Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
File: KqJOWBL8wxBrnrCusA5ie6I10FY.mft (raw, json)
Hash identifier: lViLgni8TeJH3WGL88MQvSxBJF+H9QlEpf2TlGENDTk=
Subject key identifier: 74:D3:24:E7:D1:20:38:2D:32:A6:97:B4:76:98:B1:16:FF:E2:23:41
Authority key identifier: 2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
Certificate issuer: /CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Certificate serial: 0198D5F1AEB98311A7AC350E15300D01F40D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
Manifest number: 08DD
Signing time: Sat 23 Aug 2025 08:00:42 +0000
Manifest this update: Sat 23 Aug 2025 08:00:42 +0000
Manifest next update: Sun 24 Aug 2025 08:00:42 +0000
Files and hashes: 1: KqJOWBL8wxBrnrCusA5ie6I10FY.crl (hash: LWkepdERaXca7nh8RNK3CqAY4IVqwdIOe157GStDWGA=)
2: cNLYAjPMpLbcGOrpCslyUiLMP34.roa (hash: JmHm3+B47TlFvMWFE2W9uNvIfC/wvizwOPaVYVDTxDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:ae:b9:83:11:a7:ac:35:0e:15:30:0d:01:f4:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Validity
Not Before: Aug 23 08:00:42 2025 GMT
Not After : Aug 24 08:00:42 2025 GMT
Subject: CN=74d324e7d120382d32a697b47698b116ffe22341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7e:e9:e3:5b:5f:a0:29:e8:30:b1:d3:90:25:
06:c9:79:78:3c:3b:e9:ac:91:34:c1:e8:0d:5b:7f:
d9:04:9b:73:1f:ea:0f:d6:6f:65:ac:f4:df:89:5b:
04:14:26:2f:85:ad:23:7e:97:e1:f0:18:62:17:21:
f6:c1:b3:07:b6:1d:24:ab:d9:05:a1:a7:29:ba:fb:
ea:00:8b:cb:54:4e:ef:d8:2c:28:7f:09:d7:49:4b:
d2:67:e8:1b:09:37:18:09:37:90:b3:3e:89:4a:19:
8e:dc:a6:17:8f:6c:8e:19:f4:0b:eb:22:4e:09:a5:
87:ff:f6:a3:93:c3:2d:25:ca:32:a1:c6:57:32:b3:
61:c8:a9:9d:39:f5:ad:80:32:76:db:25:01:9f:2e:
12:94:e8:54:b4:44:00:19:13:05:10:38:af:b5:7e:
5c:3f:e0:fa:9f:1a:63:9c:58:ed:a5:6b:23:4a:98:
3a:57:53:1c:6f:f5:0e:f9:0c:dc:bb:9b:69:f2:da:
09:bf:80:6f:bd:24:63:82:da:09:94:a2:6c:7b:bc:
f9:e3:84:7d:ee:f6:4d:d0:4d:b2:11:5d:62:93:0e:
fe:5f:4d:13:97:87:bd:33:68:1a:f9:08:f6:f4:09:
7a:fa:0d:9c:ca:1c:e9:18:e5:25:60:5a:08:ab:11:
43:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D3:24:E7:D1:20:38:2D:32:A6:97:B4:76:98:B1:16:FF:E2:23:41
X509v3 Authority Key Identifier:
keyid:2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:a1:c6:83:62:cb:fb:3c:96:15:1f:e2:10:fe:33:03:ce:3d:
8f:9f:04:09:f8:77:67:bf:0f:fd:e5:97:f6:01:18:c0:65:94:
e7:68:39:2c:92:2b:4e:32:21:9e:af:d9:df:e9:aa:01:eb:91:
97:34:f8:0d:b3:ca:16:f8:38:a4:ff:9c:25:f6:4e:ea:ff:06:
34:cf:22:2b:ad:e7:a3:91:97:a8:ad:58:98:bb:4b:7c:97:3e:
0c:ba:ef:99:16:7f:ac:e2:ee:80:e3:59:1f:1e:ee:45:2a:47:
64:35:4d:36:ed:f7:eb:2c:99:e3:dd:87:4f:06:7d:ce:ba:85:
d8:b4:6f:7d:52:05:ce:75:13:00:80:2c:89:5b:ae:e9:a8:25:
02:87:3f:c8:a9:1f:e6:37:9d:e8:5e:dd:39:07:d9:85:ce:49:
a4:d8:b7:56:54:58:d4:2c:54:76:7d:02:e3:49:7d:bb:47:82:
a3:53:46:28:72:81:f1:b5:dc:28:6f:aa:52:18:ad:a4:e5:e3:
52:95:e8:9d:3d:b7:83:14:07:da:43:6c:ea:18:70:c2:78:b2:
cc:a8:35:89:40:c4:80:e1:d7:d4:32:a5:16:b5:92:bf:00:e9:
ef:72:f0:ca:ed:3f:3d:92:1f:bb:50:02:38:65:59:6f:56:fa:
7c:f2:25:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:41:22 2025 by rpki-client