Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
File: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft (raw, json)
Hash identifier: Sr/erymIbeqzyutiIWJHFEvLH2bINtkdAQJFlcO1TFs=
Subject key identifier: 36:EC:64:63:CB:11:4E:C0:FF:C8:C0:72:55:F5:AE:E8:4C:57:F4:7B
Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Certificate serial: 0198D73B785F57BA45ECF1DA7027F7999BBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
Manifest number: 0667
Signing time: Sat 23 Aug 2025 14:00:55 +0000
Manifest this update: Sat 23 Aug 2025 14:00:55 +0000
Manifest next update: Sun 24 Aug 2025 14:00:55 +0000
Files and hashes: 1: 1-PjUZT902dDkd6VPDrdDPHXwUZw.roa (hash: MHJPB3k7tQCL3suOF/2f4yZcUJ+jnvq9tJxwFWeEEbc=)
2: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl (hash: rUND2dHECcnGC0MHZwlrAOmYCnK3DRoZvQs8cy97zyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:78:5f:57:ba:45:ec:f1:da:70:27:f7:99:9b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Validity
Not Before: Aug 23 14:00:55 2025 GMT
Not After : Aug 24 14:00:55 2025 GMT
Subject: CN=36ec6463cb114ec0ffc8c07255f5aee84c57f47b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b8:35:7c:6d:a0:bf:7a:f6:24:b5:ff:fa:b5:
64:24:4b:99:8d:46:0e:22:c0:56:4d:76:22:ff:00:
06:35:00:77:38:bb:d4:62:73:bd:2a:76:60:68:e5:
9b:b1:3c:81:eb:74:0a:75:cd:f6:4a:84:1d:49:2d:
91:55:3f:9d:6c:3a:3d:aa:bc:44:91:97:ed:f7:b8:
c0:bc:ea:2f:eb:5b:8f:7c:b9:ca:21:af:fb:c6:e0:
d7:1d:53:8f:48:4d:79:dc:f1:ad:d6:d9:40:8b:74:
f3:bf:db:e3:57:ff:9b:19:2f:7c:a0:7b:a3:d9:8e:
2a:32:1c:9e:00:74:a1:2d:8b:1a:f9:a5:fd:91:21:
06:64:c7:87:b9:4c:80:f7:94:e6:0a:d2:a4:95:0c:
ec:7e:91:f5:28:77:14:cd:23:05:9c:f6:8c:7c:17:
7d:a5:17:23:92:36:28:f5:94:a5:cf:17:8a:3d:0b:
e7:40:e5:94:b3:92:8e:c3:75:69:56:cb:39:70:6f:
61:a9:86:09:12:f3:64:d3:0f:b4:9f:f8:e2:ce:f0:
96:62:71:fa:71:d4:49:72:27:b2:a0:8c:fe:b6:d7:
71:d7:1e:43:a9:f5:2a:4d:a5:ed:7a:1e:8f:07:e0:
96:d9:af:40:e9:24:cb:08:c2:99:16:19:83:c7:86:
6e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EC:64:63:CB:11:4E:C0:FF:C8:C0:72:55:F5:AE:E8:4C:57:F4:7B
X509v3 Authority Key Identifier:
keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:19:d5:80:84:8b:0e:39:fa:6b:db:d1:5e:e3:8a:94:23:ad:
e4:31:81:e2:98:93:a5:90:ed:90:83:a8:32:2b:a8:9b:b3:16:
a0:38:c1:7b:c0:18:ed:a4:a6:6a:f2:4b:4e:48:8c:c2:a6:25:
16:61:03:2b:26:4e:82:0f:25:b8:10:fc:3f:26:e9:10:e2:8b:
26:ee:be:c3:a6:e7:1d:05:ce:84:68:3f:af:65:61:e4:08:3d:
1f:ca:03:8b:c9:f8:63:cb:35:66:06:80:05:91:bf:dc:2e:60:
ee:7e:7b:69:1e:44:fe:cd:c9:fe:59:14:14:96:7f:b5:58:24:
ec:4c:38:38:54:a6:ba:77:9c:40:c6:a6:56:c5:40:11:f9:ea:
41:8f:6b:24:ac:7d:97:d4:fc:9b:74:df:7e:83:73:98:88:52:
cb:c9:0a:18:11:bc:af:bd:4f:71:fb:a0:6c:06:00:71:c4:fb:
8a:e7:df:6e:27:ec:cf:fe:b0:9f:6a:e0:5c:38:31:84:63:4a:
c2:4e:67:fd:b7:75:f8:2d:ce:fd:4a:e5:8c:ac:a7:ae:16:c7:
3b:a7:c6:20:bc:78:c1:f2:5b:03:f4:e4:39:5c:10:d7:ea:0a:
f0:c4:9e:b9:1a:91:ea:7d:1b:28:e7:d4:5a:a7:37:86:03:8d:
98:b6:ea:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 19:08:21 2025 by rpki-client