Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: t1Y20sok3FbBiH6xJ8SVvj9tzR3kwDXA2cVXWm5w8TM=
Subject key identifier: A5:E4:15:5E:9A:4E:69:D1:83:8B:90:41:F0:DF:01:B5:9D:03:CB:DB
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 0197696185A3CBE34653E77434ECF692249C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 04A6
Signing time: Fri 13 Jun 2025 13:01:28 +0000
Manifest this update: Fri 13 Jun 2025 13:01:28 +0000
Manifest next update: Sat 14 Jun 2025 13:01:28 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: D+QNBYMYPmqX5EAlngrpxEQp+revkSn8VRavubxbBcc=)
2: N3FIvLoAi-SrbWKri-QxAJXERl0.roa (hash: oePUnAR/4Fy7x02aEJQp05kRfdkIvxnqMAYzYP5D1B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:85:a3:cb:e3:46:53:e7:74:34:ec:f6:92:24:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Jun 13 13:01:28 2025 GMT
Not After : Jun 14 13:01:28 2025 GMT
Subject: CN=a5e4155e9a4e69d1838b9041f0df01b59d03cbdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ff:5b:ef:5e:3b:e7:bc:df:65:87:ba:a2:45:
92:14:6b:1a:02:73:da:01:79:59:83:d9:5d:59:60:
ca:82:a2:98:c6:c7:9b:34:d5:b6:55:00:7b:0d:08:
f2:88:66:28:25:11:7c:68:57:53:aa:e6:18:56:da:
e3:84:7d:64:00:3d:2a:35:7f:50:2d:80:08:64:c9:
d6:c4:d0:2b:5e:54:7b:4c:5c:dc:49:5a:5a:29:97:
78:0e:10:2e:41:20:ed:55:56:96:af:65:8c:e5:ac:
11:b6:2a:f0:31:a4:b4:91:bf:3b:61:7e:54:f1:33:
c9:2a:df:1f:d4:83:ab:3f:67:05:4b:6e:46:b2:8e:
6c:3c:36:2b:bb:2a:b1:9f:d1:de:b8:0b:df:a7:9f:
d7:43:fa:a4:e6:66:d8:7f:b7:ab:1f:5e:0a:f9:15:
2d:7e:8f:c9:4f:8c:1e:31:d8:d6:32:a4:7e:bb:be:
8f:92:14:b8:97:7a:81:fb:f5:f1:c4:fe:81:a5:34:
4a:8e:21:3b:0b:4b:cf:a4:41:6c:05:d8:ac:d0:be:
ca:ee:7a:44:64:b7:bc:5d:6e:05:65:f0:ed:5d:17:
4b:a8:0f:22:59:59:88:50:32:6e:3d:38:8b:6a:39:
fe:11:0d:e1:98:cd:f8:6a:c9:d2:ed:fc:b6:09:96:
f1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E4:15:5E:9A:4E:69:D1:83:8B:90:41:F0:DF:01:B5:9D:03:CB:DB
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:cc:7e:58:c4:c3:c8:64:52:b6:f6:e0:46:16:eb:fc:df:43:
fc:62:c3:ca:04:3f:69:b8:eb:c0:80:d1:90:56:8e:cb:49:44:
fb:09:5e:48:05:71:1f:b4:75:96:39:ad:e4:1c:34:26:0a:f9:
21:3c:db:71:ed:fb:6a:8e:a0:43:bc:23:cd:03:47:c2:7e:1a:
e6:8f:36:bb:e9:d7:c6:ee:c4:20:9a:cf:2d:e9:ea:a5:6a:95:
94:f8:21:c2:d1:11:ba:b3:83:20:a0:54:23:d4:da:bb:5c:a3:
e4:d6:86:18:27:90:19:22:0b:db:21:f3:34:7b:61:7b:cb:68:
ff:d9:49:4d:2c:2f:d6:e0:9b:6c:7a:bc:a4:5f:da:b7:d0:12:
1a:cd:74:bc:77:6c:47:62:88:f8:6a:a9:4d:9a:85:b2:63:f5:
a5:73:60:52:7d:1e:e7:09:c1:28:6c:18:28:bb:21:be:4a:26:
bd:1e:ff:b0:dd:b5:18:f7:e2:8e:30:56:5a:bd:0e:88:cc:ec:
8d:8c:b7:c4:3e:6f:8a:20:8e:69:cb:2f:08:5b:fe:f0:72:a0:
91:da:f7:f1:43:a4:2f:94:5d:ba:dd:27:62:5c:5a:96:3a:55:
33:b2:ef:3f:9d:d7:43:e5:b6:08:5b:86:1d:82:a2:d5:7e:97:
fa:f0:ad:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:08:28 2025 by rpki-client