Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
File: KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json)
Hash identifier: VnZrxOUpX+OSmuutjFiTx4asJubZXfZMc15VdC5nUkA=
Subject key identifier: F0:52:D6:EA:6D:52:AD:55:A7:2C:2A:24:DA:A8:A2:A8:0D:59:61:A1
Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d
Certificate serial: 0198D5F1D09C32C4F9F81C0F31B3D5B1FE38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
Manifest number: 0B66
Signing time: Sat 23 Aug 2025 08:00:51 +0000
Manifest this update: Sat 23 Aug 2025 08:00:51 +0000
Manifest next update: Sun 24 Aug 2025 08:00:51 +0000
Files and hashes: 1: FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa (hash: dI7TXuZLS0+y6udtXa2yol0ikupwyIZAlaHrmt/VDI0=)
2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: WQPkSH0Btp5Xow7Wwzw0Iyaav2wF5t7WSSBMr5T94no=)
3: z3-dsZKj9j7nCKXS-M2vtq4aJrk.roa (hash: 28apFTsYy4v/YWMNME9MOhYcWfL7kBuIz5Y1C6vARJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:d0:9c:32:c4:f9:f8:1c:0f:31:b3:d5:b1:fe:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d
Validity
Not Before: Aug 23 08:00:51 2025 GMT
Not After : Aug 24 08:00:51 2025 GMT
Subject: CN=f052d6ea6d52ad55a72c2a24daa8a2a80d5961a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:83:8e:44:7b:d3:7e:a3:5c:b3:ea:b7:9e:1c:
3f:d2:a0:c2:59:75:d5:6d:b5:b1:fb:96:89:83:df:
b3:ea:3e:bb:b3:08:10:02:82:24:5d:07:91:62:1c:
c8:c8:f2:b9:45:96:0d:eb:b6:b6:d3:01:8b:6a:21:
05:b8:a5:10:6c:e2:7c:b3:d8:60:92:a1:21:52:7b:
94:ac:90:1e:ea:31:47:f4:4f:16:8b:a6:8d:0c:08:
3a:39:c6:a8:7b:c7:c8:17:45:10:6a:e8:9d:7d:10:
dd:2e:ec:8d:1c:d2:fd:e4:26:b1:bb:e6:99:be:30:
ed:33:d5:93:c2:e6:e4:da:5d:a7:28:c6:29:c2:54:
c0:a6:45:2d:74:f1:62:9a:17:59:87:89:05:1d:a6:
aa:a3:aa:7e:6f:97:8c:f7:bf:e5:7e:83:d3:5a:0a:
15:0e:d5:14:8c:2a:d3:ac:5d:d7:14:9e:75:9f:5e:
df:4d:8a:2f:91:41:fd:21:37:13:f3:81:fa:77:7a:
f7:fb:86:cf:0e:f4:11:9b:4e:97:e2:a8:d5:58:ed:
d7:49:d0:65:86:73:12:1d:8b:88:a8:85:8e:df:41:
91:a1:ab:ad:d5:ca:0b:f7:1f:92:ee:1b:71:03:f9:
75:9a:de:03:a9:69:77:21:5a:67:7c:ea:61:c4:89:
4d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:52:D6:EA:6D:52:AD:55:A7:2C:2A:24:DA:A8:A2:A8:0D:59:61:A1
X509v3 Authority Key Identifier:
keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:3d:bf:5c:b0:bb:d0:53:53:f3:21:87:48:dd:78:70:37:29:
03:61:13:c5:87:45:95:a9:1b:af:3b:a0:19:14:a2:2f:bc:03:
39:49:46:64:f4:42:5d:93:74:a5:72:5e:77:8b:41:4d:f1:22:
2f:ae:c4:b4:67:3d:a1:61:eb:1f:96:cb:7c:60:e4:5c:eb:3f:
f2:cd:7f:4f:c3:8b:90:70:7c:7a:19:1d:5b:85:c5:14:42:e1:
52:62:d6:f1:8c:91:16:cd:e7:d9:48:7b:c8:7f:9c:f3:c6:dd:
58:38:0d:b3:65:d3:2e:20:7e:3e:e2:fe:ee:b3:be:7e:d1:7c:
80:d1:b5:52:2d:da:28:2f:8f:4a:36:02:df:f3:28:fd:f3:47:
44:56:02:63:3c:f7:bb:55:17:70:02:70:ea:e2:2a:a1:4d:1d:
79:c8:b1:a8:00:27:af:5b:e5:e3:ca:21:8c:ac:50:95:60:1f:
eb:cc:69:82:27:f7:31:3b:b1:d4:d2:2f:e5:6d:4b:fe:bd:1a:
04:b5:12:be:09:57:c4:4a:2d:72:50:5b:bf:61:b4:4a:9d:3f:
29:71:e2:98:e0:54:c1:df:f9:5c:1a:cc:0c:eb:28:36:ca:40:
fb:79:a9:1d:43:77:8c:36:20:ca:13:5f:d6:7e:6b:71:02:76:
07:1f:c8:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:10:22 2025 by rpki-client