Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
File: KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft (raw, json)
Hash identifier: W5mMrUSRAJEUrWKxPxZSeK/zLS9NGAVgKDTdCJX5mMM=
Subject key identifier: 87:22:2F:A4:FD:71:8F:27:69:60:44:99:9A:B1:DA:30:71:36:5B:07
Authority key identifier: 28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
Certificate issuer: /CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Certificate serial: 01976929A84A66F882E7EF1830FC5F2B627B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
Manifest number: 0A73
Signing time: Fri 13 Jun 2025 12:00:27 +0000
Manifest this update: Fri 13 Jun 2025 12:00:27 +0000
Manifest next update: Sat 14 Jun 2025 12:00:27 +0000
Files and hashes: 1: 0i9Bsr9ABLnx3mgPWtu21_vME3g.roa (hash: TMrcqTSOi1Ov7CcLLSWohgeiaaCi8xEADwSrQIF/DCo=)
2: KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl (hash: MgXYvUfT9vpdILpnDlX8rYCuUjd7wiC0G5FLh34k/KM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:29:a8:4a:66:f8:82:e7:ef:18:30:fc:5f:2b:62:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Validity
Not Before: Jun 13 12:00:27 2025 GMT
Not After : Jun 14 12:00:27 2025 GMT
Subject: CN=87222fa4fd718f27696044999ab1da3071365b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9f:0a:81:0e:0b:b6:c3:1f:02:b6:fb:d5:d3:
28:f5:93:31:4e:ff:17:d1:4a:e9:04:f5:77:5a:5b:
a7:36:a9:32:05:2a:e7:f7:ee:19:a4:df:5f:d5:54:
7a:be:5c:27:55:7e:51:42:84:bd:ce:d2:ac:b6:c3:
8d:7e:db:1e:09:87:b6:86:fe:53:17:da:b8:b9:70:
b1:37:ed:4b:65:b9:c9:fe:95:ed:fd:a7:6e:4a:eb:
a2:1d:22:3f:fb:55:7b:19:aa:33:b3:e9:84:67:92:
ae:ca:d4:f1:c5:2f:c5:64:18:53:c4:17:8b:e0:e6:
8a:cd:ce:2a:b5:d8:96:03:d5:e1:f4:79:0e:03:63:
9d:ef:b6:5f:53:5d:ff:45:dc:a7:45:19:5e:f9:83:
a7:fb:47:dc:8a:32:79:8b:33:58:24:cb:a7:36:c8:
9f:20:94:89:c7:e1:a9:02:ad:85:9f:3d:47:6a:39:
86:b8:fb:f8:75:03:18:70:b6:08:58:44:c5:f5:5e:
b0:ad:1e:7b:4f:d1:62:df:42:6f:ec:ba:6a:19:4a:
8e:dd:00:c1:e1:1e:f6:fe:fc:16:6f:e4:07:67:ee:
bd:aa:14:81:0d:a9:92:34:38:d1:c7:47:01:00:2e:
7e:95:56:9a:42:4e:bb:1c:c0:d5:be:16:43:57:1e:
62:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:22:2F:A4:FD:71:8F:27:69:60:44:99:9A:B1:DA:30:71:36:5B:07
X509v3 Authority Key Identifier:
keyid:28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:78:5d:17:2d:51:b1:fd:56:90:ec:69:43:41:07:2d:cc:57:
b9:6d:1f:45:9e:db:79:1f:97:d8:51:80:5e:63:35:27:74:e9:
90:13:98:af:51:bd:93:62:35:37:dd:08:6d:a3:a7:a5:20:76:
03:94:8a:ea:e8:fc:34:cc:37:17:a2:eb:8e:68:2e:fd:22:51:
7e:69:b5:86:42:4e:c2:0c:f0:a0:30:3c:b6:44:19:71:9f:04:
a8:49:e7:ed:0e:cb:3d:ac:56:18:d4:54:bc:a4:f1:16:4e:ad:
4e:04:ab:ac:c8:b3:0c:65:78:46:89:2d:ad:04:37:34:02:b6:
dc:9a:dd:32:4d:9f:00:c1:d8:1b:87:63:1a:11:94:f5:66:97:
2a:76:54:86:49:b6:57:81:40:ec:6f:0c:95:ed:75:17:f9:98:
67:57:e3:ce:da:50:24:dd:a0:76:fa:93:56:cd:68:45:68:c6:
8c:ab:3b:38:b1:fd:79:e8:72:7e:26:8c:d6:93:0d:c0:76:25:
23:9c:5c:7c:5d:d5:f5:91:b7:96:44:37:5e:08:70:8c:31:9d:
ab:78:71:83:b7:99:60:6a:8b:9a:6a:c9:fc:a7:2f:f7:8f:0d:
c2:12:78:98:8d:06:c2:b2:1d:2e:c2:b1:22:5d:70:a6:22:2c:
d9:99:e5:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:22:37 2025 by rpki-client