
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: 97nkvn1LSFrpEf3ihX5d4wV9sKuHpqhnyCkNiExcu0A=
Subject key identifier: 4F:AD:4B:6F:8E:B5:D7:95:26:23:18:9E:DD:C1:51:7A:71:5E:90:9B
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 0198D5BC2BE3703439DE9E2ED88ADEF52955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 1647
Signing time: Sat 23 Aug 2025 07:02:15 +0000
Manifest this update: Sat 23 Aug 2025 07:02:15 +0000
Manifest next update: Sun 24 Aug 2025 07:02:15 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: 5UJwrXxxojiZMQ9FjruvzFf3e0nfRMZqzoXxM/NTaD4=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:2b:e3:70:34:39:de:9e:2e:d8:8a:de:f5:29:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Aug 23 07:02:15 2025 GMT
Not After : Aug 24 07:02:15 2025 GMT
Subject: CN=4fad4b6f8eb5d7952623189eddc1517a715e909b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:09:11:69:4e:c9:db:98:b6:97:2a:3e:b1:a2:
d0:93:dc:ba:a2:d1:46:07:1d:01:05:f8:fc:d2:d7:
0f:32:ba:e8:d1:21:31:ba:0a:06:48:e0:b7:b9:df:
75:bd:3d:a8:89:8e:9d:bc:48:2f:93:1b:53:73:4c:
57:c9:0f:3f:4f:b5:c7:df:e1:09:93:a5:ea:bd:5a:
c3:ad:95:0d:11:f2:b9:c5:08:9a:4c:42:5b:95:16:
38:9e:e9:96:7f:62:d5:7d:18:d8:ac:19:5b:b6:80:
d6:01:8d:93:57:e5:66:af:fc:c1:32:d3:56:e2:6e:
52:b4:a6:ba:a7:e5:50:b4:1a:90:69:27:76:63:b9:
17:18:89:12:4d:dc:56:63:c7:95:7d:17:97:d6:0e:
1f:57:fd:7f:79:21:22:b8:22:71:b1:db:b0:bd:41:
1f:8c:51:78:dc:30:a9:1b:d6:3b:d7:d6:db:b1:6e:
2c:c6:42:4a:1d:e0:c8:14:14:c9:30:69:77:e4:28:
c3:99:4e:31:9d:e1:f7:88:5d:0d:6f:21:8a:96:7a:
8a:ea:e2:c9:77:6e:71:76:ba:f3:4a:86:cd:fb:9c:
7c:88:0f:71:ae:88:7c:1d:73:d4:a9:a1:e1:b9:85:
3a:99:e0:75:1f:d1:04:96:13:f4:08:29:09:2d:3b:
94:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:AD:4B:6F:8E:B5:D7:95:26:23:18:9E:DD:C1:51:7A:71:5E:90:9B
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f5:60:c6:eb:47:90:e5:1b:ee:09:76:55:2d:15:48:c5:99:
82:7e:cf:b1:7a:40:d8:96:46:18:16:49:b4:0b:8f:90:46:83:
e9:50:0f:fd:ba:b1:c8:57:44:18:29:34:a6:54:5a:e8:e7:c6:
e3:77:a2:c6:76:22:23:77:b8:00:95:d3:e6:3a:62:a5:a9:99:
a3:5e:73:1d:80:b1:15:f3:86:43:d9:29:4c:4a:37:2e:36:86:
d7:20:25:96:44:23:99:81:48:e2:22:07:7a:09:7b:f9:46:6f:
03:d4:6d:a5:a1:20:67:05:1b:93:8c:8e:00:18:b1:16:17:a8:
eb:14:aa:01:cb:84:41:f6:d4:20:53:fb:aa:1d:14:49:65:4c:
3f:97:51:53:1f:90:a1:1a:84:b4:e2:e6:38:9a:5a:ae:08:79:
f8:aa:83:10:d4:c1:da:e3:5b:23:d8:39:6d:ed:f2:31:e9:1f:
f3:8a:73:56:78:28:4e:87:68:9c:c4:44:9d:82:59:9c:62:76:
53:26:9a:33:66:78:c5:15:88:95:22:e3:b4:11:48:ea:0e:c3:
4d:f3:10:21:6b:3d:83:04:31:f8:57:a1:72:d1:fe:b2:b1:cc:
e5:fa:83:5c:a9:d2:38:cd:3b:5b:d1:79:93:7e:8f:01:81:58:
f7:28:77:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:01:18 2025 by rpki-client