Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: Uh3vDNPbsBi0aqCqwKjY3xqsba8n3Vv1JIjkrOZ9l2o=
Subject key identifier: BF:16:27:5B:A9:13:5C:F1:EA:D4:89:98:94:F0:60:57:BB:44:5E:21
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 0198D47296978C552F91EB9D184D03B1C9E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 01:02:16 +0000
Manifest this update: Sat 23 Aug 2025 01:02:16 +0000
Manifest next update: Sun 24 Aug 2025 01:02:16 +0000
Files and hashes: 1: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: FT6D0W1uIM8z83iNwzzR8tzwX563W/jvGF0l04rHt2o=)
2: r4bjJ2cCOInhIlG1f9hIdTm3g6M.roa (hash: aZToxg96BEY8Qvj4uVJxCXKyOgQmRt2zg6OKjNY/eQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:96:97:8c:55:2f:91:eb:9d:18:4d:03:b1:c9:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Aug 23 01:02:16 2025 GMT
Not After : Aug 24 01:02:16 2025 GMT
Subject: CN=bf16275ba9135cf1ead4899894f06057bb445e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9a:88:21:61:70:5c:53:a5:16:90:cc:a9:8b:
36:f8:2b:66:df:ed:13:48:19:0c:e8:d6:b3:65:7e:
b1:f8:2b:d8:0a:f1:46:48:18:5a:b1:5f:da:4a:0d:
c7:d2:6b:20:13:e7:ae:62:d3:70:21:8b:b5:33:f4:
77:06:20:5c:e1:14:32:a8:c7:6b:96:8a:d6:9c:e1:
69:d9:94:72:5e:e9:92:f4:56:29:b2:fa:23:ec:46:
8e:31:7f:42:cc:ba:41:08:d5:73:c3:c0:0d:2d:d2:
79:8a:3f:b1:0d:da:19:f8:c6:e2:e3:cb:49:5a:c2:
5c:ed:42:a6:a6:9b:44:a1:e7:7a:4d:1f:66:b9:30:
b9:00:cb:2b:69:02:35:a6:ce:81:22:3f:a8:22:6a:
54:5e:6c:10:9c:8f:b8:23:1b:d0:6b:73:99:d9:4f:
a8:c5:84:75:32:78:b6:96:fe:9b:30:9d:aa:56:f8:
3d:d0:eb:bd:97:4c:eb:78:09:8a:0e:dc:3f:5c:fa:
0b:d3:98:f3:93:c0:c4:5e:1a:87:55:c1:d8:26:c7:
20:5a:73:23:9c:a2:33:72:08:6a:8f:6d:0f:db:cf:
bd:ac:a6:4a:7d:51:4a:12:eb:e3:90:27:12:af:cc:
c8:03:ee:14:35:2a:96:49:b3:7b:d6:af:f0:9a:b4:
10:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:16:27:5B:A9:13:5C:F1:EA:D4:89:98:94:F0:60:57:BB:44:5E:21
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:da:1b:e3:ce:43:cc:59:a2:a1:d5:ac:fc:74:38:60:de:50:
7d:2b:ae:35:50:3d:68:35:2d:bd:42:3a:a6:2a:d0:cf:41:10:
62:b3:c9:e1:53:66:9f:0d:17:96:a0:75:9b:29:0a:45:f6:a3:
4a:37:cc:e8:5e:d7:c9:e9:3a:1c:f4:d2:49:74:5c:8a:e0:b0:
a2:b4:36:d7:79:fd:ae:5f:25:d2:b6:4c:0b:22:25:f7:0e:73:
2b:2b:14:ea:e2:6a:c2:c7:a5:c6:ea:10:5a:1a:bb:95:94:ac:
93:df:16:27:55:58:1c:97:5e:2a:6e:fb:12:ed:08:8a:0b:94:
67:ca:07:1f:db:ac:a9:21:99:98:d2:4a:f2:21:24:46:b4:bb:
ed:04:fb:7b:b0:1d:5b:35:ae:09:dd:42:36:e1:6c:22:26:57:
7a:38:b0:c1:8a:74:a6:fb:2e:da:0b:f2:12:5a:75:7f:2c:cf:
a9:c2:0c:ed:f9:e1:a1:ed:f6:59:5d:7f:e2:60:68:4c:c2:a5:
89:a6:6b:3e:24:78:3b:6e:31:fd:44:ec:33:60:f2:cb:84:0a:
28:4d:dc:13:54:9e:ce:72:60:aa:4f:30:a4:a5:35:b1:2a:e5:
03:08:50:bf:d0:e5:c7:c2:b3:d9:c2:7d:44:bc:5f:58:68:d3:
ae:0f:c1:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:10 2025 by rpki-client