Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File: kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier: vl5EWujjqEKemtIX6meH+SQ1pvECJrD/51WfuTNrHcw=
Subject key identifier: 5A:60:E3:EA:A0:84:81:09:0C:F4:37:2D:B1:F9:DA:DC:B9:6C:6C:18
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 01976BF42BE19362792D596D44A6D7989454
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number: 1593
Signing time: Sat 14 Jun 2025 01:00:53 +0000
Manifest this update: Sat 14 Jun 2025 01:00:53 +0000
Manifest next update: Sun 15 Jun 2025 01:00:53 +0000
Files and hashes: 1: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: /+InSxy4D3tvBenAu5tS4gkWW88nKKHfQUpR/rCvFaw=)
2: yaNI0_QU-og_a5wIKL7nblpP3wo.roa (hash: mocSKnatPWu2K5HO5VSBkHGD9dsGk50fbeHRajNzTSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:2b:e1:93:62:79:2d:59:6d:44:a6:d7:98:94:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Jun 14 01:00:53 2025 GMT
Not After : Jun 15 01:00:53 2025 GMT
Subject: CN=5a60e3eaa08481090cf4372db1f9dadcb96c6c18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:83:52:4c:e7:09:0e:05:19:ff:45:c7:cb:56:
25:62:5b:ea:3f:4c:e3:0d:5f:d0:2b:f2:e7:d1:8d:
c0:9a:f1:be:5f:b2:1c:c9:d0:cc:5e:ba:6a:dd:8a:
72:3f:15:df:89:86:dc:7c:0a:3f:4f:05:61:2b:39:
b0:88:80:ce:2a:ae:11:d8:f7:97:3d:d7:e1:d8:8e:
06:df:e9:f6:d7:d2:26:23:b9:17:2b:5b:87:01:93:
00:94:4a:4f:28:d6:71:32:2d:17:56:41:c6:39:4f:
48:d5:18:68:82:50:50:48:43:57:5a:74:eb:de:b7:
b3:6f:37:0b:d6:5e:48:15:2d:76:db:b4:14:1c:48:
cb:44:84:80:5a:a3:83:e3:8e:1a:f0:17:8e:e6:4d:
37:6a:4c:ff:e3:7b:62:c4:c8:78:6d:80:1b:0b:ff:
ad:e5:3f:f0:e8:0e:8e:f7:d2:12:4f:0a:ee:39:95:
21:54:41:7e:43:9f:37:f2:8c:0f:39:0f:39:93:17:
7c:ad:74:d3:9f:2a:2c:28:30:20:ea:ff:77:f0:fe:
2f:e9:67:73:3a:3b:23:4b:91:66:ea:d5:42:31:61:
57:f5:fd:4f:0a:34:82:81:67:93:b9:89:77:48:c0:
3e:1b:ba:ef:db:ad:c9:9b:37:0c:d2:bf:9c:80:b1:
5f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:60:E3:EA:A0:84:81:09:0C:F4:37:2D:B1:F9:DA:DC:B9:6C:6C:18
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f1:ac:59:18:86:01:2a:96:45:fc:ee:42:c8:cc:cd:2b:bf:
a3:61:7c:7a:1b:75:f2:c9:29:f5:a8:64:93:f0:98:2e:3d:77:
17:73:d8:b8:22:52:f1:e1:73:be:1d:c3:10:19:28:43:b8:de:
41:99:e2:cf:17:c8:2c:cb:2c:c1:8a:52:d6:82:3a:f1:4c:43:
5e:18:a8:61:97:22:4b:af:f9:d5:7b:fe:b8:ac:1a:5d:de:f0:
ed:6e:01:3e:26:6b:0b:9d:3e:45:3f:2a:e7:67:15:0f:05:71:
03:50:2c:10:67:9e:0f:4b:25:15:44:ff:fc:48:18:7d:fc:12:
a7:12:09:36:75:93:f7:f1:81:ae:83:bb:a3:2f:ad:f1:fb:25:
30:eb:9d:2b:79:2f:0b:93:28:8e:3e:14:5c:98:4a:10:aa:a6:
6d:15:02:db:67:e7:8f:c9:09:3b:8a:d4:1b:26:24:f3:10:33:
57:ba:cc:a5:60:8a:87:fc:39:a7:4e:fb:ee:1a:ca:17:16:06:
b7:ac:df:e8:05:e5:3e:78:71:76:e0:70:ed:ba:16:77:2f:4f:
d2:cd:ba:62:25:c3:e8:8c:84:ee:d5:a1:23:47:fc:4b:40:a7:
95:e2:80:28:38:02:16:a2:30:d1:d7:cf:92:81:a7:60:cc:ca:
87:c7:d7:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:15:48 2025 by rpki-client