Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
File: KpTH34VXtlNEfD4G-0s3LVEgoiI.mft (raw, json)
Hash identifier: tzLmHSPmUXFL9T5RKRv5dzZkH9B4YP6kni/4o4BhikU=
Subject key identifier: DB:DB:70:33:0C:A7:52:DD:F3:88:3E:1E:31:C5:01:6E:7E:F1:FB:77
Authority key identifier: 2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
Certificate issuer: /CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Certificate serial: 0198D4737CAA6A261699053A56DB6CE0064D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
Manifest number: 1646
Signing time: Sat 23 Aug 2025 01:03:14 +0000
Manifest this update: Sat 23 Aug 2025 01:03:14 +0000
Manifest next update: Sun 24 Aug 2025 01:03:14 +0000
Files and hashes: 1: KpTH34VXtlNEfD4G-0s3LVEgoiI.crl (hash: ef6wSfknBLN1fkV5+9X6qNSYJEYnCUz7Qy74B4hzI0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:7c:aa:6a:26:16:99:05:3a:56:db:6c:e0:06:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Validity
Not Before: Aug 23 01:03:14 2025 GMT
Not After : Aug 24 01:03:14 2025 GMT
Subject: CN=dbdb70330ca752ddf3883e1e31c5016e7ef1fb77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:01:be:1c:14:f1:3e:ce:69:5e:8b:40:f3:69:
c4:aa:fe:ef:d6:cd:91:d4:62:2a:8c:ae:76:ab:cf:
fe:f1:77:c8:8f:9a:d6:22:73:75:8c:7a:16:a0:b7:
93:c5:f0:9b:97:5c:02:ef:34:b4:5c:d1:02:53:b1:
8b:12:6e:08:5e:92:70:95:c2:d6:ff:6c:65:a4:63:
b7:14:a1:03:9f:4f:70:7a:6d:54:75:d3:8b:d0:b3:
fa:ec:a7:82:98:75:4d:84:63:b8:bc:51:f3:44:30:
18:83:b7:93:31:02:fa:53:d6:0e:ac:bc:de:75:10:
ca:c0:b0:d2:fa:3d:1c:97:32:92:da:a8:74:de:c7:
fe:b5:cb:be:66:40:09:04:58:c1:17:9b:37:b2:04:
8f:60:7f:45:0d:c0:34:c3:ff:fb:62:90:83:e1:a9:
75:ce:c2:21:e6:74:e2:63:a8:dc:2a:d9:0d:05:eb:
63:5d:fc:f3:7c:cb:27:45:0f:9a:6d:e2:7b:3f:d8:
d4:9a:0e:d1:e9:8f:2c:ee:6b:3d:01:cf:f9:e9:e9:
6c:aa:e8:62:f3:86:56:97:28:4a:f3:f3:b5:64:d1:
cf:16:f4:71:a8:4d:94:7d:0a:2f:dc:b0:0a:49:d1:
bb:83:67:f3:67:b1:41:55:ca:b5:a4:b5:b8:4d:d6:
32:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:DB:70:33:0C:A7:52:DD:F3:88:3E:1E:31:C5:01:6E:7E:F1:FB:77
X509v3 Authority Key Identifier:
keyid:2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:d9:96:84:26:63:84:54:94:cc:13:e8:ff:4b:e8:ef:ba:30:
ce:29:81:61:bb:5c:3c:ec:ae:30:d6:cd:fc:ef:b5:74:70:b9:
ab:02:af:f7:93:b2:a0:8a:0b:10:f0:04:ff:ae:ca:75:db:5c:
df:42:34:ea:05:d4:7d:6e:7c:17:3d:96:a1:89:99:b5:99:fb:
e4:09:78:04:b6:fa:a9:a6:f6:35:9a:f3:8e:dd:3d:dc:44:95:
ce:26:70:52:f8:b1:93:a4:62:19:27:f7:d5:d8:bf:90:38:74:
00:00:6b:44:03:df:e9:54:8b:c8:8b:56:d4:e0:f0:a7:e5:0f:
01:c6:01:93:7d:4b:97:5f:a1:3a:a4:92:a3:11:36:b8:56:86:
a0:26:bd:eb:06:23:6c:20:3d:ad:1d:0d:97:09:13:23:f1:98:
1f:a8:3c:f6:79:59:a6:15:f5:6e:27:85:23:58:92:01:ca:76:
f2:5c:f6:39:93:54:97:8e:08:4d:13:85:39:12:fa:63:84:80:
1c:66:56:e2:34:ba:ac:85:e8:3b:2c:66:19:34:c4:1c:f1:3e:
e7:46:16:5b:87:b0:cc:31:b8:86:fd:02:51:6f:52:61:4e:c8:
03:04:82:f4:84:ff:f2:56:a4:d5:d8:25:c8:fa:66:b8:40:16:
e5:25:82:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:52:00 2025 by rpki-client