Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
File: KXNk9QJTTodxoMYll5TCbibUvKQ.mft (raw, json)
Hash identifier: xSNbGYI7F/ki5znjBajl1C6rSRoPFHVSXtfEIObiLD4=
Subject key identifier: 5D:F3:E3:AD:FA:33:0B:83:52:D3:6E:7E:76:FD:0F:B3:85:BE:99:72
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 0198D6604E07A73767281ED51AF4D701BB71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
Manifest number: 14B5
Signing time: Sat 23 Aug 2025 10:01:32 +0000
Manifest this update: Sat 23 Aug 2025 10:01:32 +0000
Manifest next update: Sun 24 Aug 2025 10:01:32 +0000
Files and hashes: 1: 2Cp_JC-1gSdENPjM_UWn9lNVG7o.roa (hash: +35xjqek9Nhlc/Z0+VDCYx/DAJw10REdvRuvu6t5M3s=)
2: 30p15OIB4xzHle9tD78XYhbRDYI.roa (hash: 9HVb43mRInURyExw74+VWFanW5TCiRHL7zKkRNQfWwc=)
3: 46l3zcDNK_2V63AreaLMsQrAgaE.roa (hash: yY63fb353nPGfB15WkNs5SfqIg+XAt04c2yklxwzqUk=)
4: DrQJgIgCadGbo__38qvLm4f2buQ.roa (hash: Wx23py7fw++y8qecqXEe1C97qUaOVg6INU3OjKvg+YE=)
5: KXNk9QJTTodxoMYll5TCbibUvKQ.crl (hash: rDrruyNrswn3jmIt0cc8uCO4dPa15MKdMpnBrGI3dGg=)
6: Kc-1Z4R9k1b9QbprK1lrnIRFuzo.roa (hash: mIf5b4mKVeZgEr7VsdotpcNIdYch/DFkBdwgO8kit9A=)
7: lTAav4yQpZ87qw_zIchzIsq-5gM.roa (hash: 3b9+qDTSwpfJP/SrqHspJoxR/TN3seQEWvBLhEVGMW0=)
8: x8RX4rKBNmZcMpsvt4Nm7APSjAM.roa (hash: zc30VoGi96Z1iHoOnbaFFXszAPpJE3UJpyJWRy15Byo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:4e:07:a7:37:67:28:1e:d5:1a:f4:d7:01:bb:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Aug 23 10:01:32 2025 GMT
Not After : Aug 24 10:01:32 2025 GMT
Subject: CN=5df3e3adfa330b8352d36e7e76fd0fb385be9972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:16:af:69:4f:85:c9:10:ee:da:e7:f7:e1:5a:
94:3d:7c:c8:0e:5a:3e:5c:8b:7e:1b:64:93:e5:09:
02:ba:3a:3c:34:15:32:49:29:db:d9:83:71:71:2b:
9a:af:ed:b8:79:04:48:cd:64:7c:86:1a:01:56:10:
af:d3:1e:61:ee:3b:19:bb:9e:c8:9f:5b:34:fb:4d:
18:2d:28:7a:c2:27:a7:b5:71:22:64:0f:d5:e2:61:
5c:99:4f:fe:39:a4:a3:39:2d:3c:fb:2d:0f:e5:01:
8c:73:3a:8c:19:3a:6c:22:20:05:91:16:16:26:39:
74:d0:4e:0f:3b:af:29:89:76:f4:5c:c4:f7:48:da:
5e:a0:e0:7a:f4:05:a8:4b:cb:f5:a0:90:bf:bf:8f:
12:4f:a9:cb:51:85:00:99:c1:09:ec:86:0f:b0:eb:
0b:97:34:98:2f:a9:bc:b2:61:0f:90:4c:7b:22:ce:
19:fd:47:23:ea:6d:bb:a4:4e:06:5a:ce:27:22:59:
64:9c:be:93:e0:a5:22:bd:84:bc:f5:fc:35:ac:04:
aa:81:4e:fa:78:f2:e0:a7:18:d8:da:6d:15:ac:e0:
6a:8b:e4:63:46:be:17:77:ba:a4:3e:0e:8c:e2:8f:
9a:9b:f3:b6:58:bd:67:2a:80:d2:f7:c9:41:03:b1:
6c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F3:E3:AD:FA:33:0B:83:52:D3:6E:7E:76:FD:0F:B3:85:BE:99:72
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:c3:66:80:c8:54:32:60:0f:b9:b5:ad:b5:1a:44:83:69:82:
f5:21:36:25:66:58:b6:2b:8e:66:35:4c:4d:0c:ba:9d:7a:3e:
51:1e:cf:6c:e8:65:c8:dd:21:fe:f2:8a:c2:13:96:48:16:eb:
50:76:bf:96:2b:5d:b7:09:41:10:93:2c:0d:cb:b1:24:fb:6e:
cf:16:ba:3e:6c:37:41:95:f4:a5:7a:52:90:b7:f8:15:44:af:
a2:88:89:50:74:d4:f6:37:fd:5f:30:03:b4:38:83:9e:bb:ca:
3f:4b:08:2d:2e:79:1d:78:74:95:5f:b8:2c:3a:bb:fa:b4:0c:
c6:c7:87:b7:d1:ec:40:a6:b1:c3:07:12:1c:2d:d3:b5:ec:89:
9a:c7:0d:98:ef:b3:c2:19:a2:bf:45:fd:e4:79:dc:55:24:e8:
f3:16:0d:06:5d:b9:d0:a9:97:9b:5c:e8:38:b7:68:a0:20:ac:
c6:9e:2b:0e:e7:d6:0e:99:dc:85:e9:a2:0f:a8:6c:f4:3b:58:
4a:7c:66:ea:d5:ac:f3:f2:eb:cf:bc:66:e5:26:4b:5e:c7:fa:
a2:1b:8f:03:4c:fb:30:d2:db:2e:1e:b8:54:98:38:9e:a9:4e:
f7:e1:56:eb:dc:8a:87:6d:c3:b7:f4:66:4f:38:23:4b:5e:74:
1f:eb:e5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:13:51 2025 by rpki-client