Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
File: KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft (raw, json)
Hash identifier: J7gwTqKhK0Nw8BSNyrsQO6++R6rTjVz4aISKLVGOXrI=
Subject key identifier: 3F:FF:E0:F5:10:57:C3:7C:80:C6:C8:D8:4E:6B:01:CE:EB:B3:B8:30
Authority key identifier: 28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
Certificate issuer: /CN=283624007f44dcaf568c370e7f71f950cb1940ef
Certificate serial: 0198D8BDDCCDDA6780ADE4D8FF01774AC7B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
Manifest number: 07C6
Signing time: Sat 23 Aug 2025 21:02:58 +0000
Manifest this update: Sat 23 Aug 2025 21:02:58 +0000
Manifest next update: Sun 24 Aug 2025 21:02:58 +0000
Files and hashes: 1: 8nNgOGtBQWNTilGRrMmNlFZZwGM.roa (hash: mOJcQQ3vA0VCC5mkB6hJglG7LUq/Vu6wljMQaBgi+dM=)
2: KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl (hash: dBdFBeW8OnY4gwquADbbBSXf2yRtl04+7IkUj4NnRqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 21:02:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:bd:dc:cd:da:67:80:ad:e4:d8:ff:01:77:4a:c7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283624007f44dcaf568c370e7f71f950cb1940ef
Validity
Not Before: Aug 23 21:02:58 2025 GMT
Not After : Aug 24 21:02:58 2025 GMT
Subject: CN=3fffe0f51057c37c80c6c8d84e6b01ceebb3b830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3c:12:bd:3f:bf:ee:60:29:31:61:a9:49:a2:
25:e3:00:86:2f:b3:0f:e6:15:e6:96:a9:64:c6:08:
ca:e9:02:dd:43:53:6f:4f:3a:b4:30:34:bc:7d:1e:
f6:e3:99:eb:63:b1:f3:10:08:0c:4e:4a:12:4e:61:
9b:2c:6c:c2:e6:40:7e:f6:cf:d7:b3:d5:5f:cc:bc:
80:d4:55:f3:14:0f:2d:41:5f:e0:3d:f7:54:00:b2:
42:22:ee:e7:ed:51:fa:f4:c8:2d:b6:7b:da:cb:b7:
9f:08:26:ee:a0:f7:bb:cc:b6:37:53:0e:fa:62:59:
62:de:08:14:f1:5b:a0:df:c4:ed:77:91:e1:85:6b:
a9:08:1f:eb:3e:44:e3:1e:72:f3:b0:b6:a5:d8:5e:
a7:6d:bf:38:5a:ed:c1:2e:69:92:92:11:08:de:d6:
8a:c2:ee:4d:30:27:6f:8c:5a:2b:5b:3b:a0:3e:ff:
e5:2c:00:b0:3b:3b:3a:8c:17:c0:8c:40:e6:53:f5:
bb:3b:44:f2:68:ea:b1:bb:15:06:6c:61:0c:60:a1:
36:db:d5:e2:ba:d9:82:76:4e:b6:fb:ab:ee:b8:b3:
60:de:82:01:a4:a6:70:c2:e1:16:4b:c1:fd:eb:26:
ac:65:2b:27:e4:41:36:01:0a:f9:58:0a:29:04:c9:
42:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:FF:E0:F5:10:57:C3:7C:80:C6:C8:D8:4E:6B:01:CE:EB:B3:B8:30
X509v3 Authority Key Identifier:
keyid:28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:44:b8:66:58:76:c4:ac:a8:52:99:0b:06:99:1f:32:50:c3:
ad:b5:d4:97:46:2c:55:9b:ee:d5:4b:5e:3b:f9:f7:7f:01:b3:
24:32:de:b8:dc:3d:61:7f:37:7e:52:57:3a:f0:32:cf:67:25:
91:c3:68:3a:90:00:59:5c:38:d9:0a:0e:4a:66:99:f9:41:74:
e4:65:70:5f:8a:e0:0b:4b:0e:da:e4:b2:9c:8d:37:c2:30:a5:
ef:f2:4f:18:4f:b3:bb:ed:d4:04:c9:7f:d2:8d:76:ac:8f:8e:
06:7c:da:a2:01:66:d9:3c:99:7a:56:d6:ba:c4:68:b4:84:a3:
cf:f4:b4:66:fc:c3:24:18:a3:11:b2:43:4c:ac:83:ac:7d:9e:
58:7b:04:43:91:fb:37:92:c9:3b:0e:09:5e:bc:c6:c1:9e:fb:
af:55:da:24:25:81:16:6f:e0:5b:95:27:ab:af:0a:7d:5c:0b:
b5:44:cb:1b:2e:bd:16:99:51:11:aa:30:6b:17:a0:80:ae:04:
50:2c:95:67:f5:1a:47:c1:45:f8:14:13:61:5d:c8:93:e7:2c:
3d:fa:68:d2:56:62:bd:38:ac:07:fb:c3:73:9c:79:36:ac:05:
10:94:35:3a:b6:23:57:65:ef:90:8c:03:a4:10:51:f8:f5:ab:
e8:0f:08:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 06:36:56 2025 by rpki-client