Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
File: KFJhMsT89rTN_3QCVWAsz53LBC8.mft (raw, json)
Hash identifier: M5dpc3+PeEO2uUa0NkOIWKb3zoLal9usE9F3Og9EBG4=
Subject key identifier: AD:EF:BA:91:E5:77:52:10:06:ED:23:87:A3:3F:A4:3D:B1:BB:9B:EF
Authority key identifier: 28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
Certificate issuer: /CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Certificate serial: 0198D54DEED554B410963FFB0AA2EFD010FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 05:01:50 +0000
Manifest this update: Sat 23 Aug 2025 05:01:50 +0000
Manifest next update: Sun 24 Aug 2025 05:01:50 +0000
Files and hashes: 1: KFJhMsT89rTN_3QCVWAsz53LBC8.crl (hash: 7rea6nGXWM+Ne9E8H0WyFZ9FUYy4VmFSgCh3upPh89k=)
2: ZhfTjFWerubW-wXYF5uHcQImBi0.roa (hash: ETJfKBPXF5SBOehYcFURbCVWhceZCDiTMb0cVW0YkTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:ee:d5:54:b4:10:96:3f:fb:0a:a2:ef:d0:10:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Validity
Not Before: Aug 23 05:01:50 2025 GMT
Not After : Aug 24 05:01:50 2025 GMT
Subject: CN=adefba91e577521006ed2387a33fa43db1bb9bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:9c:62:28:8d:ac:58:38:cf:91:b7:41:a3:fe:
fc:6e:d3:4e:1d:83:ed:b1:18:08:0f:e9:dc:b0:44:
b4:cb:49:00:c8:bc:4b:48:57:f9:c7:4c:8b:87:81:
1e:69:20:91:91:9f:97:19:5c:e4:ce:07:1d:15:a4:
5c:a2:3c:d8:9b:ba:9d:de:7e:a4:74:7b:46:a3:65:
7d:4e:e2:5a:a5:26:78:f5:3e:bc:a5:bf:6d:e9:ae:
46:31:2c:e8:a5:43:e0:84:16:ea:53:0f:ff:fe:ee:
f1:d6:e6:24:6c:9a:98:3a:55:65:b7:e3:25:db:a5:
bb:37:7b:f3:1e:e0:11:1b:8e:55:a1:02:35:39:6b:
bd:74:1b:cc:80:5a:b6:21:b6:c5:1a:09:9c:25:1b:
44:c0:79:c2:1b:47:22:0c:44:6e:e5:61:a5:e4:3a:
8f:66:a9:a4:24:07:81:b8:48:21:22:b3:cf:de:e6:
1e:7c:87:fc:ea:28:9e:5a:93:36:d1:e0:f1:99:f9:
65:5a:d3:ae:5c:5a:de:10:67:ed:4d:84:ee:75:dc:
14:ea:dd:fa:bc:e6:f5:61:a9:67:ab:71:26:15:81:
85:82:35:6d:2a:1e:c9:9f:2e:48:42:ad:7e:64:00:
15:cb:e1:2a:4b:e1:1c:e2:df:93:fe:cd:58:99:17:
13:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EF:BA:91:E5:77:52:10:06:ED:23:87:A3:3F:A4:3D:B1:BB:9B:EF
X509v3 Authority Key Identifier:
keyid:28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:73:54:a4:bf:a0:2b:aa:a3:9e:8f:70:51:72:54:c4:d4:50:
2b:c6:82:14:b5:3a:0f:39:81:c4:7d:6c:48:a6:7a:6f:83:83:
91:06:78:bc:c2:99:44:17:a5:bb:68:de:f5:d7:62:82:35:83:
0b:f1:8f:5d:f2:7c:3c:7a:22:b1:65:31:7d:be:d8:b0:10:3d:
23:b7:14:cc:96:62:f4:b7:26:99:64:95:e0:1b:36:d0:85:e9:
85:b1:02:96:9c:34:bb:50:3b:f0:95:28:77:d0:d5:3f:f5:a9:
1d:bd:4d:73:20:11:01:bc:5a:10:bf:e4:bb:c0:0b:61:16:bd:
ce:72:bb:d8:50:41:26:51:20:25:95:c6:70:ba:a4:98:ac:73:
e5:dc:b5:97:dc:92:a2:39:14:0b:e0:40:d8:52:1d:04:a0:1a:
4f:91:67:6f:a0:f3:d5:5d:10:cd:f2:8f:7c:dc:25:52:68:e9:
75:5b:20:5d:8f:1f:4f:d9:9e:38:10:9e:d3:28:9a:55:c8:84:
1f:14:9a:d7:4c:ea:0f:5c:ad:c6:42:5d:d6:56:c9:56:3a:1b:
0a:5d:4d:37:98:11:8d:5b:9c:e9:78:2a:f7:46:9d:c7:dc:a5:
3d:ce:9c:10:6d:50:65:79:49:cc:f5:07:2a:f5:79:a0:69:74:
f8:e0:21:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:25:26 2025 by rpki-client