Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: Hkaymqo6fMZhZhcziiuTjM9PO+HhGeMt5JrTosOI/4E=
Subject key identifier: AF:AA:53:13:CA:F0:C0:57:6D:86:59:5D:F0:CE:D3:5E:68:E4:47:A0
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 0198D7E17C22EB4947283FF70B8C5F592C13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 03A1
Signing time: Sat 23 Aug 2025 17:02:15 +0000
Manifest this update: Sat 23 Aug 2025 17:02:15 +0000
Manifest next update: Sun 24 Aug 2025 17:02:15 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: obdWNSftx3VcZ6eI7Piz5XGLXSSQrikgsui6fUJ6XVQ=)
2: OsS2avf_SCsvTL1pRqTL_5n-su8.roa (hash: q2VY8Sbvggao2o4h3H+VtLne6bMzXujw9hwcUuBVuOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:e1:7c:22:eb:49:47:28:3f:f7:0b:8c:5f:59:2c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: Aug 23 17:02:15 2025 GMT
Not After : Aug 24 17:02:15 2025 GMT
Subject: CN=afaa5313caf0c0576d86595df0ced35e68e447a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8e:7a:0d:7c:ec:df:1d:3a:d0:97:fd:f5:30:
6a:da:e0:db:e6:12:8e:0a:fa:32:27:75:46:75:b8:
b7:ad:cc:87:e9:21:5d:6e:70:80:ca:4a:17:ce:66:
57:45:7b:1f:b0:fa:fa:81:11:1f:3a:b1:33:18:b2:
4e:fc:cf:7d:80:c8:e1:a0:48:6f:29:f6:0a:63:4b:
75:5b:6f:4c:a0:33:88:28:e5:67:72:79:19:1b:62:
81:d0:5a:ac:b6:93:d4:01:88:8a:af:c3:fb:5a:b6:
21:36:2b:50:bf:9d:f5:0a:88:68:b5:97:0a:bf:e8:
ff:cd:f3:6a:87:ee:47:b8:d8:a0:10:ac:a8:ca:5f:
b3:b7:25:d0:43:23:e1:10:90:73:a3:77:02:37:1f:
f1:6c:3d:fb:26:ec:ef:a2:0b:af:93:ea:de:f3:81:
a4:2b:c4:66:33:55:4c:5e:0f:c0:e5:43:21:20:5e:
cb:ca:5d:b5:9d:0c:90:e4:79:b2:7e:26:e0:65:00:
e7:ac:56:b2:79:5e:f1:22:9d:29:d5:ac:17:c5:47:
3a:52:ef:2b:45:b1:33:ae:49:59:9b:e4:6b:7a:41:
78:a0:39:00:86:a8:a9:0b:81:e8:a5:70:85:13:9b:
39:d4:0f:69:b2:10:73:0b:92:03:e9:f3:b9:36:8c:
1b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:AA:53:13:CA:F0:C0:57:6D:86:59:5D:F0:CE:D3:5E:68:E4:47:A0
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:a6:cd:53:02:a5:66:1e:7d:ff:b7:af:1f:81:ce:16:8a:6c:
84:13:12:bf:8a:1f:f7:a2:c2:f1:95:22:6e:50:6d:a2:80:fc:
12:d7:e8:71:b2:d4:22:ee:6f:ff:41:a9:1a:be:e9:c9:97:3b:
64:88:29:1d:7f:42:b7:af:fb:5f:3b:bc:1d:d4:01:d1:f7:7e:
b0:4c:a1:27:ae:54:bc:f9:78:b2:78:de:35:fb:48:b3:60:83:
8e:b1:b4:3e:45:14:94:64:c8:45:ec:ca:17:a5:e3:7d:bf:06:
d2:00:00:ec:24:ca:0a:1f:e7:5d:88:e8:a8:d6:b6:07:b3:f1:
23:51:37:39:80:1b:1d:27:e0:cc:eb:50:1d:cc:15:45:a6:4d:
94:1f:20:a4:ac:00:f4:54:c9:a0:3a:20:0f:d5:e6:80:85:d6:
fc:22:5e:31:14:c2:7e:01:19:cf:29:ec:93:73:ef:f7:07:dc:
05:9b:78:d8:e9:66:04:b4:6e:99:a9:da:c1:95:b7:a4:f1:a5:
dd:85:3e:df:d2:09:93:dc:f8:87:68:8a:0a:79:ff:97:42:e8:
f2:69:bd:65:06:05:6e:f9:74:b3:92:9f:a8:23:8c:6e:f6:55:
e2:ba:a4:b8:34:df:f2:db:c2:3a:81:94:b7:1c:9c:69:5c:f0:
2a:61:7e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:34:56 2025 by rpki-client