Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: D8jAFL8X6ABXe+tRNpxskY/fQB2wzlwsR1RGpqnBNzA=
Subject key identifier: A8:65:5E:76:B7:03:89:36:D1:55:23:A7:C0:B1:0C:49:EF:DE:2B:D3
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 0197B5FBE3FE363FDBE72100159878D9E1BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 15B6
Signing time: Sat 28 Jun 2025 10:01:13 +0000
Manifest this update: Sat 28 Jun 2025 10:01:13 +0000
Manifest next update: Sun 29 Jun 2025 10:01:13 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: stZycOGOuIb9up9TgbxYuaHgXa4+gtLcbAsHsryuoU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:fb:e3:fe:36:3f:db:e7:21:00:15:98:78:d9:e1:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Jun 28 10:01:13 2025 GMT
Not After : Jun 29 10:01:13 2025 GMT
Subject: CN=a8655e76b7038936d15523a7c0b10c49efde2bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:89:ab:d2:b3:91:45:12:42:56:e9:21:0f:36:
86:42:57:19:b0:a4:32:2e:7c:e2:6c:52:c6:90:ab:
0c:fa:b1:7a:30:f0:44:5e:8c:46:d5:04:eb:ca:28:
25:c3:21:55:c4:3f:0e:f9:f4:49:07:2f:a2:c0:ab:
2f:08:cb:9c:59:26:19:cb:e3:dc:cc:1e:64:bf:06:
68:87:de:a1:81:bb:19:00:2b:d8:64:32:56:0d:a5:
88:f4:ce:0f:f4:e5:23:a8:ec:c8:7e:06:f0:79:05:
4d:68:dd:3e:03:e2:24:7f:cd:ed:19:45:95:e4:c6:
81:02:3a:8c:4d:9e:cf:aa:43:c1:a2:8a:52:f2:7f:
36:08:54:bf:25:08:ab:2b:2d:ab:f3:44:a2:e9:9c:
90:4a:06:6f:18:e1:89:d5:5a:13:f2:e8:e8:89:c0:
81:cd:bf:a4:09:48:6a:25:b5:15:9f:3f:a6:08:36:
54:51:68:c7:0e:b9:f4:b3:9f:a6:f0:84:71:94:2b:
50:90:a4:13:50:2b:50:40:b5:af:17:fd:7d:1a:70:
fd:d6:23:e3:25:d2:4b:96:87:9a:cc:b2:93:de:0d:
0e:64:4a:3f:0e:76:8a:87:84:90:51:6d:e7:c1:0c:
e9:5a:27:5d:df:81:ec:82:2c:a5:1b:95:ee:2b:7a:
fa:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:65:5E:76:B7:03:89:36:D1:55:23:A7:C0:B1:0C:49:EF:DE:2B:D3
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:41:c3:c9:db:bf:04:90:43:29:72:3d:33:b0:cf:04:78:72:
0f:07:02:7b:90:97:51:e4:06:c0:63:17:76:d1:5a:e0:ad:df:
1e:66:26:66:e4:c5:ea:50:25:a8:eb:37:5d:42:e4:d3:d0:32:
ee:47:62:85:f3:15:8f:fb:2d:71:ff:d9:f9:ce:10:b8:48:f9:
fa:f0:d5:31:0f:a8:4f:85:33:4a:25:7d:16:bb:6c:d4:df:ac:
39:93:f2:76:03:58:8e:8f:15:d1:3e:f5:42:14:4b:9f:3e:2e:
e9:53:87:6b:fc:3b:5e:a2:5e:8f:7d:92:96:56:ac:3e:66:fa:
57:d0:41:52:06:ff:81:c7:37:56:34:88:5d:e6:fc:89:bd:47:
b1:af:05:e6:28:2b:88:90:27:01:8e:2c:d8:a4:97:82:37:d5:
99:aa:c2:da:40:bc:9f:d9:ae:44:db:25:5d:cc:9e:ff:e8:5c:
e9:e5:04:80:16:d0:1c:b7:b7:45:4f:8a:5a:30:9b:09:19:dc:
b0:42:9b:ac:53:7b:a2:a3:0c:8a:88:66:88:e6:c4:00:9d:64:
91:ba:61:24:3c:ce:51:22:e2:44:95:d0:65:c3:5b:1a:3b:99:
4d:2a:71:e7:f2:d1:61:2c:90:b1:59:71:85:dd:72:1f:8e:d4:
f1:b0:39:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:30:15 2025 by rpki-client