Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: BHOzGs9/EsWv88SJaw9Z01Zy6zUuky5x44Q4uV4sbFQ=
Subject key identifier: 98:6C:96:1B:9D:97:B9:E7:98:8F:63:6D:F3:88:91:16:EA:73:D2:13
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 0198D70614F7573A977D88D0C12B717B7B99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0A58
Signing time: Sat 23 Aug 2025 13:02:36 +0000
Manifest this update: Sat 23 Aug 2025 13:02:36 +0000
Manifest next update: Sun 24 Aug 2025 13:02:36 +0000
Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: iFsZ0JkIZHnAI5xjcCfgIounQPusqeu0bvdSBHsEw24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:06:14:f7:57:3a:97:7d:88:d0:c1:2b:71:7b:7b:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Aug 23 13:02:36 2025 GMT
Not After : Aug 24 13:02:36 2025 GMT
Subject: CN=986c961b9d97b9e7988f636df3889116ea73d213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bf:6b:7b:af:cd:a5:49:71:ab:26:f0:7d:b4:
74:9e:5b:31:23:c4:7b:42:fa:eb:d1:05:83:6c:7c:
1a:ca:f6:29:8d:46:37:88:81:53:7f:77:81:5c:3c:
4c:68:98:eb:d0:aa:e9:7f:b0:fb:ae:30:28:17:de:
7e:5f:d5:3f:b8:79:ae:9e:ce:15:43:46:b7:2f:27:
f0:67:5f:f9:1f:bb:29:0a:17:e7:f4:67:c8:9c:1c:
e0:84:b7:fc:89:43:51:50:e0:38:96:3a:45:0c:6b:
08:8d:9a:42:43:ab:02:54:57:f6:b0:8e:9e:80:93:
f9:60:b4:f5:82:9d:27:dc:46:db:d2:32:7c:48:9b:
59:de:3c:5a:05:7a:da:95:3d:59:8b:e5:22:70:8c:
40:d5:5b:e8:f2:14:3f:e3:c2:04:48:aa:bb:b1:06:
c7:51:60:d5:df:f9:62:84:23:24:6e:b7:6a:a7:4d:
57:0b:1a:97:3d:52:a5:e2:cd:f3:c6:a7:fb:f5:33:
c0:b4:83:ea:1f:fa:e0:1d:0d:45:d3:68:1f:f9:7d:
06:d3:e2:66:d4:65:74:3e:df:72:19:f5:81:f3:eb:
4d:82:e8:cd:ac:91:90:b2:c4:9a:3e:8f:fb:f7:bb:
9d:4e:ae:30:52:25:f7:61:7d:86:4f:d0:d7:53:62:
e8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6C:96:1B:9D:97:B9:E7:98:8F:63:6D:F3:88:91:16:EA:73:D2:13
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:68:c2:fc:b3:c1:66:9b:7c:5e:bc:b0:d7:53:90:94:da:f1:
33:70:b4:1f:ef:ec:f0:35:d4:54:43:a2:4b:9c:ac:10:80:cf:
02:10:02:a2:36:cc:71:b1:d6:8e:c2:75:1b:ae:bb:29:fe:7a:
6b:92:59:d6:31:90:55:ae:aa:8b:ec:34:3a:d7:78:db:14:1c:
13:ea:59:12:14:7e:2a:8d:c5:dd:fc:42:77:21:47:96:54:58:
b8:24:78:e3:b3:48:77:45:90:3e:c6:cc:ca:1b:8b:2e:d9:be:
c9:7d:55:a3:63:19:ce:a5:2e:3b:14:7c:94:9c:83:34:ad:6a:
1e:a3:90:bd:e6:03:bb:76:e5:96:ec:e7:4c:af:51:15:92:a6:
17:6c:8e:a6:79:39:28:4f:32:ff:b6:3f:98:10:84:d9:bb:72:
17:3f:c8:d8:32:cc:62:d6:98:ae:6c:2e:52:28:7c:15:a3:ea:
cf:d3:d0:44:a6:87:0f:1d:0d:18:34:59:84:7c:f3:85:2a:13:
f9:19:b7:71:68:a4:29:d2:1d:19:97:a3:72:d1:9d:45:ca:5e:
50:45:4c:43:62:35:49:9f:df:1b:3c:67:1c:21:93:7a:ca:0d:
a5:6c:dd:25:ae:98:bf:fb:84:b8:b7:07:a0:6e:5c:27:13:cd:
15:47:a3:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:44:18 2025 by rpki-client