Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json)
Hash identifier: gAvPqD2PeU/QLx9yRmbwNrybAtsJlW9f+bZYPNl+qZ4=
Subject key identifier: 10:29:56:17:4B:6D:DD:32:1F:BC:9B:5F:AA:5B:DB:E0:02:82:26:A6
Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292
Certificate serial: 0198D7A8B6D18D97F8EBFDBDDFC8E9B49182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
Manifest number: 0FC8
Signing time: Sat 23 Aug 2025 16:00:14 +0000
Manifest this update: Sat 23 Aug 2025 16:00:14 +0000
Manifest next update: Sun 24 Aug 2025 16:00:14 +0000
Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: RKucw4tCFxPi7wrqUk/aLPJqYBwC+VOPIZ4s9IeNhyc=)
2: jp-8lbUOvN6sUPZsTL-dh7MOVR8.roa (hash: /kMpoM5rzLA4Q5DdnfjuYEV0in2H+0XYtN+u4LENV/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:b6:d1:8d:97:f8:eb:fd:bd:df:c8:e9:b4:91:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292
Validity
Not Before: Aug 23 16:00:14 2025 GMT
Not After : Aug 24 16:00:14 2025 GMT
Subject: CN=102956174b6ddd321fbc9b5faa5bdbe0028226a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d8:c8:c3:d9:ea:af:b4:38:0a:8a:a3:4a:79:
15:df:aa:5a:e9:6d:13:c3:e8:7f:dc:a4:9c:63:89:
19:b0:67:d4:32:ad:7b:9c:5d:eb:a9:50:9c:5a:cd:
a0:ac:4a:48:6f:dc:62:d3:dd:ab:9b:66:ac:ed:64:
1f:62:81:7a:1a:7b:c3:b8:d0:a6:4a:5a:83:6b:17:
21:da:25:1c:0d:81:8d:50:d5:aa:c6:65:86:e3:df:
0e:a9:45:1c:00:1f:11:e3:06:56:5b:8b:c7:eb:35:
33:c4:12:7d:15:2c:32:d6:23:e6:a9:41:96:a7:3a:
29:bd:66:a1:ae:16:06:d2:83:cb:c5:2c:b6:97:7b:
42:66:90:6b:66:33:ac:50:b3:2c:a0:ab:b2:26:b2:
b1:56:c4:d3:69:dd:39:a0:67:d7:77:0c:7b:92:3d:
ab:72:ff:c0:ee:6e:05:d9:bb:0c:a1:b3:fb:5c:9c:
b5:53:f5:8f:36:71:cf:4d:14:72:a4:59:5a:29:0a:
45:79:8d:94:0f:d7:c5:68:11:8a:66:bc:7a:7d:1e:
00:79:a4:11:20:36:76:9a:3a:2a:bd:7e:36:4f:23:
3b:1f:1e:e0:4e:22:07:d8:aa:e9:ea:f0:ba:60:25:
ba:45:1b:bb:f8:d9:2e:c9:4d:19:41:79:56:8a:ad:
85:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:29:56:17:4B:6D:DD:32:1F:BC:9B:5F:AA:5B:DB:E0:02:82:26:A6
X509v3 Authority Key Identifier:
keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:34:a0:50:68:1a:e9:01:b7:fa:27:58:71:93:60:74:09:84:
ce:4a:3e:3e:38:02:66:78:23:6a:38:8f:66:c1:39:4e:00:3d:
0d:13:e2:1a:0d:6c:04:41:6d:73:05:05:02:59:28:78:ca:b8:
9f:03:76:26:89:89:5c:09:c3:2c:7d:d5:2f:92:1e:23:19:77:
09:30:52:0e:ff:7b:b3:c9:79:35:fc:eb:bb:ef:ad:a0:e1:0d:
b5:dd:72:45:2f:ce:1b:f4:ba:11:f9:36:22:27:7c:90:68:c7:
09:d3:07:ef:c7:af:36:c3:9b:45:cb:ab:bf:89:39:cb:c3:9d:
e7:18:d4:1e:f6:4a:a4:fb:b4:a8:65:b3:4b:e6:29:1f:25:86:
6c:f9:ec:b7:ca:9d:c5:cb:fe:2e:5f:95:86:cd:2d:cc:85:13:
6e:3b:59:79:87:10:04:c9:22:f2:bb:45:d4:f8:33:12:fd:d6:
72:8a:97:46:54:75:73:f5:66:1f:8f:49:96:22:32:76:87:bb:
61:a1:39:71:d4:a7:71:cf:8d:e0:68:b8:40:ab:2d:57:4d:6c:
49:0c:20:d1:32:15:ec:d0:5d:1d:0a:8e:69:10:72:f7:88:1d:
c3:a8:bf:a1:b7:89:c1:4b:63:47:dc:5a:67:dd:e9:3b:f7:26:
f4:26:14:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 22:32:04 2025 by rpki-client