Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
File: KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft (raw, json)
Hash identifier: HOHqhn5jFvk9tl5h3mRSAgzj1o+DV001nj4/3QAIE9A=
Subject key identifier: 2E:71:DC:D4:A8:CF:75:B6:F7:A1:72:BE:FD:8B:83:47:93:D2:95:4F
Authority key identifier: 29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
Certificate issuer: /CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Certificate serial: 0198D4DFDF895D01FC9ACCC3F65C2BBA4F2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
Manifest number: 0CE3
Signing time: Sat 23 Aug 2025 03:01:38 +0000
Manifest this update: Sat 23 Aug 2025 03:01:38 +0000
Manifest next update: Sun 24 Aug 2025 03:01:38 +0000
Files and hashes: 1: 3Q4b3ZrB5hBNl0sc19tX6sYik8M.roa (hash: Y2d6NgWxe37Sh2Kw4xqcfrnYvSssw7Fp3dHdg6i9y18=)
2: GL9mMoVzYzt9cAMp9ZMhDNvyxpY.roa (hash: sr1sGLjbfiu/0SvHpnzyQUaLuHxB9sxU75fTY0SHxZw=)
3: KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl (hash: jAzLokw+mvdaXDZ64yqWDqxLTC2GT6aqmY4xwDIpgG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:df:89:5d:01:fc:9a:cc:c3:f6:5c:2b:ba:4f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Validity
Not Before: Aug 23 03:01:38 2025 GMT
Not After : Aug 24 03:01:38 2025 GMT
Subject: CN=2e71dcd4a8cf75b6f7a172befd8b834793d2954f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:69:7f:43:13:72:05:2d:9c:8f:0d:a0:86:1f:
27:e6:a0:4a:62:03:9f:35:f9:00:f1:4a:08:e0:09:
63:41:e5:7b:ab:b6:f7:17:33:cb:e2:ff:a0:6a:92:
bd:0c:21:68:ff:d6:28:1b:47:bd:0f:29:ec:3a:63:
ac:39:d9:ed:13:79:1d:ab:3c:95:d2:0c:23:39:49:
e0:91:60:25:d1:77:9f:6c:cf:9c:aa:c1:c7:d5:aa:
c7:8a:b3:60:38:ec:cb:3c:4f:8f:35:42:68:9b:3a:
d7:92:30:40:41:60:34:6e:42:02:63:85:d2:86:2c:
3a:a8:5f:25:bf:5d:05:5e:16:ba:29:9e:0a:6e:5c:
b7:6f:46:e1:6a:45:c1:fb:53:bb:a5:c8:04:59:49:
7f:2a:dc:79:d7:c3:f7:69:db:1a:e1:a8:4c:fc:1c:
85:f4:c0:1e:57:d2:6a:1c:ae:b5:de:c0:a0:7a:94:
bf:e9:bc:15:d7:f8:1d:b5:47:f4:ad:8b:99:93:87:
99:ba:db:3b:b1:23:1b:07:2b:a7:3b:b0:fe:ae:e7:
df:9d:1c:05:ac:a5:91:24:b3:0f:5b:10:08:86:da:
62:35:f5:5b:90:3d:bc:1e:cd:b2:b5:b4:49:78:07:
ac:0c:29:e1:81:db:a6:13:da:3e:ba:8f:fc:47:f3:
e0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:71:DC:D4:A8:CF:75:B6:F7:A1:72:BE:FD:8B:83:47:93:D2:95:4F
X509v3 Authority Key Identifier:
keyid:29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:cc:55:62:97:c1:1d:2c:34:6e:21:55:08:e2:9a:ea:77:4a:
5c:2f:4a:6c:2b:8c:bd:20:0e:f2:73:ae:81:7a:4c:d4:6e:7f:
ab:30:68:c2:f8:db:98:90:b6:61:18:7f:80:63:b3:5c:91:80:
b7:b7:09:0a:be:e2:67:dd:18:eb:32:0d:a8:f6:3f:1f:2f:86:
c5:c1:64:10:2e:74:f3:47:71:d8:fd:a9:1d:a0:00:46:dc:3c:
93:26:6a:0b:35:74:22:fa:89:cd:2e:0a:39:ac:72:44:31:4f:
8a:ac:c5:0e:4b:f1:25:6c:98:57:4e:97:4a:6d:ed:69:25:2a:
1b:ff:75:9a:e4:43:94:c1:6f:8e:6f:37:6a:c2:31:66:58:d6:
d5:8c:bc:4c:15:63:c7:13:87:b7:23:5e:96:13:01:0d:a6:0b:
30:8f:af:b7:bd:19:f8:e2:c7:f4:6c:d7:59:3f:a9:29:a4:e3:
5a:26:e3:c2:95:a5:7b:bf:41:4f:de:c0:a5:4b:26:db:7a:40:
e5:45:bf:3b:0c:9e:8b:cb:ec:c0:79:f6:44:8e:3a:03:1e:f7:
2a:34:bd:76:0d:54:eb:1e:d3:43:06:74:ed:4a:e2:da:34:da:
08:2c:87:a9:e1:b5:f4:f0:15:38:82:83:98:9c:f9:c2:16:e1:
a8:24:61:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:36:05 2025 by rpki-client