Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: AUc22JgM+MEtqwIpKMe5cXrzY46X/bo9To9sJtvkZqI=
Subject key identifier: CE:79:C9:D7:D4:4C:26:B2:10:19:3B:F9:61:7A:72:5B:B1:AD:F0:6D
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 0198D65FDF67F8462AC8ED63B4DB80A15591
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 10:01:03 +0000
Manifest this update: Sat 23 Aug 2025 10:01:03 +0000
Manifest next update: Sun 24 Aug 2025 10:01:03 +0000
Files and hashes: 1: K-YJm4wOeLJG8aJ7KI41BLWAM-4.roa (hash: +ltmXAJQfzovJoKfgWj4x9gqmeiriedONmDgSBwWFc4=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: PUtsIyp/TxEYFS5UtK4uefdc3jQNqn0hkPY7XcYbK6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:df:67:f8:46:2a:c8:ed:63:b4:db:80:a1:55:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Aug 23 10:01:03 2025 GMT
Not After : Aug 24 10:01:03 2025 GMT
Subject: CN=ce79c9d7d44c26b210193bf9617a725bb1adf06d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:6e:5c:c9:bb:36:aa:19:bb:f1:38:a3:2e:
2b:6b:14:61:6b:05:f4:c0:f7:46:33:5c:dc:65:d5:
e7:76:ea:d7:58:f9:7b:6c:62:b9:f7:ff:a7:64:56:
cb:21:bc:6e:b4:5b:ab:dc:2d:39:ca:32:72:73:b7:
0e:ae:4a:0f:af:fd:f4:f9:58:9b:49:53:91:2a:e7:
78:46:ba:58:fe:ee:33:c7:50:3f:ca:75:75:93:5a:
b6:0d:63:0e:fc:1a:48:f0:df:dd:8c:56:57:a1:65:
36:48:29:fb:a1:b0:ba:01:51:49:ef:e8:2b:cc:27:
9d:f0:6d:6b:2c:4f:1d:4f:08:5b:cf:fe:4d:35:ef:
83:d7:2b:62:71:ca:34:91:fa:9f:65:83:32:3a:f9:
c6:85:c1:b0:f9:3c:0b:99:b9:b7:27:39:08:98:01:
5f:e0:38:49:5d:c9:e6:33:e4:47:b5:f4:13:4b:32:
34:39:67:44:5c:49:70:e2:27:6a:50:40:70:ca:06:
36:6f:0c:84:9d:db:69:42:ff:25:56:b2:d7:79:1a:
00:d9:0e:d4:89:52:3b:dd:ac:45:fe:aa:1f:45:6c:
49:af:09:da:c9:62:1c:1f:cc:10:dd:a4:0c:6d:8e:
07:6a:de:01:f5:7a:c4:8b:89:30:18:0f:3c:30:31:
5a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:79:C9:D7:D4:4C:26:B2:10:19:3B:F9:61:7A:72:5B:B1:AD:F0:6D
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:7f:b3:60:01:6f:65:ec:a1:08:c6:63:8e:ee:51:e8:1c:ed:
c6:ed:06:00:15:73:d9:40:6f:d5:05:e1:ea:5c:01:b9:a2:4f:
8e:ee:61:e8:23:22:8e:51:da:09:93:48:33:5a:07:2b:36:b6:
30:4c:a9:61:25:a9:00:da:93:00:6c:ea:d9:22:ff:a3:59:7d:
19:87:57:2f:a9:90:89:ef:c3:ed:55:08:fc:c9:4f:8e:c2:0e:
4d:3a:b9:7c:3e:72:78:28:80:c5:4c:2f:b1:08:48:a3:da:05:
83:eb:0b:84:29:54:58:b9:b6:40:e4:26:66:42:61:3c:7d:6b:
b0:ce:04:5f:67:b4:2d:0c:4b:d6:0e:58:ca:fd:73:17:21:d1:
b9:4b:a0:b8:f1:2a:b7:d7:49:d8:29:65:e4:fb:3d:6b:07:23:
c7:63:54:aa:97:61:64:2a:29:f9:fd:f1:91:b0:94:5e:d1:da:
40:53:f4:d7:94:4c:62:32:71:6e:54:1f:c9:53:8a:6b:17:47:
2c:a7:b9:4b:24:96:11:6b:f6:70:5e:72:f2:cd:97:49:f0:46:
c9:74:b6:d5:d6:ae:94:45:7b:ee:80:31:22:d3:f9:21:e6:35:
3c:45:1d:b1:27:94:99:91:d4:ae:59:b8:68:04:cc:b6:5a:d6:
27:55:6a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:27:10 2025 by rpki-client