Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
File: KgedPD3CTph79wxKn6u6QFsIOkU.mft (raw, json)
Hash identifier: snHk/Gwam3caD6Bcnubma0RhL+X1gGeWanP+983vGQI=
Subject key identifier: 8E:0C:9C:CE:A0:2A:21:A2:B5:9D:5B:C2:8E:DC:64:FD:F7:F7:BC:52
Authority key identifier: 2A:07:9D:3C:3D:C2:4E:98:7B:F7:0C:4A:9F:AB:BA:40:5B:08:3A:45
Certificate issuer: /CN=2a079d3c3dc24e987bf70c4a9fabba405b083a45
Certificate serial: 0198D4735C67136A6B549313D7FF3602A224
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
Manifest number: 0BBE
Signing time: Sat 23 Aug 2025 01:03:06 +0000
Manifest this update: Sat 23 Aug 2025 01:03:06 +0000
Manifest next update: Sun 24 Aug 2025 01:03:06 +0000
Files and hashes: 1: KgedPD3CTph79wxKn6u6QFsIOkU.crl (hash: Sa8/Dk4RrFN4Uv3NkRtpOfwaO+Kd+/uOhFa2xqXkrQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:5c:67:13:6a:6b:54:93:13:d7:ff:36:02:a2:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a079d3c3dc24e987bf70c4a9fabba405b083a45
Validity
Not Before: Aug 23 01:03:06 2025 GMT
Not After : Aug 24 01:03:06 2025 GMT
Subject: CN=8e0c9ccea02a21a2b59d5bc28edc64fdf7f7bc52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fe:41:29:3f:c7:89:8b:51:6c:10:26:86:66:
50:f4:09:cd:e3:84:88:f7:9e:21:4f:19:5e:d8:96:
4e:e4:63:e4:79:d1:60:c2:ef:e2:38:af:00:72:32:
df:09:4c:45:57:c3:64:bb:49:1d:66:c6:34:b5:59:
28:bc:9b:6c:b5:61:30:ea:a1:64:02:e6:41:d3:62:
57:d5:6d:fd:f5:11:d1:a5:03:8e:33:c6:4a:c8:01:
24:15:5f:fd:48:87:bf:c5:28:a7:a0:f0:e1:3e:d5:
2e:db:47:89:05:57:0a:02:15:97:b6:d1:f6:10:fc:
b1:50:d1:1d:1d:65:b1:ea:bc:bd:00:0f:0f:ae:cc:
cf:60:38:fd:96:b6:ed:41:22:0e:9e:89:9c:1f:61:
af:32:fd:6a:19:01:cf:53:91:28:9f:94:61:b8:0c:
6c:b6:9f:76:c6:13:11:2e:f4:bc:d1:90:55:51:4c:
76:55:ae:0d:af:05:83:10:d6:38:2a:92:11:14:2d:
5a:a4:10:bb:4a:40:7f:fc:08:f7:8f:8e:78:b2:e0:
9d:09:80:49:a1:c1:6e:f4:f1:ab:28:61:ca:0d:a4:
e8:ea:96:2e:c6:47:27:02:2f:a4:f2:57:b3:62:13:
f9:a6:bf:18:5d:6f:67:a3:21:cf:11:78:23:5e:59:
44:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:0C:9C:CE:A0:2A:21:A2:B5:9D:5B:C2:8E:DC:64:FD:F7:F7:BC:52
X509v3 Authority Key Identifier:
keyid:2A:07:9D:3C:3D:C2:4E:98:7B:F7:0C:4A:9F:AB:BA:40:5B:08:3A:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:ce:b4:1c:d9:93:b7:a6:cf:4c:19:02:6a:2f:6a:33:f9:39:
1b:ff:95:67:fd:ff:2e:da:df:9c:66:a1:ba:be:55:bd:2d:e5:
b5:38:43:e1:5a:1a:3d:09:be:5b:d7:2f:50:77:ef:0a:df:65:
3e:8b:12:9e:10:31:f3:1e:a7:34:af:81:3f:b3:3e:c8:73:a8:
07:51:b9:17:fd:f3:39:7b:f1:4b:47:8f:45:d9:ef:ab:26:19:
fd:2e:67:43:3d:83:4e:ed:a7:a7:6e:1b:6b:26:58:b5:ec:dc:
48:d5:cf:91:4f:a6:51:83:fc:df:7e:68:29:c3:30:05:66:1a:
87:90:d1:09:69:d8:17:54:9e:6c:ea:71:3f:7b:85:59:56:ab:
a3:a6:71:3c:3b:6e:a4:62:61:c7:1f:d1:1e:61:23:a6:73:5d:
ce:c4:43:1a:49:15:2f:22:56:d2:8b:fa:1a:52:50:16:ec:45:
04:8d:44:2a:19:55:c0:6b:64:38:e8:57:b0:fb:27:36:53:da:
32:e9:26:99:1c:0e:92:5f:be:aa:4f:06:af:e1:47:09:da:97:
05:d9:1c:b4:b2:e6:ea:c0:19:ce:cc:5e:9c:cd:6e:42:a0:05:
6c:a0:1a:39:ce:a3:ae:56:ab:c0:cb:38:d5:56:52:98:03:97:
dc:1a:a3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:13 2025 by rpki-client