Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
File: KiZGBSRa8gGcKTw3KPal4lXYnyU.mft (raw, json)
Hash identifier: zqE1VXUkd0SBwPcFNELjGnIEsLoSA0ZHbUqLTMQB+SE=
Subject key identifier: 0F:95:BC:BC:B7:CB:77:EC:29:67:74:12:91:E5:2C:69:CE:14:1E:B1
Authority key identifier: 2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
Certificate issuer: /CN=2a264605245af2019c293c3728f6a5e255d89f25
Certificate serial: 01976A05CB982A3B2BBA2B9005AB530EB6F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
Manifest number: 158D
Signing time: Fri 13 Jun 2025 16:00:54 +0000
Manifest this update: Fri 13 Jun 2025 16:00:54 +0000
Manifest next update: Sat 14 Jun 2025 16:00:54 +0000
Files and hashes: 1: 3KSN_k3KfyRIpkOpKsbbz9Bqq5E.roa (hash: iHgOduhUsida+9pHg8iFsStpH/s/1dREHiJkoJW0aww=)
2: KiZGBSRa8gGcKTw3KPal4lXYnyU.crl (hash: x4MzwyfuITFAgksPbAqP14f26gpeLWY0dVULn3UhX0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:05:cb:98:2a:3b:2b:ba:2b:90:05:ab:53:0e:b6:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a264605245af2019c293c3728f6a5e255d89f25
Validity
Not Before: Jun 13 16:00:54 2025 GMT
Not After : Jun 14 16:00:54 2025 GMT
Subject: CN=0f95bcbcb7cb77ec2967741291e52c69ce141eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4d:14:45:c0:fc:ef:0f:6e:a0:36:9a:0b:d2:
24:26:4a:e4:29:16:ad:e9:6a:95:83:17:5f:a9:28:
ff:c2:13:28:88:8e:f8:41:cb:de:0e:56:a6:d0:50:
23:70:1f:50:fd:14:04:e0:81:d5:42:1a:21:69:23:
b5:f2:a8:1d:54:b2:5b:06:83:42:85:ff:2e:7d:46:
62:c9:41:e0:7e:b8:04:45:14:f3:ec:6e:41:bf:95:
53:65:5e:03:94:3d:c5:08:43:c3:0f:b6:e5:ac:a6:
b5:fa:72:5b:8b:7f:f3:6b:58:11:17:5b:69:79:a6:
e4:79:65:6a:c6:00:0b:2b:af:16:21:b2:8b:03:0a:
97:fa:93:18:f8:90:6f:86:20:3c:2b:89:de:35:35:
56:3b:6c:63:9b:38:eb:2c:9d:15:60:68:cd:7d:7a:
dd:b2:f1:14:52:12:5f:6e:3e:3c:e9:33:78:c4:5b:
62:7a:ab:0d:05:19:21:73:ca:01:0e:42:36:e4:1f:
6d:06:de:17:37:c9:f5:d3:1c:f3:29:56:c0:44:f1:
18:e0:e7:8c:ba:e2:e6:22:9d:69:9f:17:1f:5c:d2:
a5:c0:bf:ac:68:65:ea:09:82:78:70:9a:96:83:b8:
b2:53:2b:59:f2:15:b0:06:37:e0:ba:0b:fa:7a:b6:
cf:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:95:BC:BC:B7:CB:77:EC:29:67:74:12:91:E5:2C:69:CE:14:1E:B1
X509v3 Authority Key Identifier:
keyid:2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:d8:7a:87:b7:20:19:86:36:1d:a2:0e:ca:17:f9:05:a0:44:
43:3e:39:c0:0e:30:5c:b7:87:ee:42:1b:44:d7:2c:06:72:f4:
21:be:74:13:1c:de:4a:98:ac:d4:3d:98:24:0a:89:59:d4:0b:
b8:bb:50:40:5e:c6:a5:63:3c:5c:8f:2e:cb:81:e3:22:2a:6e:
71:0f:e1:0f:87:38:fe:32:4a:15:0e:b9:19:df:3b:57:66:6b:
7c:21:3c:9e:0e:68:c3:96:96:3f:bc:bc:e3:56:40:6c:f9:72:
bc:4b:bd:17:47:46:e2:01:63:51:6f:97:f2:bf:1b:c4:39:d3:
72:56:23:11:ac:b5:b1:25:07:85:ed:12:b1:8b:48:64:7c:53:
78:e0:5c:ef:41:86:d6:04:00:06:08:00:83:e0:9c:6d:56:90:
77:80:94:d7:b4:87:98:3a:4b:b9:8e:c6:f6:8f:13:a5:04:f8:
50:8b:fb:6a:70:4e:0c:7a:df:6e:a9:8c:ba:d2:57:c7:ae:b9:
be:92:77:68:b6:32:b8:31:81:65:df:bc:e5:8d:64:8c:de:eb:
46:11:41:57:37:96:8c:b3:f8:8f:08:47:02:df:8b:b7:a2:fd:
1b:6d:2e:dc:4c:ef:b6:07:24:6c:10:35:b6:31:05:9e:9e:8e:
7e:49:80:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:17:24 2025 by rpki-client