Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
File: KeoL3n9pK8X9wLFoumFKAnLy5k0.mft (raw, json)
Hash identifier: aY+bd9/slDOjfzVIR3K0I7fawoyx2FWIViTjUVtakSk=
Subject key identifier: F2:FC:94:E4:3E:3A:5C:78:5E:B3:83:3E:78:F1:98:34:13:1D:92:51
Authority key identifier: 29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
Certificate issuer: /CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Certificate serial: 0197696102C5863655138BAFFC1B47DD850D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
Manifest number: 0BF8
Signing time: Fri 13 Jun 2025 13:00:54 +0000
Manifest this update: Fri 13 Jun 2025 13:00:54 +0000
Manifest next update: Sat 14 Jun 2025 13:00:54 +0000
Files and hashes: 1: 9cEvXYVcBJeRVXoK10hhOCyNhJY.roa (hash: ihTe2JjgXGvlLA7K+HxYQQd7iWcLoXsDNyag9kYHBGk=)
2: KeoL3n9pK8X9wLFoumFKAnLy5k0.crl (hash: 5OlwufuSHDljhR1CCWfBR4X0tHCIJLGSLH3kmq8l4PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 13:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:02:c5:86:36:55:13:8b:af:fc:1b:47:dd:85:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Validity
Not Before: Jun 13 13:00:54 2025 GMT
Not After : Jun 14 13:00:54 2025 GMT
Subject: CN=f2fc94e43e3a5c785eb3833e78f19834131d9251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f7:a5:e7:54:8a:fd:23:a7:b4:08:90:8c:56:
b3:80:a8:ed:aa:82:0b:a9:e9:49:57:50:e8:cd:c1:
a6:c3:79:a7:09:fc:a3:e9:18:a6:c7:0b:dc:3f:53:
2e:84:36:bd:dc:32:f0:6a:b0:69:4a:84:d0:e1:c4:
be:95:0e:ac:0d:73:44:5f:5d:88:bf:9f:46:97:e3:
22:98:2d:c8:7e:69:6d:91:8b:32:bd:40:1d:b7:6a:
45:84:5c:bc:fa:f0:35:ab:5f:0c:68:87:a0:0a:39:
10:9b:df:19:ab:f6:17:65:c0:97:68:9b:fc:55:38:
2a:09:bd:f5:b3:2f:87:cb:fb:ce:55:e0:d4:1b:18:
cf:9d:b0:34:fe:94:74:a9:59:61:06:a7:25:6c:96:
50:f6:26:c1:a4:ab:98:62:dd:98:3a:fa:cd:c5:41:
a3:b4:b0:1b:95:ae:1e:ce:a9:0e:71:2a:ae:1f:74:
fd:9c:ba:38:00:07:8f:12:c8:ea:d8:22:56:92:d3:
be:82:ac:d7:31:04:bd:ee:67:d7:69:62:73:ec:e9:
d6:2b:b0:46:9f:b4:d9:44:ce:8c:35:87:a5:90:bf:
9d:66:9e:9e:9a:48:4f:c0:7f:7a:94:4d:9d:09:4d:
9b:8f:51:ab:d8:c9:81:46:d3:8d:c3:62:db:16:29:
32:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:FC:94:E4:3E:3A:5C:78:5E:B3:83:3E:78:F1:98:34:13:1D:92:51
X509v3 Authority Key Identifier:
keyid:29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:bf:f8:de:de:a7:ad:94:39:a5:0d:23:b5:8c:a5:33:65:c0:
65:ca:d2:e1:16:7b:84:3b:6b:80:9b:4f:86:76:a3:13:9f:18:
60:9b:48:76:ba:70:42:90:a7:ec:9b:6a:2d:01:c1:28:d1:6c:
df:d4:bb:3f:f2:56:2e:8c:92:02:62:07:f0:09:fd:ab:a1:75:
78:6c:d4:8e:a3:03:f2:99:19:7b:88:e9:fe:e7:73:a0:b8:c9:
b5:96:1c:12:f9:f2:4d:fd:a9:8f:aa:bc:67:21:eb:de:d6:c9:
0f:e3:d8:63:ef:37:2b:00:ad:4e:28:09:1e:cc:99:fe:0d:1b:
1b:ac:12:bd:58:73:b5:34:e0:25:ec:17:2b:e5:51:50:a3:a7:
61:79:34:85:97:e5:b6:f7:33:cc:e7:44:12:e9:21:77:ba:dd:
71:58:8b:4c:75:ff:96:4d:b4:0a:1e:19:48:3c:44:4b:1e:bc:
fe:aa:f5:af:f9:40:7c:e3:a6:9c:9e:31:0a:1f:b4:1c:6a:cb:
7e:44:f1:d6:2b:72:de:74:3e:ed:f7:86:c4:a0:39:1e:29:8a:
1d:0e:53:60:19:34:d2:88:30:d0:24:75:08:5c:2e:da:4a:ad:
90:db:6b:9d:5e:02:1d:10:46:ab:19:7f:4f:b5:29:4a:da:57:
46:ca:54:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:09:59 2025 by rpki-client