Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: 9cI6xXN+rhKVeMyJ/VTpUV1xXh3N8rwTDkxZ0N03rLI=
Subject key identifier: 33:33:1F:2F:E1:9B:E6:33:69:E4:7B:F5:29:F3:09:9C:D9:17:21:D2
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 0198D69876E792D2EBE89535492D796B1529
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 03F5
Signing time: Sat 23 Aug 2025 11:02:52 +0000
Manifest this update: Sat 23 Aug 2025 11:02:52 +0000
Manifest next update: Sun 24 Aug 2025 11:02:52 +0000
Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
3: HxZyQaGrGtOk8RKg0Mhbl06w1Co.roa (hash: T6PK192RHox/GMNjjl8t8FiOFdhRf0h3waZVXZOPKpk=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: O+sdEijQaYpqXBZz1djMNr3fJizsY7n0QfDUeKx5HZE=)
5: PwMQ2FB61zxu5sQ2E09luTqKMvk.roa (hash: izn212mH5oYV5cpl26pTxpZxIsUMzoPkaD7C7yvNm8E=)
6: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
7: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=)
8: od9af71GeQfA9Hxa-pUi9HfyQbQ.roa (hash: XWeJ2o3YIDMGq+Gf7bx+E7FN5efcdXQkm09+SRPSSXw=)
9: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:76:e7:92:d2:eb:e8:95:35:49:2d:79:6b:15:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Aug 23 11:02:52 2025 GMT
Not After : Aug 24 11:02:52 2025 GMT
Subject: CN=33331f2fe19be63369e47bf529f3099cd91721d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f5:94:df:de:63:2e:9c:4b:5c:73:a8:b5:27:
da:f5:c4:36:66:6e:57:0e:50:55:a1:8e:8d:80:e8:
da:ae:6e:ef:9c:3c:30:10:4a:22:bc:bb:7c:63:82:
90:b7:01:26:95:c9:8b:e3:35:32:3f:c6:72:2e:a8:
23:d3:25:70:c1:5f:c6:31:19:95:7e:0a:da:7d:6e:
79:b7:32:1e:54:6a:c3:e6:6c:74:aa:3c:24:82:16:
db:f7:4f:27:fc:ab:cb:f7:6b:b7:fe:56:fc:8b:83:
cd:94:ab:bd:d8:d2:a9:37:cf:fe:5d:e6:1f:6f:d1:
49:c3:78:af:bb:4d:6c:b2:ed:52:81:2b:cc:1a:0f:
16:03:24:2a:3a:1f:80:8f:07:78:cf:10:f6:73:93:
5d:d7:c5:f7:97:e2:a4:6e:1a:b0:c9:e5:03:ea:db:
17:cc:31:c8:5d:ff:e1:07:fc:38:3a:54:36:5d:3a:
36:6c:69:d9:be:fb:03:13:42:17:19:42:76:99:14:
56:96:d3:9c:44:06:54:8b:46:81:78:c1:10:62:f3:
56:12:be:07:95:2d:61:c8:f0:90:b2:74:9b:98:de:
b8:1e:54:a1:8f:24:6f:40:08:0f:f7:23:ae:00:76:
fb:45:07:85:f9:af:45:62:c0:91:90:34:97:39:ba:
0f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:33:1F:2F:E1:9B:E6:33:69:E4:7B:F5:29:F3:09:9C:D9:17:21:D2
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:75:6c:36:cf:8d:8b:46:df:48:9c:e2:c7:09:7f:cf:b6:5c:
10:ad:4c:73:4f:31:0a:5b:06:77:5a:43:e2:33:5a:38:cc:9f:
ff:06:89:96:94:03:d9:05:80:bd:20:56:4c:69:62:69:d1:77:
f3:68:2d:5c:ca:86:4f:e5:36:33:e4:70:79:2f:91:19:65:1a:
dc:59:aa:2b:e6:0e:c9:ba:f9:0b:e5:ec:6b:50:1a:1d:82:b4:
dc:1a:89:4e:ce:43:20:e9:1a:e6:4f:c9:23:48:78:7d:5e:9f:
58:f3:57:7a:77:66:20:14:5c:44:7c:fb:5f:9c:3e:e5:b3:b8:
f5:40:bc:94:db:7d:86:03:aa:96:8b:58:d8:3f:e4:f2:2d:cb:
66:96:54:d1:e8:ca:c6:77:20:53:64:1a:7b:29:30:79:d0:a7:
e5:5f:15:2f:e6:f2:5b:b0:ef:88:59:73:32:99:43:43:5f:53:
e0:8b:3b:47:3d:99:67:fc:29:20:aa:a0:a8:b5:73:32:b5:c3:
ba:6f:ef:d6:81:5c:43:a5:3c:bc:81:74:88:dd:b7:04:96:dd:
d4:1c:21:64:b8:b3:21:10:a3:66:3b:60:e1:8f:40:a8:0c:8f:
c6:dd:95:00:db:51:c8:68:c7:93:0b:99:e2:48:81:2c:59:13:
e5:be:c0:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:08:10 2025 by rpki-client