Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: TEOVgTvjoxai965tJSE1gsPaonuDAaKOAOgPmxXx+nI=
Subject key identifier: 47:FD:16:FA:54:41:62:3A:06:0C:D8:A8:C2:EB:9D:F0:24:18:CF:A1
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 0198D47267BFA65E7A2795B05BBDEECBFCE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 0FD9
Signing time: Sat 23 Aug 2025 01:02:04 +0000
Manifest this update: Sat 23 Aug 2025 01:02:04 +0000
Manifest next update: Sun 24 Aug 2025 01:02:04 +0000
Files and hashes: 1: 79LYqjKNTJN0ouKGzdcbqvTlAUQ.roa (hash: ql/wdfFz1qsER0EkZDThbVWptAlBg9mw+jziuKWlZyc=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: kM5wKSANHJiyYoZuQBjTeI8F0yrWX6HRYzEhGsetaTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:67:bf:a6:5e:7a:27:95:b0:5b:bd:ee:cb:fc:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Aug 23 01:02:04 2025 GMT
Not After : Aug 24 01:02:04 2025 GMT
Subject: CN=47fd16fa5441623a060cd8a8c2eb9df02418cfa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b2:e8:33:e5:34:7d:f6:8b:39:6a:da:1b:6c:
91:20:f5:e8:99:e9:b0:ed:11:0d:0c:27:bb:46:40:
af:05:5c:5b:ec:40:e9:aa:88:35:b5:4a:4a:f7:df:
82:25:5d:37:1e:f3:19:5a:b5:a4:8c:42:22:bf:92:
c4:8b:91:f5:34:ec:6c:90:1f:3a:bc:85:48:fe:59:
99:7d:7f:a0:48:98:c2:00:63:46:28:e2:23:f1:a1:
a8:87:37:64:1b:9f:e1:a1:c0:5f:75:52:a3:3b:39:
f8:93:ce:b6:c4:bb:d3:5c:60:30:6b:58:4b:ce:04:
5c:9e:4b:d1:23:5e:17:c3:63:c5:c5:47:b6:7c:56:
29:0c:f5:bd:95:c3:11:e6:70:57:75:bc:80:32:1d:
cb:e3:03:77:6a:81:94:c1:ad:72:92:27:52:e5:2e:
b9:49:91:de:36:da:4a:20:4b:91:1a:7d:11:e9:18:
de:3f:d3:04:7e:ea:66:ac:44:5f:2e:95:50:8f:90:
12:c8:c8:55:e9:70:48:13:c0:5b:a9:2f:56:a0:b5:
18:20:39:92:04:c4:3a:6d:d4:a8:8f:af:8f:f1:ab:
61:80:b6:83:cf:99:a4:86:92:8d:ef:02:77:0d:de:
30:59:fb:42:d6:bb:3d:fe:43:f3:44:44:14:36:12:
96:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FD:16:FA:54:41:62:3A:06:0C:D8:A8:C2:EB:9D:F0:24:18:CF:A1
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:21:8c:6e:5a:b0:ca:7d:fc:46:32:94:e9:ac:9d:7a:12:20:
07:aa:a6:43:85:3a:f3:de:94:e6:78:6b:9b:b6:86:64:27:6e:
f1:72:11:47:59:ab:f7:60:57:53:aa:6c:51:b6:d9:61:b5:13:
33:41:de:2a:4c:7c:5b:02:06:9d:da:bf:13:88:30:c6:92:28:
ff:fe:cb:bd:19:31:1a:3a:fb:3c:24:eb:ab:1c:b3:c5:4b:40:
aa:63:75:d4:99:cf:99:7b:2f:fe:9f:f0:f7:a6:0b:85:05:2f:
f5:ce:53:f0:ae:32:5c:f1:f7:f8:9e:8a:44:2c:58:74:dc:c5:
fa:3b:04:e7:53:b8:17:9d:2f:c2:d6:12:8c:a7:ec:e7:e3:3b:
7a:16:b8:12:48:54:a2:7d:09:7a:65:f5:89:ac:7d:fe:99:8c:
45:e1:b7:f8:6b:63:e0:c1:90:b7:e2:09:01:2e:63:93:9d:03:
be:37:f7:d7:6f:a4:f1:7b:50:8d:b4:ca:3a:fe:5c:12:28:56:
7e:45:87:0b:2a:ae:b5:80:8b:1e:a0:9a:1f:a8:65:ce:c2:8b:
13:4b:e8:7f:47:45:1a:9f:f8:a4:4e:95:2e:4e:e3:0b:d2:57:
a8:ae:d2:5b:29:3f:9b:83:ed:4e:31:53:12:33:bd:47:32:06:
a5:10:df:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:20 2025 by rpki-client