Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
File: KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft (raw, json)
Hash identifier: R2N7P6mIO02YqhCs40qo+/GMaDn9zp5Z7NVs7JTiDwQ=
Subject key identifier: 0B:C6:F6:E0:74:09:07:55:DC:33:20:F2:78:04:AD:0C:63:1C:B0:47
Authority key identifier: 2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
Certificate issuer: /CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Certificate serial: 0198D8506F004B385A0C3AADD83C6BBC5E8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
Manifest number: 0B66
Signing time: Sat 23 Aug 2025 19:03:26 +0000
Manifest this update: Sat 23 Aug 2025 19:03:26 +0000
Manifest next update: Sun 24 Aug 2025 19:03:26 +0000
Files and hashes: 1: HDOhzz0jBa_Gp9AJUMy27D9Cjlg.roa (hash: lm71x5ibbc8ZUL32IG9cJWwnD/vjqa8xr80jq2AaleE=)
2: KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl (hash: 0yuNsDxl7zOHfkvEaUHIcnvDyJppNJqnEapqAbRq1Zo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:50:6f:00:4b:38:5a:0c:3a:ad:d8:3c:6b:bc:5e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Validity
Not Before: Aug 23 19:03:26 2025 GMT
Not After : Aug 24 19:03:26 2025 GMT
Subject: CN=0bc6f6e074090755dc3320f27804ad0c631cb047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1c:fe:82:4d:b0:fb:f3:65:51:14:8c:89:98:
e7:66:07:9c:15:f2:7b:92:1c:43:47:5f:70:15:65:
74:fd:37:43:8c:a6:eb:4e:e9:50:5d:3a:60:30:d0:
ca:f8:95:15:00:e8:6c:1a:60:5e:5d:32:8a:0f:55:
71:1b:ee:16:1a:b0:35:83:75:bc:bf:94:5c:8a:bc:
83:de:ee:79:89:6c:fb:4d:e6:f7:0e:c9:69:07:ed:
0a:bf:9b:db:5b:be:64:2d:f8:f0:28:9e:99:ff:55:
9a:9e:e6:29:53:de:4e:c2:91:73:b5:35:41:01:e0:
b4:b8:ed:ec:1a:57:ce:52:56:2a:f3:85:ba:6c:7e:
99:4c:08:8c:e3:9e:18:61:df:c6:ba:f8:4d:5c:94:
dd:86:aa:83:47:d1:c4:09:08:9b:e8:5c:ab:9d:ed:
dc:5c:46:5b:a8:ff:5a:64:4e:7b:2c:d5:a9:80:af:
26:b9:97:f1:0e:2c:51:a9:a4:15:d1:51:92:2e:b7:
c1:12:2c:34:43:22:21:66:d0:f1:4a:61:cd:ca:64:
cb:9f:dc:6a:a3:2f:74:6e:9f:1f:a7:ab:af:aa:3f:
b1:de:1b:0c:33:0e:30:55:63:3f:d0:34:73:ef:a8:
93:0c:67:9e:f6:d2:33:ee:7b:7d:c1:29:51:b5:2a:
00:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C6:F6:E0:74:09:07:55:DC:33:20:F2:78:04:AD:0C:63:1C:B0:47
X509v3 Authority Key Identifier:
keyid:2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:ea:c5:11:29:6d:bd:dc:b6:4b:c6:bc:70:eb:3b:c3:0b:05:
79:20:81:3e:27:eb:38:06:90:8e:0a:d8:cd:c3:46:a0:82:36:
ba:2f:8e:18:76:7e:bf:25:a1:e7:2b:51:5a:a7:71:33:80:84:
38:cb:dc:dc:41:86:e8:43:80:c0:d3:62:c2:48:29:f7:ab:63:
a9:74:2e:f1:e9:07:a2:91:34:46:db:d4:34:24:b5:7c:26:13:
12:53:a4:88:19:e1:90:50:33:62:b9:7e:c0:80:e7:f8:59:71:
6d:d5:33:23:e4:7a:c9:80:7d:09:fd:22:62:88:66:a0:20:76:
26:fd:3e:94:ef:4a:bf:0f:cd:52:68:50:83:9a:01:f4:2c:93:
83:eb:bd:75:7e:e4:12:4b:56:4f:ff:eb:53:26:de:a2:81:b6:
a8:9e:59:c1:f0:5b:4b:05:62:4d:6f:a1:59:17:02:95:e6:02:
45:63:06:22:b2:fe:ff:5f:8a:8f:06:4b:94:f3:07:d3:7f:b6:
af:ad:fa:38:d0:26:62:2d:5f:1b:22:d3:bc:dc:e3:70:c8:c3:
8d:88:a8:67:98:09:0e:c9:5a:4b:16:bc:9e:e3:9b:14:8f:66:
e4:9d:69:c0:02:a1:10:49:50:c0:76:5c:4f:a6:27:2d:52:30:
56:74:1e:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:48:04 2025 by rpki-client