Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
File: KMID1l3y1lvbzzyINELdq1WjvN4.mft (raw, json)
Hash identifier: ZpI276b5Fd7cYOIhkHn24JSkqeVxAhvZjQ+AIBO/u2Q=
Subject key identifier: FC:B0:7A:67:19:18:70:BD:5F:AF:27:E2:C8:A2:EF:06:A0:CC:FB:BC
Authority key identifier: 28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
Certificate issuer: /CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Certificate serial: 01977150F6173022FF9CE8FD94876FD039E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
Manifest number: 0B7F
Signing time: Sun 15 Jun 2025 02:00:20 +0000
Manifest this update: Sun 15 Jun 2025 02:00:20 +0000
Manifest next update: Mon 16 Jun 2025 02:00:20 +0000
Files and hashes: 1: KMID1l3y1lvbzzyINELdq1WjvN4.crl (hash: e9r94kRtEmXXZ6T4ZUGzSNwvoPb0B/urEATiHJisVdk=)
2: eEe-w2donDCxX-tAzaEpFb0UtVY.roa (hash: g2d5FELl0EWl1pKF09WRuqqNzRt0N8/ZzyiwDHce4Xk=)
3: kA_OSzYdIA2vmO2YYor5kHVNHTQ.roa (hash: na+fNS4+KPnZVKtvI9VPkmEDxvmlZJBhohUxDwUJWbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:50:f6:17:30:22:ff:9c:e8:fd:94:87:6f:d0:39:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Validity
Not Before: Jun 15 02:00:20 2025 GMT
Not After : Jun 16 02:00:20 2025 GMT
Subject: CN=fcb07a67191870bd5faf27e2c8a2ef06a0ccfbbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:4f:db:a5:2b:91:41:6e:af:5f:3e:f6:2d:e2:
2e:43:17:fd:21:93:7e:5a:fb:f9:4c:09:f1:09:fc:
d6:e2:bf:2e:2d:e7:ca:c6:dc:99:cf:3d:06:83:91:
fa:64:39:83:2c:cc:cc:a7:4c:aa:ab:c1:34:5a:29:
be:90:ab:56:fd:c4:3c:ff:54:40:a4:60:1a:47:37:
68:9d:de:ca:ef:23:52:0d:b8:71:f6:7b:3b:79:4d:
59:b3:61:73:77:a5:f3:c0:55:d5:8b:bd:00:99:4d:
98:67:c5:e2:33:af:3e:e1:30:35:e0:95:48:6f:fb:
0b:87:b8:f4:bd:4f:3e:c4:13:52:9f:c6:3c:3c:c6:
21:4b:47:14:07:e4:f3:11:11:54:dc:32:5c:8f:b3:
5b:3a:b0:b8:e4:2d:4e:ca:3b:46:dc:e0:69:de:b6:
85:13:b0:cf:d5:ec:24:cd:d3:2a:36:5d:5f:fe:df:
71:0d:0e:dc:f1:3e:f6:ba:a8:70:64:86:62:26:bb:
a4:f1:66:8b:c6:36:29:4f:d5:93:6e:96:d0:1f:c6:
fe:4c:55:34:12:c7:8d:a8:33:27:ab:88:a3:68:21:
ec:95:6f:a6:24:4b:ba:64:43:5b:0e:63:41:4d:d7:
80:d6:ac:66:de:7c:a9:a6:1d:b0:5a:bb:d8:d8:38:
b3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B0:7A:67:19:18:70:BD:5F:AF:27:E2:C8:A2:EF:06:A0:CC:FB:BC
X509v3 Authority Key Identifier:
keyid:28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:20:fc:22:11:df:50:d2:b1:31:92:15:fc:6d:00:27:61:d7:
58:18:a6:39:7a:c1:9a:39:02:a8:95:57:92:ad:19:14:5d:64:
d2:15:fc:b8:09:ca:b2:78:40:d4:cd:f1:ae:7b:02:c5:e6:ed:
db:11:77:2e:9b:0d:b8:51:0b:a7:9b:95:a7:e8:a0:14:ab:de:
02:79:f9:ed:b8:61:6c:85:08:4f:f4:43:8e:83:8d:05:10:d6:
15:51:55:fb:82:7a:32:b4:64:73:1a:ae:a5:05:ed:65:25:a5:
3b:dd:7f:e8:50:5b:57:b5:1a:bd:0f:fb:cb:30:e2:eb:d1:db:
1c:ea:8a:68:67:62:44:6f:7f:62:ef:01:57:3f:16:74:d4:52:
6c:78:21:47:27:b1:ad:75:64:89:c8:7a:da:c8:47:1f:00:6b:
52:74:b5:58:51:e0:87:e5:ae:77:32:28:34:a8:d6:9a:db:b0:
8c:68:52:b5:e6:6f:d4:49:81:74:97:4e:de:03:5c:0f:8f:6e:
c3:e2:f3:6d:e9:80:a3:67:c1:31:1f:22:24:b0:9b:a2:2a:01:
77:a2:5c:ad:da:77:97:a8:df:77:23:f5:b2:9f:56:27:9f:e2:
a1:7e:c8:e8:f4:8b:82:ad:df:ff:db:87:af:4d:97:3b:84:43:
ae:78:35:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 13:01:22 2025 by rpki-client