Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: 1kIE93Cg1dgfmi9Mf085pQ6BlJQsPlJbUKZHyCtzUfY=
Subject key identifier: 20:DD:FD:94:DB:6D:5E:23:0A:32:34:72:B1:4F:FA:E7:DC:85:DB:18
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 0198D54DFF40EC580B0659B8CFB6B012922C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0CDE
Signing time: Sat 23 Aug 2025 05:01:55 +0000
Manifest this update: Sat 23 Aug 2025 05:01:55 +0000
Manifest next update: Sun 24 Aug 2025 05:01:55 +0000
Files and hashes: 1: GDngKunQly0rXAZJTM9K6ouZldE.roa (hash: srWtclzCrCIl56nGBNOU8VqqYjtRTWRgnKIo2g1oYz4=)
2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: rmD9Dh62QhMpKrXbTYAHt+42pPIkjURByu0IZ7flGZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:ff:40:ec:58:0b:06:59:b8:cf:b6:b0:12:92:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: Aug 23 05:01:55 2025 GMT
Not After : Aug 24 05:01:55 2025 GMT
Subject: CN=20ddfd94db6d5e230a323472b14ffae7dc85db18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:54:24:13:32:54:80:1c:11:26:62:6a:61:47:
84:66:c4:74:2a:02:33:0f:ce:a7:88:49:98:0b:47:
33:e2:19:8a:55:b1:d5:46:b3:9a:a5:10:19:c9:35:
67:9b:e3:45:ff:83:54:88:1f:90:70:37:9e:73:67:
d8:bc:38:74:ed:6d:f1:b3:84:99:d7:fe:36:5b:72:
e6:fc:b8:a5:d4:f3:16:67:36:74:10:36:3f:9c:af:
c7:21:d5:01:99:28:35:34:42:95:d6:34:64:3f:b9:
1c:eb:63:0d:20:4f:c3:ff:a7:e0:13:04:75:32:d2:
a3:47:1a:ec:c6:ef:72:16:c3:ff:03:83:db:d5:03:
f6:8d:7b:a1:4f:a4:6f:03:f1:b4:cc:aa:ac:7e:19:
64:15:29:0f:b8:6b:77:89:f6:72:72:a2:15:87:5e:
e2:91:3f:46:c5:7d:71:12:e0:8f:0a:78:56:ad:00:
f3:e3:06:9c:6a:b7:94:b3:e9:84:b3:86:d9:e4:a1:
e6:44:d7:00:28:21:ae:06:26:d6:5c:2b:a4:e1:1e:
40:88:b8:fa:d8:9c:ca:71:13:a4:40:09:ef:bd:68:
c0:1c:e5:aa:90:11:be:db:89:26:6b:c1:a8:6b:ae:
05:cb:ba:70:70:8c:fb:09:89:ff:87:4c:c4:4f:bb:
f8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DD:FD:94:DB:6D:5E:23:0A:32:34:72:B1:4F:FA:E7:DC:85:DB:18
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:58:fa:b1:00:04:5a:6c:e6:e9:7a:c4:9d:39:f0:59:45:ef:
f3:ef:22:40:f8:d2:dc:40:00:c7:ce:ed:e3:b5:d4:58:fe:94:
cb:14:c8:20:16:fa:60:40:2e:3b:07:2f:59:b7:89:a8:31:08:
18:b5:3b:47:6f:fb:26:b8:f8:93:bc:45:66:c8:c7:95:18:f4:
9d:3f:7b:1a:a0:48:f3:08:48:e8:3a:e2:0e:41:c2:3f:11:c7:
49:07:57:b9:70:b7:14:69:fd:fe:4c:8c:da:1f:89:95:db:56:
f7:16:74:ce:67:e0:14:98:0c:37:e2:a4:69:f7:1c:ac:f5:97:
75:e1:9c:58:32:86:cb:a6:16:49:78:a0:79:47:a7:c6:fe:15:
fd:08:d9:de:e9:74:8a:3c:a8:2b:78:1b:fe:5f:5d:ed:d0:01:
5d:16:b2:84:f7:33:be:9e:d2:4b:f1:38:98:cc:bb:a3:79:d7:
81:22:5f:9f:27:ad:28:44:92:4b:27:d0:68:74:04:88:a9:d7:
f3:0c:5a:6b:0e:97:ba:3f:bd:67:68:24:16:66:96:57:0f:f5:
bf:0f:28:2e:b2:e0:c2:78:22:64:ed:ce:5f:74:3e:b8:54:67:
ad:b4:ad:af:3b:24:6e:4a:14:25:af:5d:e1:b6:9d:17:75:a4:
97:3e:aa:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:08 2025 by rpki-client