Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
File: kCGOgBpTJZXptxxkNoTqBflr9fM.mft (raw, json)
Hash identifier: l22MrwUBW8Y+2havBsGr6MAdfwXtH9hA1CJcO4/iTHU=
Subject key identifier: E5:39:77:67:C6:35:BE:B4:19:92:9D:A2:71:D8:50:65:D8:BF:12:65
Authority key identifier: 90:21:8E:80:1A:53:25:95:E9:B7:1C:64:36:84:EA:05:F9:6B:F5:F3
Certificate issuer: /CN=90218e801a532595e9b71c643684ea05f96bf5f3
Certificate serial: 0198D5F128D29BFD4C5A5208442F261C3091
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
Manifest number: 03AE
Signing time: Sat 23 Aug 2025 08:00:08 +0000
Manifest this update: Sat 23 Aug 2025 08:00:08 +0000
Manifest next update: Sun 24 Aug 2025 08:00:08 +0000
Files and hashes: 1: kCGOgBpTJZXptxxkNoTqBflr9fM.crl (hash: VGm+D9k5LuS3+lPoo80GJq/PH5ST0t45cLES+oT0Oug=)
2: wO4tKRWBwJAF_Ti9XP-8yjRZuUU.roa (hash: G7Rk/RipLXF/QPRugyDtoGfESmr50WO1Zig00oPYW14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:28:d2:9b:fd:4c:5a:52:08:44:2f:26:1c:30:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90218e801a532595e9b71c643684ea05f96bf5f3
Validity
Not Before: Aug 23 08:00:08 2025 GMT
Not After : Aug 24 08:00:08 2025 GMT
Subject: CN=e5397767c635beb419929da271d85065d8bf1265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:52:14:5d:46:38:4f:d7:02:3d:72:07:16:87:
19:17:93:19:68:1b:a3:5c:e6:00:ed:1b:be:bc:ad:
01:35:32:be:e1:15:3d:35:33:fa:61:5a:87:e4:56:
11:36:cd:5e:03:2f:98:15:e4:6b:71:35:01:c0:b8:
22:9b:01:c1:e3:7d:01:17:23:86:39:22:e8:ea:bb:
9c:b8:6e:40:ad:e9:3f:40:71:5c:06:7b:2e:a7:2c:
d9:b5:18:1e:22:6b:74:e4:74:b3:99:8d:31:1e:8e:
1b:98:be:df:f4:b2:4e:8c:b2:48:ab:d0:4c:7e:dc:
ec:4c:5e:de:d7:07:77:ea:5e:98:b6:98:a2:ba:00:
15:83:b1:91:55:b1:20:92:b8:0c:82:0a:dc:be:77:
20:dd:4c:76:39:08:1b:95:8b:f2:c5:aa:16:f6:8b:
a1:0c:7c:ed:ed:30:dc:90:7f:e6:b5:22:f3:82:12:
87:1b:05:10:de:ff:5d:6a:e2:a3:b9:f5:47:6e:56:
69:38:0a:c2:8d:f2:3e:38:b6:a8:dc:c4:c2:f6:e3:
cb:21:c8:9a:45:3d:f9:7b:a2:6b:4a:0f:7c:91:85:
ad:d8:26:7b:94:e6:a6:ec:b3:a2:10:ba:62:3a:18:
1b:fe:06:9d:2f:2f:e3:d5:02:cd:15:9f:b7:b8:16:
8f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:39:77:67:C6:35:BE:B4:19:92:9D:A2:71:D8:50:65:D8:BF:12:65
X509v3 Authority Key Identifier:
keyid:90:21:8E:80:1A:53:25:95:E9:B7:1C:64:36:84:EA:05:F9:6B:F5:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:76:20:b1:e8:8e:14:a9:35:ab:37:2b:fe:d0:30:f2:6d:cc:
c8:53:71:96:f2:6d:f0:f1:3c:6f:4a:e2:34:75:aa:2b:80:10:
60:e4:eb:22:7d:7b:93:e0:09:3f:8c:d6:4e:01:9d:91:20:06:
e8:5b:41:9d:2a:2d:dc:16:2d:e8:c4:65:b7:3e:95:13:7c:4b:
df:20:9f:d4:49:c9:b9:a1:48:54:a4:12:32:ac:00:d0:74:fb:
47:61:8f:aa:5a:c2:94:d8:78:64:99:bc:f1:50:95:e9:96:49:
63:b1:9b:76:6f:05:2e:5b:e6:d5:2b:72:4e:53:db:92:20:46:
ef:d3:11:48:cb:ce:9a:8f:b8:ac:a7:f4:e4:08:a3:7b:b0:76:
71:6f:87:4a:36:26:fe:04:73:ca:4f:b2:da:d9:6f:4b:44:dd:
14:48:2e:37:77:10:0f:97:ed:1d:78:fe:09:0e:0c:c6:23:70:
ad:54:04:29:4a:24:cd:f5:dd:04:7c:e7:66:d1:3c:5f:2a:aa:
b8:eb:f5:14:89:aa:d1:95:71:23:b9:54:dc:77:eb:46:71:10:
4b:81:3a:ca:6d:55:34:bb:43:0c:49:07:66:ed:2b:fc:ac:fa:
91:f2:93:ea:7a:7d:9f:6a:52:e1:10:d7:8c:b8:b7:a9:54:a1:
36:b9:9e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:45:39 2025 by rpki-client