Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
File: kVVkGgex5FW3iSuS2A1gkSORsg0.mft (raw, json)
Hash identifier: YIxvx8iqyGNLa37s5wWBT7/pYrDLMfx9wSCmmodG5+c=
Subject key identifier: 2F:04:E2:40:35:B4:39:36:00:D3:BA:06:2F:FD:B6:1E:48:43:B7:69
Authority key identifier: 91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
Certificate issuer: /CN=9155641a07b1e455b7892b92d80d60912391b20d
Certificate serial: 0198D54E404DCCB9CD93EC4B84B2B8D623D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
Manifest number: 0656
Signing time: Sat 23 Aug 2025 05:02:11 +0000
Manifest this update: Sat 23 Aug 2025 05:02:11 +0000
Manifest next update: Sun 24 Aug 2025 05:02:11 +0000
Files and hashes: 1: kVVkGgex5FW3iSuS2A1gkSORsg0.crl (hash: lrdzX80TwJxMmeGeyfh/RbK9KY9vwWcFQqyQgjC9Yy8=)
2: ynCtEcXqVCBeEil-xI3WvK_dPRE.roa (hash: 0SptmV2vPd6kYrXF10jAqlyhF9V/f+S3u2RzwXs1PmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:40:4d:cc:b9:cd:93:ec:4b:84:b2:b8:d6:23:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9155641a07b1e455b7892b92d80d60912391b20d
Validity
Not Before: Aug 23 05:02:11 2025 GMT
Not After : Aug 24 05:02:11 2025 GMT
Subject: CN=2f04e24035b4393600d3ba062ffdb61e4843b769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9a:f7:00:14:43:9a:c6:34:96:86:cd:ad:0d:
9e:c2:77:a3:64:0a:00:7f:7c:8e:45:46:cb:1a:d4:
8d:c2:4a:4d:18:30:b0:30:09:b5:45:85:27:57:d1:
bc:ea:3d:29:e5:17:59:8b:f7:76:d0:47:12:f8:50:
a1:6f:78:2a:14:02:3e:c5:37:db:0d:ba:2a:02:06:
c7:78:87:f5:67:4b:bf:a6:7d:f2:3e:87:98:b0:2b:
c9:78:c9:eb:b2:b1:59:f0:81:3f:dd:a0:a5:e5:23:
ea:ed:26:71:75:4d:31:2e:ff:6a:b9:ab:1e:37:43:
a3:ab:74:e1:c0:11:93:78:25:d4:d5:ae:7d:ee:b2:
ce:ee:6e:ef:27:bb:cb:e3:8a:7b:48:bd:e3:fa:50:
84:38:75:ef:54:4a:73:13:10:0f:7e:e6:28:47:63:
a1:01:9d:75:f7:10:c8:da:34:62:d7:61:00:ae:e8:
7a:c1:0a:81:bc:57:69:37:9c:02:f9:16:b5:de:4a:
1e:ec:99:e2:29:84:f8:3a:c3:e5:d2:a6:a3:70:34:
11:20:e6:55:7a:09:58:52:3a:df:8d:10:9e:d4:6b:
b5:81:d5:be:c7:8f:06:cb:ed:94:6c:21:b8:1d:b4:
75:20:3c:21:5a:57:a6:55:85:fd:56:a2:c1:e2:b7:
1e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:04:E2:40:35:B4:39:36:00:D3:BA:06:2F:FD:B6:1E:48:43:B7:69
X509v3 Authority Key Identifier:
keyid:91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ad:22:c5:36:34:1d:12:ea:50:b6:70:c9:34:52:a6:09:df:
4b:c4:6e:ef:fe:90:80:57:dd:07:c1:3f:88:f0:20:26:80:a4:
99:07:16:c3:73:d9:5b:5e:8d:0f:d8:b7:bd:a9:8e:d4:9d:5c:
60:29:39:a2:4b:67:08:70:46:59:d4:7e:d3:72:8d:c3:22:ee:
a1:f9:d5:82:c9:a4:db:9b:1e:0a:b0:57:2f:37:cd:e3:8e:dd:
65:c8:8f:56:18:f3:f0:4c:e1:50:09:1b:30:6f:3e:c3:5c:32:
2e:20:83:7e:6e:2b:ba:b9:f6:c8:8f:59:45:da:22:42:a1:44:
4e:d5:00:71:ef:7e:a6:03:46:ed:f3:8e:0e:2b:fc:36:de:68:
53:12:23:aa:8d:54:6a:b8:59:2f:43:4d:43:62:a9:97:ae:11:
59:75:fb:9a:cc:08:33:26:5b:5f:23:83:00:58:f6:14:88:0c:
69:9b:7a:75:0d:a6:85:91:90:84:ff:81:44:e1:2c:70:9d:34:
6c:a6:98:45:6c:59:8d:33:4f:bd:a4:1b:62:dc:a7:6a:18:cd:
16:e1:42:00:bd:4c:8d:2a:ad:07:0a:75:95:4c:69:f7:18:6b:
1e:9a:fd:9b:c9:af:0b:40:2a:86:fa:96:22:7e:9f:75:4d:e4:
c2:00:2a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:15:17 2025 by rpki-client