Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: PUCyBOG5rP6cB4hIpZ1WCNyBFTS6ORgTYu8dSqOmVD4=
Subject key identifier: F1:87:53:CC:FD:22:AE:34:80:09:5A:FF:0F:E8:6C:9C:C9:F1:82:D6
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 0198D6CCEE84D85D1C70D0A924E71100406A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 12:00:11 +0000
Manifest this update: Sat 23 Aug 2025 12:00:11 +0000
Manifest next update: Sun 24 Aug 2025 12:00:11 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: IA1MFhGsQKS/g3DGXm0SzkPrbDtgypDIFvzSKPScUBc=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cc:ee:84:d8:5d:1c:70:d0:a9:24:e7:11:00:40:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Aug 23 12:00:11 2025 GMT
Not After : Aug 24 12:00:11 2025 GMT
Subject: CN=f18753ccfd22ae3480095aff0fe86c9cc9f182d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:97:71:84:e4:be:d9:8f:d4:f0:49:bf:c8:b7:
61:7c:77:5b:db:6a:91:a6:1b:13:2d:de:2a:8d:38:
fc:44:de:3f:95:c2:c6:4d:6d:d6:9c:a5:8d:60:9a:
78:34:d4:aa:56:db:f3:6a:1c:c1:ba:fb:06:ce:47:
e6:9e:87:99:2e:9f:a2:55:11:d8:46:b5:12:6f:69:
4f:ed:d7:bf:df:df:bb:13:e2:93:0a:46:f8:c9:40:
0d:f3:a5:9f:6c:f4:cf:a9:e5:02:73:3d:ac:91:47:
c9:f3:13:9f:b7:01:17:40:70:0d:3b:63:25:2d:93:
01:b9:0d:f0:36:d1:a7:2e:d8:98:23:75:47:e4:3d:
20:34:2a:45:30:b9:65:06:c0:f1:45:81:cc:f1:15:
6b:84:93:f1:8c:d6:0f:d5:4a:13:9a:e3:4f:98:9a:
b4:03:1a:c6:8b:09:eb:08:1d:63:93:c5:9d:a7:54:
24:91:d3:f0:79:3c:96:74:5c:5f:c2:d4:34:b9:69:
44:81:68:3a:e3:1e:de:f4:ad:0d:94:c3:15:2b:e4:
5e:e9:5b:8f:6a:30:59:34:5b:5f:ba:fd:ee:3a:d1:
a3:99:4c:5a:43:fe:b2:09:8c:cd:b4:09:51:cf:7e:
f9:f9:84:f6:4e:4b:53:2a:2c:91:e6:53:42:f2:ae:
6d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:87:53:CC:FD:22:AE:34:80:09:5A:FF:0F:E8:6C:9C:C9:F1:82:D6
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:b3:6c:fb:f6:6d:0a:bd:61:68:5c:e0:ff:bd:c0:5e:18:84:
21:6f:4f:64:ae:40:aa:12:9d:00:dd:78:95:f2:27:02:70:dd:
a5:2d:b1:bd:17:ec:83:c4:54:03:84:7b:c8:37:d6:8d:5e:1e:
68:0c:6e:52:5a:58:7c:6f:35:88:6e:f5:90:74:24:76:e1:3c:
3c:f6:59:7a:db:49:52:17:a0:71:e4:0d:48:5f:25:b8:0e:7f:
f4:55:18:a9:2e:7c:a2:77:2e:42:c9:9c:9b:b7:20:2e:d4:ba:
2e:11:92:c8:18:98:f8:86:fb:a1:ee:1c:ed:69:13:ee:33:d8:
b2:88:b9:3f:f5:2b:4a:65:3f:6a:f3:48:a4:93:34:df:51:a5:
c2:fe:6c:3c:a7:51:0d:53:6c:b6:14:a8:de:47:91:ea:96:f6:
3d:c1:aa:10:e9:c9:d6:b7:ef:98:f7:63:bd:ea:1a:ae:c7:f0:
24:52:7c:b4:8b:c1:80:d0:ac:cc:55:f2:b6:6d:f7:66:97:1e:
fc:a9:1c:7c:32:c5:42:0a:5d:06:4c:78:0d:43:56:3f:01:3f:
e1:b7:5a:86:fe:80:4d:d0:4a:15:d6:d0:63:46:4c:2b:e4:58:
51:26:5d:18:25:81:4f:9c:8b:4a:56:65:5b:4e:96:7c:93:45:
f2:a3:ee:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:24:43 2025 by rpki-client