Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: uB4VTQRUzL//jMsjhg5L57uegZ16oubrmkLeGKSuGIc=
Subject key identifier: CF:9A:F5:04:0D:9B:D2:6D:EC:04:CF:42:AF:2C:5F:34:91:66:6E:C2
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 0198D5163E3137678647F4854BC996DC5364
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 15C6
Signing time: Sat 23 Aug 2025 04:01:01 +0000
Manifest this update: Sat 23 Aug 2025 04:01:01 +0000
Manifest next update: Sun 24 Aug 2025 04:01:01 +0000
Files and hashes: 1: CgAYwcYqjGUwI5cuY-inYF9ViL4.roa (hash: DG9lxho2Qdp+1bj1jPdlMwaM6onKyvGHv7zkZeOCV70=)
2: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: o+oC/ISM03K7oVLcfCxBmqHv5zDgpLXFrq1EUFLL0Bk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:3e:31:37:67:86:47:f4:85:4b:c9:96:dc:53:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Aug 23 04:01:01 2025 GMT
Not After : Aug 24 04:01:01 2025 GMT
Subject: CN=cf9af5040d9bd26dec04cf42af2c5f3491666ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fa:7a:91:8a:8b:9f:38:52:d7:82:95:dc:bc:
c0:ca:f8:8b:a0:9d:fb:cf:3b:ee:f6:ac:75:e2:28:
93:58:ea:72:b7:a9:f0:7e:67:fa:e6:19:e8:3a:78:
f7:be:d0:f4:24:0e:a1:55:d0:1c:4c:f3:78:8e:c0:
9a:0d:11:86:23:b1:6f:9a:13:07:2e:81:7b:eb:62:
cd:c6:cc:90:4f:58:eb:71:18:a3:9f:0e:b5:2c:6c:
e3:19:e8:86:47:64:48:30:38:84:5e:45:f3:5d:1d:
fd:a5:d4:76:76:77:b3:6a:20:03:8c:d1:71:2a:8b:
fa:73:72:ef:6c:fa:81:43:fc:af:36:38:de:37:4f:
c7:d0:a0:ff:34:b3:39:4e:db:ad:22:83:ba:9e:64:
e8:be:37:6c:43:a2:b8:95:0d:60:ed:55:79:c3:52:
ec:9e:97:97:31:50:56:31:e2:ed:9a:0f:de:6e:8a:
d5:3e:ba:80:40:e8:bd:bf:c5:f0:93:dd:b2:9c:c2:
87:ab:30:67:95:2c:2e:04:08:3b:d1:88:bd:31:23:
0c:30:7b:65:44:fc:23:10:4b:be:75:b3:b6:54:7d:
ac:0c:3b:87:8c:3a:57:43:bf:6f:bf:56:99:8d:8f:
ea:70:ba:0a:72:68:8b:b9:45:23:37:18:4b:6f:95:
8f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:9A:F5:04:0D:9B:D2:6D:EC:04:CF:42:AF:2C:5F:34:91:66:6E:C2
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:54:f8:a9:d6:32:3c:97:b1:fb:33:0e:0d:d6:df:c3:1d:5d:
2d:c1:98:4e:81:55:5b:ff:48:7c:5e:b0:8b:7c:39:28:08:f4:
14:d5:eb:d9:70:52:ed:d8:df:8b:a8:cf:c8:6c:61:99:b8:c2:
1c:42:29:c3:7e:29:2f:25:df:2b:a9:67:74:57:bf:6b:05:15:
dd:dd:7e:7c:c8:c5:c5:ae:09:27:54:1d:ee:a6:91:cf:47:16:
1e:fe:42:54:ce:6c:00:e9:6b:32:00:5b:6f:7a:a2:aa:d4:6f:
0a:43:ef:b7:da:06:49:e3:03:74:c1:67:d9:09:15:aa:9f:83:
ee:4a:17:71:b1:6a:1c:57:db:31:c4:c5:3a:7b:d9:13:66:05:
ce:4a:72:09:62:81:89:c5:3e:8e:f3:93:4b:27:d3:52:96:48:
9a:81:38:98:a0:44:54:fa:a0:f1:22:51:26:8a:30:c3:54:64:
77:a1:f5:aa:9e:95:63:9f:0a:68:bd:c5:a1:9e:ef:5e:05:2b:
24:3d:af:25:f9:55:90:c6:e6:80:0f:40:7d:7c:30:42:f1:bf:
8f:32:a5:d5:54:e9:6d:c1:5c:8d:bc:5c:05:fe:5a:9a:3d:f5:
dd:78:5c:25:e1:dd:83:01:88:bc:55:3c:92:bd:6b:9b:c2:45:
08:5b:41:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:44:35 2025 by rpki-client