Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
File: KjbWeMS7ysJK5r6pokyZXEjVk_A.mft (raw, json)
Hash identifier: mJuaDizYI8ZEc4ahrcafi6LYn4IT7u+7OqfFx0v9sVs=
Subject key identifier: 00:8F:0C:C4:80:E5:63:08:CA:85:E2:68:E3:79:27:3B:40:AD:29:17
Authority key identifier: 2A:36:D6:78:C4:BB:CA:C2:4A:E6:BE:A9:A2:4C:99:5C:48:D5:93:F0
Certificate issuer: /CN=2a36d678c4bbcac24ae6bea9a24c995c48d593f0
Certificate serial: 01976CCF9D5E4CC689F57753783CFA1C8528
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 05:00:34 +0000
Manifest this update: Sat 14 Jun 2025 05:00:34 +0000
Manifest next update: Sun 15 Jun 2025 05:00:34 +0000
Files and hashes: 1: KjbWeMS7ysJK5r6pokyZXEjVk_A.crl (hash: DeAHQMJb8rv+1kFj7yGbkn7pvByMBhg1bUJSBYhMnF8=)
2: zK1LIZGeSSnaNXNW0qcn6w1MLCU.roa (hash: e8RwpvlrpxWqEOoeavX1Cyz9aTwhsZ8GdJGcHGa5+Eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:9d:5e:4c:c6:89:f5:77:53:78:3c:fa:1c:85:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a36d678c4bbcac24ae6bea9a24c995c48d593f0
Validity
Not Before: Jun 14 05:00:34 2025 GMT
Not After : Jun 15 05:00:34 2025 GMT
Subject: CN=008f0cc480e56308ca85e268e379273b40ad2917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:85:c8:cc:09:2c:92:30:d3:cb:45:0f:d8:77:
35:7a:85:cd:6a:63:3e:11:f6:99:a4:c7:33:bb:09:
71:00:6c:82:3f:b6:f1:f8:b6:b1:7c:ad:40:09:6c:
dc:3c:30:bd:82:6d:b6:a4:a7:fe:db:2c:a1:0b:21:
5f:7f:3a:c5:40:28:1e:cd:74:cd:ad:f9:37:3b:16:
8b:5d:ae:93:b4:d7:f9:59:5d:64:1e:2a:df:a4:d2:
41:ac:9d:14:22:05:7d:43:e1:57:2d:5b:19:00:89:
6a:cf:ad:df:84:eb:06:e8:fc:2a:33:a3:f3:c5:22:
a6:92:82:aa:6d:4c:c2:69:26:da:43:af:ce:1b:63:
6d:1a:9d:35:2b:a1:98:02:e5:42:41:30:39:14:f9:
2a:b4:84:5d:32:8d:95:61:a9:cd:5e:87:8e:8c:9e:
95:09:01:f2:56:cb:a1:69:f0:b5:1d:d5:96:74:66:
27:24:cf:33:00:34:4e:3c:16:45:2a:0b:5a:65:f8:
fd:40:2e:d6:68:aa:98:a4:ea:f1:3a:34:f7:81:c0:
bd:09:5e:80:11:29:4f:4c:7f:e3:9a:36:0e:cd:af:
25:91:b7:21:d6:92:b2:1c:71:94:8b:00:dd:26:c6:
59:9a:15:34:3b:39:47:93:2b:a9:5f:87:55:58:d1:
77:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8F:0C:C4:80:E5:63:08:CA:85:E2:68:E3:79:27:3B:40:AD:29:17
X509v3 Authority Key Identifier:
keyid:2A:36:D6:78:C4:BB:CA:C2:4A:E6:BE:A9:A2:4C:99:5C:48:D5:93:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:ad:17:72:07:9b:2e:7e:ff:ce:68:f3:1a:c8:26:ef:81:99:
ec:7b:6b:29:93:7b:eb:3d:29:3a:f3:58:a8:2f:66:05:77:8d:
6f:b2:79:e1:13:24:76:db:98:2f:b4:6a:f3:27:4b:cd:46:8d:
84:bb:9c:3e:24:4b:df:36:04:45:0e:5e:f6:05:38:e9:6e:39:
42:ff:89:0a:22:a2:b7:d7:92:eb:fa:5b:55:2b:8c:19:8d:bb:
99:2d:7f:b5:b1:a6:bc:b8:4f:e2:32:4f:34:6b:49:c5:c6:20:
f9:35:be:15:eb:6a:9c:44:28:3b:2d:fd:8a:f8:3a:59:da:a6:
e8:b0:ca:fd:e7:0e:52:f4:e5:5d:8f:49:0a:db:c6:ed:7a:03:
ea:ae:8b:59:0c:4b:cc:66:3b:b4:68:4c:d5:b7:1b:b9:e6:69:
a2:88:57:cf:7e:75:62:58:cf:1e:5d:19:21:18:12:24:67:8c:
1a:f8:bd:54:bc:27:70:ef:f4:a9:77:a6:66:5b:0b:2b:a9:3f:
4e:72:df:3b:3b:4b:8f:93:71:f6:cd:88:6f:95:b7:63:c7:f7:
0e:93:f7:e5:a7:1f:87:7f:3a:6b:7b:40:e5:ac:71:a7:58:8f:
c8:9b:e6:74:c1:b9:8c:b8:47:29:d6:44:85:1d:5e:20:7e:84:
0e:03:6c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:07:36 2025 by rpki-client