Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
File: kgm43V6nJYkIN4Zh8rqe-JrToLE.mft (raw, json)
Hash identifier: itZi9jaXhBWUpVzllZORAyoAMQzbGmdi21N4uaalzkU=
Subject key identifier: 3E:AF:5C:54:00:25:11:91:B4:E1:3E:E0:39:F4:7F:6A:E4:5C:56:EF
Authority key identifier: 92:09:B8:DD:5E:A7:25:89:08:37:86:61:F2:BA:9E:F8:9A:D3:A0:B1
Certificate issuer: /CN=9209b8dd5ea7258908378661f2ba9ef89ad3a0b1
Certificate serial: 0198D4A7FC4122771348C499F9FAED217840
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
Manifest number: 01BC
Signing time: Sat 23 Aug 2025 02:00:35 +0000
Manifest this update: Sat 23 Aug 2025 02:00:35 +0000
Manifest next update: Sun 24 Aug 2025 02:00:35 +0000
Files and hashes: 1: WReM2adAhR_LtpNyhGqyNjE1Y4M.roa (hash: CfgqMj+xDVkXamVtZy6LM6aMe3AmsivTTFfgXAb+rPQ=)
2: kgm43V6nJYkIN4Zh8rqe-JrToLE.crl (hash: kThEqtw0xDh1gu4PXxZE7mn6Ouzt+RtPYYhlara00Yw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:fc:41:22:77:13:48:c4:99:f9:fa:ed:21:78:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9209b8dd5ea7258908378661f2ba9ef89ad3a0b1
Validity
Not Before: Aug 23 02:00:35 2025 GMT
Not After : Aug 24 02:00:35 2025 GMT
Subject: CN=3eaf5c5400251191b4e13ee039f47f6ae45c56ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c3:05:57:26:38:7a:93:5b:7f:3b:fc:4e:17:
85:80:8a:0c:56:3c:92:23:be:fb:f3:52:da:e3:19:
7d:72:f6:6e:d6:52:b5:50:d4:49:c0:08:dc:46:d1:
f1:32:13:25:f8:34:2c:ec:22:8c:08:f1:49:3b:2b:
ac:5b:b9:b5:6b:0b:58:54:b4:51:e4:bb:91:3d:48:
34:b4:57:af:91:cb:0e:5d:68:b3:a1:ea:8b:42:b3:
24:4d:51:78:86:75:6d:cb:1f:d9:aa:18:ce:b7:3f:
c8:75:08:53:83:09:d0:5b:aa:9f:b2:70:20:2c:11:
6f:15:85:5f:e1:46:ff:f1:68:d6:a1:99:4d:0e:c3:
eb:7b:ee:b6:8e:0d:32:cc:f0:18:5f:44:02:ab:e5:
27:89:40:1c:3a:51:13:70:93:62:e3:97:f4:07:0a:
d1:e4:45:3b:6b:80:08:6b:bb:7d:eb:70:9f:b0:79:
2d:19:bb:50:a8:d9:2f:20:e8:42:17:3d:f0:ca:c1:
45:fd:2b:e1:99:f5:32:46:86:0f:37:cb:2d:5e:b5:
5b:e9:a1:55:15:38:6b:a7:25:22:96:d1:9f:60:d4:
eb:cc:e7:91:01:c4:17:c1:4c:ef:e3:3b:ef:7e:c7:
85:cc:74:d3:05:b8:41:a4:cd:cb:a0:74:08:ee:3a:
98:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AF:5C:54:00:25:11:91:B4:E1:3E:E0:39:F4:7F:6A:E4:5C:56:EF
X509v3 Authority Key Identifier:
keyid:92:09:B8:DD:5E:A7:25:89:08:37:86:61:F2:BA:9E:F8:9A:D3:A0:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:2a:a6:64:93:dd:0c:18:a3:f0:bf:21:e1:52:e1:e0:5f:54:
e5:91:b5:ee:31:02:1d:48:7d:f5:0b:7b:45:2b:82:79:70:7c:
ca:b4:bb:95:32:ab:6d:a6:58:5c:88:7f:a9:88:60:3c:af:41:
35:53:92:41:11:34:8f:e2:0e:c0:d1:ff:2c:ec:ea:e9:6c:39:
26:c7:2a:bd:73:1f:c8:c1:d3:26:ab:7f:ce:33:8b:45:ba:e5:
04:a6:48:bc:18:3f:58:af:15:4e:3c:ab:3d:6b:56:79:b0:39:
f3:d5:fa:3e:68:7f:48:e2:75:4d:41:0e:96:11:c0:79:37:84:
4b:42:3a:c3:1d:ef:46:ee:6f:0e:5c:8e:8d:f3:cb:8a:b8:00:
41:b1:e4:64:e7:41:ab:b5:a1:20:1a:19:b3:ac:74:da:2e:fe:
9e:58:2a:ed:d9:f7:c2:3d:19:2d:1a:03:a1:6d:9f:24:15:b3:
5f:59:eb:52:39:cf:e9:99:6a:de:50:39:4e:16:2f:01:03:e4:
04:5c:ae:ea:ad:f3:68:f0:8d:3c:9b:9a:84:23:61:b3:42:c0:
0f:46:37:df:31:91:95:92:ae:59:fe:03:8e:fe:31:aa:fa:91:
54:cb:be:c7:fa:5c:2f:f6:d9:4a:3f:55:84:c6:b4:49:79:c5:
9f:50:0f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:12:45 2025 by rpki-client