Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
File: KL8ecjI3QqxNgTarbI6F33ujfus.mft (raw, json)
Hash identifier: B/E5ucwBmDjjtYbG7e/Y0WA0FtQWJfNlASZNgUlsSSk=
Subject key identifier: B8:20:2F:8D:3B:89:25:B9:CC:B6:B1:69:DF:EA:45:7A:AD:C7:EB:A3
Authority key identifier: 28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
Certificate issuer: /CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Certificate serial: 0198D4A79A0BA2CE19F0305BAAEB0F6F5FDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 02:00:10 +0000
Manifest this update: Sat 23 Aug 2025 02:00:10 +0000
Manifest next update: Sun 24 Aug 2025 02:00:10 +0000
Files and hashes: 1: KL8ecjI3QqxNgTarbI6F33ujfus.crl (hash: AxFc2LHQQB9tCwKncgFfOZUpUI0GBHsukkUH5TjzBLM=)
2: tkt4SudQfK9uwQrgGKvvYflAjl8.roa (hash: dFUnqKo0rasEdebFDefgA9DnqivcqZmMoexL2NOUY5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:9a:0b:a2:ce:19:f0:30:5b:aa:eb:0f:6f:5f:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Validity
Not Before: Aug 23 02:00:10 2025 GMT
Not After : Aug 24 02:00:10 2025 GMT
Subject: CN=b8202f8d3b8925b9ccb6b169dfea457aadc7eba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c6:d3:07:74:07:99:a5:0d:cd:f0:42:b1:0d:
ec:e2:ed:87:aa:ef:b1:86:c6:9b:0d:f4:bc:2e:ef:
81:ea:a4:10:ca:bf:36:50:38:87:1d:a5:1f:4e:98:
ca:ec:61:a1:4c:4b:24:3a:de:31:bc:29:a3:30:fb:
05:a6:3f:05:b6:bc:7b:22:6c:04:61:7a:3b:0f:4c:
90:67:13:be:32:90:49:72:f5:80:de:81:03:ea:fe:
66:d5:81:8e:aa:05:37:ee:0b:7f:b4:9c:7b:2b:bf:
6c:d2:b5:1a:06:a8:5d:ab:40:e1:23:90:31:df:49:
3c:7b:e3:7d:68:5c:c2:3a:f1:49:94:b1:f7:d4:09:
e9:5f:c8:18:30:b2:63:43:45:a6:36:22:b5:6f:bf:
ec:20:8e:23:eb:c1:be:67:ca:1b:2f:a0:33:6c:0f:
76:f7:86:fc:1f:fc:57:84:20:b4:16:35:2e:d0:ed:
c6:01:7e:16:24:1c:34:46:ae:97:96:b7:d2:67:a9:
5b:62:ea:30:2d:14:ed:e6:34:c3:1e:87:a4:97:7b:
2e:17:99:68:5f:c9:c6:38:ca:f7:41:d0:31:47:36:
01:53:54:75:12:43:17:32:75:2e:a0:6d:65:1e:ea:
0b:e4:24:60:f9:87:cb:d2:69:b1:73:f9:cc:8d:77:
3b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:20:2F:8D:3B:89:25:B9:CC:B6:B1:69:DF:EA:45:7A:AD:C7:EB:A3
X509v3 Authority Key Identifier:
keyid:28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:30:eb:26:7c:c1:05:91:7f:16:b2:ad:74:64:5c:c5:cf:7b:
17:5a:7d:a6:ba:a9:ca:8b:1b:89:c4:be:57:22:fc:02:d3:87:
4a:6a:9e:b7:85:fa:45:97:32:6d:0e:04:40:66:f0:ad:f1:c9:
8a:e2:fc:05:e4:4a:b0:19:62:28:ab:07:7b:bb:6e:1a:fe:d5:
0a:34:68:2f:b8:61:42:f8:27:ab:82:32:ce:f7:55:15:20:af:
c1:45:49:94:9e:1a:5e:a5:70:92:92:66:c2:85:da:9f:a0:84:
26:9b:f5:95:4f:4c:8c:dc:2e:b3:3b:67:e2:ad:59:c7:3c:09:
3f:0d:eb:2b:04:e8:ff:9a:5f:d3:07:1c:b1:4c:53:07:c3:bd:
af:ee:84:8a:4a:3f:09:e9:ff:2f:c0:f3:5a:7e:7a:6d:47:99:
72:7c:8a:51:29:41:c7:55:fa:42:a1:d6:b4:03:4f:02:12:d4:
4d:d0:b1:9d:b7:30:ea:9d:15:06:fe:f7:3d:ab:3a:6c:ed:a2:
3c:fb:bb:3f:64:1e:65:f5:46:14:23:5b:fd:fa:c2:62:bd:e3:
34:7b:ae:63:88:37:29:17:f9:04:b6:e6:b8:74:f5:46:87:42:
59:ce:1f:95:71:e1:46:50:d4:07:33:1e:30:db:2e:34:76:2a:
ce:25:a6:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:25:59 2025 by rpki-client