Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: H/4WYOG7XespM3V+Du34qyGJRmExV7L0KdWe086zQGc=
Subject key identifier: 48:54:FD:4C:05:64:0D:54:ED:80:B8:EC:D3:74:51:75:F6:78:A8:E0
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 0197C9F034C142398CCCEF6FFCF5B6817829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 15C9
Signing time: Wed 02 Jul 2025 07:00:51 +0000
Manifest this update: Wed 02 Jul 2025 07:00:51 +0000
Manifest next update: Thu 03 Jul 2025 07:00:51 +0000
Files and hashes: 1: Lx4QL8l0KgaffC4QXEWzVHcEawc.roa (hash: DxG2rV8lArm7XTxrRaRlBv42lE1FblGks/y6Gbm7tWY=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: ZEfZMGss3tatxb9v87bSdq9hlQ3XGG5ghXGPDF8BNmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 07:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c9:f0:34:c1:42:39:8c:cc:ef:6f:fc:f5:b6:81:78:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Jul 2 07:00:51 2025 GMT
Not After : Jul 3 07:00:51 2025 GMT
Subject: CN=4854fd4c05640d54ed80b8ecd3745175f678a8e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f1:e9:3b:aa:76:3c:87:f0:17:8b:ad:d3:88:
c2:91:f4:46:01:9e:4d:3f:c7:3a:33:50:59:ac:50:
67:c2:5c:99:91:9a:89:c5:b1:ea:a7:d7:58:f5:2d:
2e:3c:c6:e9:e6:98:d8:a2:f6:7a:10:6c:9d:46:b6:
bf:e4:68:55:03:41:54:47:7a:c4:38:e0:de:cf:af:
b4:66:18:e8:18:de:e6:4b:b2:f3:8b:ce:84:0c:3f:
d8:a9:cb:ca:44:25:8e:c7:6e:ac:92:b9:75:7e:a1:
01:bf:1c:39:2c:32:b6:10:10:d0:c3:38:39:97:6e:
08:62:8f:f6:99:8e:de:62:13:b4:c3:59:4b:1a:1f:
68:1a:00:e5:4f:1b:50:22:88:55:40:df:ad:ad:94:
36:f5:16:38:92:02:f3:41:b4:e5:80:0b:f1:88:b0:
f6:b5:d2:cb:23:68:91:85:3f:16:93:e6:33:4e:f6:
23:5f:6c:34:57:ff:6e:4d:d6:e7:bb:c6:00:d4:84:
95:99:98:1d:0d:60:05:dc:66:f1:1b:4b:fa:78:96:
81:86:bf:9f:ee:17:f9:08:88:51:0d:09:16:60:ae:
c0:7d:74:ec:91:e5:62:54:a7:03:f0:f5:6d:77:61:
49:00:44:a5:a3:a9:30:7e:ff:96:2c:19:4c:21:88:
13:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:54:FD:4C:05:64:0D:54:ED:80:B8:EC:D3:74:51:75:F6:78:A8:E0
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:57:54:ac:66:f5:9d:46:6b:7c:6c:ef:94:dd:13:39:5b:fc:
23:6b:1f:1a:40:90:13:01:25:79:ee:46:7b:00:ee:5d:0a:03:
bb:bf:0d:1f:49:6b:b5:9f:05:0e:2b:47:55:c0:16:fa:8c:a9:
d5:cb:0c:91:63:ec:15:6f:82:9f:f1:e2:75:b7:23:4d:44:0f:
a3:da:26:c5:44:7d:06:95:29:0a:f5:7e:43:d6:44:d9:0e:e3:
10:9c:98:78:3f:12:f9:6b:60:31:79:9a:e7:48:fd:10:5e:36:
f0:f0:74:d6:57:62:98:98:47:35:41:e1:d2:7a:20:f1:cb:03:
9d:3b:66:21:da:e2:16:82:ef:10:e7:36:ba:ee:9e:3d:59:7a:
d1:b6:d0:a2:13:db:ab:b5:cf:f6:dd:52:43:4a:2e:df:d0:3a:
d6:3c:b5:ea:96:82:5f:da:86:7a:bc:b9:8b:94:c0:ff:47:37:
41:8d:5f:e3:ad:ed:37:69:d3:87:73:95:53:c0:3f:d4:98:1b:
1b:ee:fa:11:e9:b8:59:0f:e1:8a:2b:9d:13:ab:86:74:a2:12:
e2:56:7f:c6:a4:48:0f:9a:00:24:2b:ee:81:11:a0:b5:97:be:
ce:8d:5a:9d:f4:5d:76:96:42:ee:b2:fb:3c:02:16:80:4d:b9:
ad:e8:62:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 16:11:22 2025 by rpki-client