Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
File: KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft (raw, json)
Hash identifier: NMDzUT5o77orKB4k2b3ztbxYJIip92vVVvMCveJQjcI=
Subject key identifier: 3D:2F:92:7E:BE:74:C0:2C:60:81:2A:D2:35:E6:6E:6A:7D:D3:15:DF
Authority key identifier: 2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
Certificate issuer: /CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Certificate serial: 0198D54E79FBA3CDF0FA06864FB2C3ABFF83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
Manifest number: 0E43
Signing time: Sat 23 Aug 2025 05:02:26 +0000
Manifest this update: Sat 23 Aug 2025 05:02:26 +0000
Manifest next update: Sun 24 Aug 2025 05:02:26 +0000
Files and hashes: 1: 3tVWAqpuhZmIvirALPURMbWbRUo.roa (hash: 8vZgncUoPoI0S65ff9n3cIU9sKbrNMXpH1mUnl/CdOM=)
2: GerACxDWw1b6KGz6kGs5iVp2ois.roa (hash: 4GcODZKqecND9v8xjlb0j4xGLtBy9xZhAi6ymZShRcQ=)
3: KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl (hash: o21JofmK3lmFqKHU0CPz0Nxs/o3eD9gA7B0YHbEMJ4I=)
4: LEyJ2WNBj9cTPetK4hsEfLcBcEI.roa (hash: WmOLEifdPoH/joG2SNYp6mcbI8myXya9UUZozRyBF44=)
5: Qy3Q7lh00t0205L0nhmAvt2uoOs.roa (hash: a4ie5/FL3GVO5YHgzPjyXYH6PIkYqfX1mb+x+F8lR9c=)
6: X35BdP6fZcPzqxMLjnciq7uISgs.roa (hash: X6IFONVs0ZqJ9lk+Np5sgqP+DTo255gzewtTiaP3PC0=)
7: eGuHIFNh-O-K6vz68gcxBeLPa18.roa (hash: G6cEnCf7JWL4wnvSWWO7ELeSvpGDDJYGerFFAWSt9CA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:79:fb:a3:cd:f0:fa:06:86:4f:b2:c3:ab:ff:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Validity
Not Before: Aug 23 05:02:26 2025 GMT
Not After : Aug 24 05:02:26 2025 GMT
Subject: CN=3d2f927ebe74c02c60812ad235e66e6a7dd315df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3f:b1:66:11:be:ad:13:38:d4:8d:ad:77:c1:
97:1a:54:d6:85:a4:00:4e:6e:a5:5b:b3:04:f4:25:
f2:5c:30:bd:0e:2f:74:0d:a2:ab:e0:93:9e:de:7a:
a5:b6:02:57:1b:2e:05:1b:c1:09:b1:53:bc:54:61:
0b:81:8a:87:9e:1e:87:9b:f4:f8:ce:cd:c8:96:d2:
54:d2:11:9c:2c:d0:0d:ba:43:44:fa:ff:60:fd:70:
13:41:16:e0:00:66:aa:f7:52:33:96:80:58:56:b1:
11:3b:70:6d:b4:54:16:d4:87:50:f4:65:e4:c6:be:
a6:6b:ed:51:b1:5b:df:14:41:7e:78:99:7b:81:34:
e5:48:6b:4f:23:b7:ee:78:d8:89:c9:43:14:55:06:
95:91:78:c5:59:45:06:04:f8:31:ca:36:df:0b:7a:
00:0c:69:f0:bd:e8:d3:fe:da:0f:00:1a:e8:91:85:
65:83:fc:28:2c:73:b8:b4:43:cd:6a:14:89:9e:db:
54:f3:c6:3a:f4:26:d1:4c:55:24:c4:92:91:4c:c2:
f8:f3:2e:21:c1:0e:25:a0:58:e9:42:23:d4:f4:a0:
6d:7c:09:4e:5b:e9:49:6e:6e:27:0c:97:6d:b6:d2:
29:9f:44:07:aa:53:f6:99:17:fb:ee:c6:dd:7b:45:
36:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2F:92:7E:BE:74:C0:2C:60:81:2A:D2:35:E6:6E:6A:7D:D3:15:DF
X509v3 Authority Key Identifier:
keyid:2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:bc:f2:ea:fe:40:65:b3:50:e7:b0:c7:67:d7:f6:ae:22:11:
9d:a1:07:12:d8:9e:c7:5e:8a:53:e2:5f:07:27:44:81:8d:25:
82:c9:eb:cd:97:8c:05:21:52:89:87:ca:89:61:fe:d4:86:a6:
c8:4d:f8:c0:73:55:80:84:4b:57:6a:c7:59:2a:3f:9f:37:73:
68:de:b3:ef:d8:0e:63:f8:cb:d7:81:01:b4:f2:18:30:47:fe:
44:59:37:d5:47:71:b7:5c:33:77:4a:ea:39:39:c4:56:1e:16:
e1:d2:e2:cf:e7:ef:91:8c:6c:aa:a3:58:d1:4d:36:24:c2:59:
3e:64:f8:22:c5:0d:8d:ab:01:6c:57:15:59:af:64:ef:ca:e1:
0c:0c:24:a6:21:ec:43:05:c1:de:e5:6a:b3:e1:cd:cd:a4:54:
4e:62:51:77:77:f2:5c:da:91:95:e5:1d:f0:e5:8c:71:9a:2e:
a8:6a:50:44:9b:54:6f:70:4c:52:52:a8:3e:a1:3b:b2:f0:b4:
25:e3:3b:3e:4f:63:98:a9:70:c6:22:0a:1f:18:09:ea:5d:e8:
a5:35:e3:5f:25:5e:c9:4c:a1:06:31:74:84:d0:37:db:9b:bf:
9a:7a:6f:38:d5:d7:a9:5c:29:1e:f6:73:ed:1e:65:1b:9f:e1:
26:64:43:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:22:49 2025 by rpki-client