Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: 1URbXex3rDjril+4rkP/8/fBjnqMBtqMQqIHkysMIaI=
Subject key identifier: BB:8B:5D:E6:C7:51:BA:00:8D:BE:B2:B9:E2:F6:DA:62:E1:D0:2C:0E
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 019875D08A6D06836486068BF99CABC2377B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 0531
Signing time: Mon 04 Aug 2025 16:00:57 +0000
Manifest this update: Mon 04 Aug 2025 16:00:57 +0000
Manifest next update: Tue 05 Aug 2025 16:00:57 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: +i97lG2/HRVVv3GQ1a+4thalH6D1ezrZcqeuErNOyls=)
2: N3FIvLoAi-SrbWKri-QxAJXERl0.roa (hash: oePUnAR/4Fy7x02aEJQp05kRfdkIvxnqMAYzYP5D1B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d0:8a:6d:06:83:64:86:06:8b:f9:9c:ab:c2:37:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Aug 4 16:00:57 2025 GMT
Not After : Aug 5 16:00:57 2025 GMT
Subject: CN=bb8b5de6c751ba008dbeb2b9e2f6da62e1d02c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c2:97:53:ea:c2:d6:8b:1a:d0:1f:48:6b:7b:
b3:19:a0:d9:11:db:40:f3:dc:46:16:b9:6b:81:e1:
15:a9:09:83:4f:3b:d0:55:51:d3:0c:57:58:11:7a:
a5:9a:f7:18:63:e1:37:27:29:15:59:88:af:b7:1f:
c8:fa:45:a1:d4:9a:38:5f:80:12:db:dd:d8:4e:6d:
cb:7d:29:cf:9a:23:78:d4:77:80:34:28:4e:f0:e4:
74:5a:df:3f:32:2c:5d:83:9d:c7:a3:40:04:06:74:
48:39:aa:37:ed:40:7f:b4:61:59:da:15:65:ff:0f:
b9:ca:5c:ba:56:db:57:48:c0:81:27:c8:c6:83:5f:
e8:f4:2a:80:41:f5:b2:06:2e:7b:03:4a:f7:41:c7:
4b:db:c1:7d:ac:97:e7:e8:86:51:f8:49:30:5e:34:
6c:79:b0:ba:9d:19:6f:1b:fb:43:6a:96:5c:6f:ab:
6d:b9:f5:c9:2f:a1:74:f8:db:a3:a0:bb:6f:97:46:
9f:06:38:ca:d3:86:90:3c:9c:b1:87:c5:f2:55:b9:
4b:a5:74:2d:84:fb:f0:3b:85:fa:be:af:ce:3a:a2:
fd:a5:59:90:05:40:07:73:63:af:7e:e5:88:e6:2c:
05:bd:7c:a1:0f:8f:7a:f6:a1:52:93:5a:f6:c2:7b:
9f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:8B:5D:E6:C7:51:BA:00:8D:BE:B2:B9:E2:F6:DA:62:E1:D0:2C:0E
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:0f:17:69:dc:8e:da:5d:8d:55:21:dc:50:35:45:7e:c8:05:
b0:1e:54:59:7a:cc:1c:5a:1e:3e:9c:ba:4b:f5:70:02:dd:8a:
63:f9:a8:8f:f9:b6:a6:12:ed:0a:64:79:86:2d:22:5a:09:3d:
3c:a7:81:be:2c:cf:a4:c7:ce:8a:6e:42:8c:89:df:c6:18:5e:
3b:47:00:e4:35:1a:ec:85:28:04:f4:69:68:59:55:24:64:e2:
f8:46:57:41:c5:5a:bb:a9:ba:fb:9e:38:b6:50:d4:35:a0:89:
99:a6:dc:83:26:21:1a:f4:ca:32:cb:b8:b6:e0:39:89:f1:11:
8c:cf:4a:4d:e5:65:ef:1b:27:ec:da:80:31:5f:cd:79:d1:ff:
cd:94:f3:12:d6:a4:bb:17:18:a0:3c:39:e6:9c:67:ee:e9:d1:
91:70:9d:9b:2e:5a:ce:8e:03:20:91:79:63:63:5b:71:c6:ab:
55:a2:00:d2:62:2c:71:90:9e:55:56:29:07:2b:ab:0d:76:b8:
5f:c9:09:e5:35:e1:e3:3b:be:2a:cf:a3:d0:6c:0d:13:a4:71:
a3:1a:10:6b:9b:f8:e3:d7:50:76:85:80:72:59:0b:55:56:22:
89:a6:1e:55:a6:05:aa:0b:31:90:62:54:67:ce:51:8f:b6:2f:
cd:62:a1:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 18:37:17 2025 by rpki-client