Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: sVUshxe1zQGGksV545OSNVDKHcqGidIFPmdspO6z5bk=
Subject key identifier: F0:E8:80:D0:5E:03:C2:C5:44:03:0F:A8:EE:AE:8E:F2:98:C3:51:2D
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 0198D5159B83950E87E2764EDE0729B0BB32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 0425
Signing time: Sat 23 Aug 2025 04:00:19 +0000
Manifest this update: Sat 23 Aug 2025 04:00:19 +0000
Manifest next update: Sun 24 Aug 2025 04:00:19 +0000
Files and hashes: 1: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: ZmH0YbLLlWMykG7a1tKA4tY2Uz/6wWxUreaPd4KZsvo=)
2: o05sdzj6m4fQO6_WrgnQWVEGn8s.roa (hash: 4PZyqJElCUrsee8Vele9Jxa/SXWOHXm1LP7RgEQB9SY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:9b:83:95:0e:87:e2:76:4e:de:07:29:b0:bb:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: Aug 23 04:00:19 2025 GMT
Not After : Aug 24 04:00:19 2025 GMT
Subject: CN=f0e880d05e03c2c544030fa8eeae8ef298c3512d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f7:2d:80:73:f2:a9:5e:61:de:77:72:8b:30:
70:d5:f0:c6:6e:cb:42:d3:38:8e:58:5d:c2:e1:2e:
e7:bc:30:ff:0d:5a:c5:51:c6:fa:53:a3:22:9f:5c:
a5:99:dc:70:5e:12:0a:d0:51:0f:b9:db:af:cf:f2:
75:0c:c8:c0:5b:45:df:ca:18:43:a1:7f:de:f2:b3:
8a:f1:ac:d6:b2:1d:52:61:57:70:28:49:95:33:67:
a0:c0:b1:be:36:73:18:34:fd:fe:ad:d5:23:14:96:
a9:af:3f:ce:3c:5c:f3:f9:7c:59:db:8b:03:05:d6:
70:37:39:b6:f3:c2:b7:36:c6:89:b4:a3:c4:0a:f7:
60:fa:b8:cb:33:a1:8f:db:a8:f0:fe:83:ad:4f:2c:
98:48:26:ee:fd:53:74:0d:05:a5:be:4b:d6:1f:e7:
ba:68:62:25:67:d8:e0:af:35:04:50:50:4e:36:bf:
aa:a1:bc:19:83:57:1c:03:63:99:d6:76:ce:eb:e9:
da:e2:6e:90:cd:9e:fa:37:b5:78:82:19:86:71:e7:
f8:90:7f:4a:5b:e1:70:45:67:58:8c:39:78:14:a9:
b6:60:bc:58:fe:49:aa:17:15:c5:ea:2c:fb:e3:76:
fb:54:50:1e:4d:75:03:b6:4c:a1:07:81:71:56:d0:
b6:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E8:80:D0:5E:03:C2:C5:44:03:0F:A8:EE:AE:8E:F2:98:C3:51:2D
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:e3:86:ba:5a:cb:55:4e:5f:54:98:6d:b6:c8:82:51:21:c3:
b3:62:66:29:e5:57:6d:79:e1:a2:d0:13:fa:90:07:af:8c:b8:
d7:f5:fa:6b:20:6c:63:8c:02:ac:c1:9d:42:c7:f8:c7:db:e0:
72:4f:94:b8:d6:11:fd:ce:ef:8a:a0:0f:34:14:61:90:b3:3d:
66:34:9f:01:c2:21:d1:65:4e:a5:d5:dc:d2:70:ff:24:51:bc:
8c:53:30:d5:ba:71:09:94:60:45:a5:c6:8a:d7:0c:16:c0:b3:
81:e6:ed:f9:77:d6:52:2f:8f:a1:9a:56:0a:6e:39:7b:1e:b5:
56:3d:63:f8:1e:fb:4a:85:5c:52:4d:38:71:75:02:a2:d5:44:
2e:8d:52:5e:dc:13:8f:c3:12:05:e9:d8:62:a3:a7:46:4f:43:
dc:ee:15:0b:22:d8:78:1d:ef:2d:af:7e:dd:94:fb:a2:f2:2b:
00:91:aa:ff:b8:e4:c2:fd:ab:89:60:79:59:c9:cb:92:b5:52:
ab:25:d3:7a:24:d2:62:ab:a3:1f:d4:d3:26:81:f5:6d:00:79:
49:88:2d:80:04:f3:9a:dc:bb:30:4f:86:ef:f4:8c:90:fd:93:
ad:9c:86:d0:e6:82:d4:df:c6:37:a3:12:ea:cd:02:36:40:43:
32:b9:bc:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:41:48 2025 by rpki-client