Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
File: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft (raw, json)
Hash identifier: C3nbfGgfXqLxZlDPLT00YgYoB9EYMtKjcmlOAtW2fAA=
Subject key identifier: 68:1A:3A:70:73:BF:F4:D1:82:11:54:BA:CA:A6:9E:13:21:A3:9B:5A
Authority key identifier: 29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
Certificate issuer: /CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Certificate serial: 01976EF538CFF0B537B95F44B4684348220B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
Manifest number: 0165
Signing time: Sat 14 Jun 2025 15:00:53 +0000
Manifest this update: Sat 14 Jun 2025 15:00:53 +0000
Manifest next update: Sun 15 Jun 2025 15:00:53 +0000
Files and hashes: 1: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl (hash: LwW4Sshn5VXDXKipWiFqD+slHqT0XQrBX0H0yofysKc=)
2: l2JOTmWwgvB0Noq1JM57zkDHT7E.roa (hash: fvF/3WFpXW+en1bZSjFDxni1bz8bZU75qvWIdCsVsmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f5:38:cf:f0:b5:37:b9:5f:44:b4:68:43:48:22:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Validity
Not Before: Jun 14 15:00:53 2025 GMT
Not After : Jun 15 15:00:53 2025 GMT
Subject: CN=681a3a7073bff4d1821154bacaa69e1321a39b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1b:0e:03:c5:dc:c6:bd:60:6a:63:a9:7c:77:
8a:6d:27:30:6e:fb:46:07:36:2e:aa:8e:96:2a:99:
1d:6b:20:a7:31:6d:dd:01:09:d6:cd:63:c2:59:a2:
64:16:29:0f:71:0c:cf:86:a6:f5:a9:bf:aa:03:40:
6b:d0:e3:65:f6:dc:d5:07:4e:47:25:83:83:e5:fc:
36:6f:46:22:64:da:72:ba:fb:a3:ed:12:80:27:40:
37:4f:5d:44:4b:02:59:8f:40:56:2f:77:c4:a9:0c:
7f:81:21:98:20:1a:e7:4c:5b:24:05:1d:53:1c:2d:
a0:c2:aa:0e:4b:7e:b2:ef:72:e0:2e:3d:c2:f5:65:
83:8a:2f:86:9e:1c:18:86:a8:9d:f7:89:b6:1d:5c:
bd:ac:44:4b:95:d5:32:56:d0:43:60:50:9d:57:de:
5c:5f:a2:52:1c:65:ac:1d:9d:54:df:9a:ae:61:37:
fd:33:a0:6c:bc:c6:90:89:7f:85:92:2b:73:79:8e:
15:ba:24:90:4c:e5:12:46:4f:5e:4b:bd:9a:70:36:
9b:ab:50:89:dc:e3:e6:71:5a:ce:35:cb:c5:5c:57:
f4:f9:5e:9b:69:da:5c:2d:2d:44:04:be:f4:73:35:
e2:a0:a5:24:6f:a6:37:98:f0:a9:c8:66:d8:e0:78:
d4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1A:3A:70:73:BF:F4:D1:82:11:54:BA:CA:A6:9E:13:21:A3:9B:5A
X509v3 Authority Key Identifier:
keyid:29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:b9:88:4c:5f:e8:39:b5:c6:21:d5:c0:17:14:55:09:f4:9e:
5b:8e:7b:a6:6a:c9:d5:98:4c:a3:91:d9:a1:1a:da:78:19:ee:
16:c1:f5:91:c8:71:fc:e4:91:8a:cf:24:7c:80:cb:18:0a:5f:
9a:17:4a:7c:32:52:51:65:3e:d8:03:4b:23:29:fe:bb:5a:ca:
63:a1:03:fc:a3:21:c0:4a:07:c5:3d:9c:39:fe:a8:ac:13:b3:
fa:08:5a:a9:69:eb:64:5d:ac:2d:43:f2:8b:a6:28:e4:21:8f:
2c:ab:80:dc:8b:c3:71:5a:9b:8a:99:ea:d2:42:65:07:14:40:
61:27:13:3e:b9:4a:c6:24:d9:39:9f:30:c1:7d:9d:e3:7b:df:
d1:a5:85:e7:f7:9d:ec:50:5f:a7:8d:21:70:d0:a6:67:4c:c8:
4d:cb:e4:81:61:2f:25:63:47:55:42:08:cc:4f:bc:6a:8e:9f:
55:44:43:50:f9:6e:5a:03:6c:7e:1e:bc:53:07:00:f8:ae:12:
5e:48:66:85:76:99:09:d4:8d:bb:38:f1:4e:75:3c:b4:88:05:
76:60:61:5b:58:3a:aa:c2:60:f1:a3:40:a6:ca:78:2b:d6:94:
89:ba:5e:b0:93:fc:1f:a8:cd:4e:11:0d:42:c1:36:0e:c9:4c:
71:63:d4:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 00:03:03 2025 by rpki-client