Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: QikfMI4b6XJvArQz72zy/ab0cjD69bgCAuHbA83ciwU=
Subject key identifier: FC:E2:DB:C4:BD:AB:3A:F0:5A:22:41:90:28:61:7A:34:1E:11:CF:89
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 0198D5163B053F084C7544B1FC73CBC03977
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 04:01:00 +0000
Manifest this update: Sat 23 Aug 2025 04:01:00 +0000
Manifest next update: Sun 24 Aug 2025 04:01:00 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: J3vP8dEdH8oXkrV2LXPIRLuD8WEVDWL1NCvNyktUtkA=)
2: HUiYQLYoRn-P8-AKIUmGnSk_fUQ.roa (hash: ozdi5qHnRcow/nH1EVH0214AE7vAhAxmdAJcuT+IzE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:3b:05:3f:08:4c:75:44:b1:fc:73:cb:c0:39:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: Aug 23 04:01:00 2025 GMT
Not After : Aug 24 04:01:00 2025 GMT
Subject: CN=fce2dbc4bdab3af05a22419028617a341e11cf89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:39:3e:fe:af:5f:7a:86:c5:80:ac:da:a9:a2:
03:80:96:7c:70:bd:54:d4:f6:05:a9:6d:b9:8a:0c:
f6:f0:55:88:84:5f:60:8d:5e:17:b4:26:35:a6:3b:
2d:d2:9c:f6:bc:93:17:a0:dd:1c:ed:16:31:e8:5e:
52:bf:ef:a6:e5:00:49:9b:98:f0:44:ac:93:11:4b:
a6:88:59:b6:19:4c:8e:fe:ed:88:cb:88:88:17:17:
d9:47:05:f4:9c:62:73:42:fb:5d:f4:85:a0:37:e2:
56:40:44:a7:3b:2a:8f:c4:58:d5:5f:b8:0b:64:73:
86:b5:ce:80:31:22:34:28:25:94:9d:f8:48:55:85:
72:3b:3e:18:1a:6a:f2:9c:5e:2e:88:f0:b3:6f:3c:
eb:63:04:df:ac:be:04:3c:b1:3b:e1:ac:c8:ba:4c:
d2:4d:81:ed:f4:a6:fa:1c:9f:8f:ce:4f:99:4b:51:
98:a2:fe:e0:39:80:41:26:63:8d:da:42:ce:92:d8:
0c:a8:9a:c4:18:59:5f:8d:4c:4e:b1:27:bd:43:20:
a4:45:55:74:dd:c0:f2:40:62:f9:da:98:b8:d9:86:
16:58:b5:f3:94:48:27:eb:71:62:b2:75:e1:44:1a:
51:b5:48:9a:3c:05:0d:48:f2:28:0d:6b:bb:8f:0a:
a0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E2:DB:C4:BD:AB:3A:F0:5A:22:41:90:28:61:7A:34:1E:11:CF:89
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:e8:b2:15:ed:41:fa:4f:c1:3f:21:b2:f9:fb:e6:38:93:03:
2e:47:c9:06:cc:34:8f:60:16:d4:ce:4e:26:b3:63:e2:dd:a6:
35:4a:98:a5:8f:ed:eb:54:5c:fc:ac:9b:b3:aa:b8:eb:1a:ad:
ff:ad:55:57:5f:43:9d:79:0f:f3:c3:fd:d9:a6:17:9c:c5:f0:
f8:61:2e:b3:22:d8:fc:36:1a:f3:70:be:61:48:b8:5b:d5:20:
7f:29:ac:8f:20:d7:45:ee:6f:64:14:29:7f:50:19:3b:c4:bb:
c0:58:6a:0e:ba:93:4d:2a:c2:f3:0e:a0:47:44:89:4f:91:22:
be:e2:1d:7d:89:3e:aa:3e:89:36:73:f6:e3:fe:19:29:a8:03:
f4:29:66:c1:f5:77:4f:e9:db:56:95:bb:3e:fa:7e:5e:82:e9:
ac:8f:90:3e:f4:72:15:0f:61:42:20:bf:9e:3a:77:39:bf:97:
41:81:03:3c:7e:8b:70:d1:46:8c:14:67:6f:31:2d:55:27:8e:
f3:5a:0c:49:08:63:66:22:0c:f5:5e:03:2f:55:c6:e2:73:a2:
fd:3f:ac:28:42:96:90:d8:1c:92:eb:a0:77:e9:29:95:65:d1:
cf:db:25:66:af:11:89:33:8a:80:22:3d:29:dd:48:17:f1:a8:
0e:4a:61:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:20:50 2025 by rpki-client