:05:66:C9:EC:F0
Authority key identifier: 2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
Certificate issuer: /CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Certificate serial: 019771F64FEB304F03AC1B973BF075E2763E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
Manifest number: 0EBF
Signing time: Sun 15 Jun 2025 05:00:57 +0000
Manifest this update: Sun 15 Jun 2025 05:00:57 +0000
Manifest next update: Mon 16 Jun 2025 05:00:57 +0000
Files and hashes: 1: Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl (hash: SzcoTITy7OrfBUwNqbR9fJOjdvWBGPBhHmlf/a9QmaE=)
2: so_dnSs4BnrVZYioQ2oy6VOroHk.roa (hash: EXJQLyqb51APlznWLoV0tXq0fpUDEu2dhVkLYk30HsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:f6:4f:eb:30:4f:03:ac:1b:97:3b:f0:75:e2:76:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Validity
Not Before: Jun 15 05:00:57 2025 GMT
Not After : Jun 16 05:00:57 2025 GMT
Subject: CN=9c348f43018dd9bdc75ffbdef7abb30566c9ecf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ce:90:94:22:0b:64:c7:5c:74:4c:e1:9a:9b:
4a:dc:68:7f:cf:10:3a:4b:c6:11:3b:ce:44:19:4f:
49:6f:8e:fd:71:08:0b:7d:6d:6a:82:23:95:9d:1f:
f4:bd:1a:e2:be:52:41:d3:9f:4a:22:e4:af:e6:da:
2e:4b:31:3b:a1:c9:cb:da:4c:57:ab:59:de:87:3c:
59:1d:d3:27:24:3d:f3:5c:fd:56:b5:35:6c:d0:5d:
56:60:7f:e8:bf:27:40:e0:f7:0d:e4:8e:49:41:bb:
b5:5a:0b:1a:11:d3:4c:73:ee:50:5f:99:c4:f3:60:
2a:53:52:53:39:70:47:ca:58:51:03:1e:50:ff:18:
08:d5:d0:38:7a:6b:30:b8:4d:f7:89:d4:d3:7b:4e:
53:89:ea:58:aa:77:35:1f:ff:fb:a1:87:89:ff:4b:
d1:a1:7e:14:24:2e:0c:9e:6c:77:99:83:a9:bb:20:
bf:b7:c1:95:92:52:35:04:50:ef:80:41:da:18:a5:
bf:5c:00:03:bc:b6:33:08:5d:70:cf:67:d9:85:47:
7b:fd:7e:ab:c2:c8:db:78:bb:32:02:57:d7:f9:60:
7a:c4:48:6c:d9:8b:07:b1:e3:57:d4:92:5d:f1:b7:
16:ce:f3:a8:da:3a:c1:5b:40:dc:f7:d9:21:3c:10:
18:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:34:8F:43:01:8D:D9:BD:C7:5F:FB:DE:F7:AB:B3:05:66:C9:EC:F0
X509v3 Authority Key Identifier:
keyid:2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:1f:c9:d6:55:af:4c:ca:e4:e9:58:e9:e9:b2:03:12:2c:93:
95:74:55:96:1c:ba:ab:ab:83:f0:8c:ca:e5:b0:df:f0:ac:73:
3d:ce:e0:67:29:2d:4c:13:68:7f:81:06:1e:d8:95:5b:39:f2:
9c:34:e1:b9:82:1a:6e:35:2b:97:3a:e3:93:8f:85:47:f4:ef:
fb:43:06:f7:df:17:ff:3a:3f:f8:af:17:75:9a:f0:c5:1b:c1:
34:d7:ca:69:a0:1f:e4:b1:96:dc:a3:d0:c4:22:d6:72:74:fb:
6f:57:53:ef:42:ca:1e:e3:70:b5:2c:c1:2f:fa:2a:5d:40:74:
e2:da:50:f1:0f:8e:2b:02:7f:ff:c5:8d:92:05:ac:c2:10:bd:
27:4a:aa:ea:35:b2:94:cf:6e:a5:77:0d:1e:ca:26:c0:3c:4b:
c3:d9:46:10:0e:f8:ac:1b:9f:9a:8a:93:97:b0:ac:1c:0d:e2:
78:fc:d0:eb:99:6f:f0:1e:50:56:f5:b5:a8:6b:4d:d2:e7:57:
5b:fc:f1:38:5f:8c:ba:c4:32:f1:10:c7:a2:cf:d2:5a:c8:ab:
d6:64:8b:c2:70:64:2b:09:8b:a5:ec:a6:12:0d:fa:d5:ac:9e:
75:f5:4f:73:c1:c3:c4:d5:bf:f0:a8:c5:60:37:a8:61:13:bb:
dd:24:45:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:07:06 2025 by rpki-client