Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: BfjaGg4rzNejFFk51N9YxapYaJwuqgRO6kp+1x9KEVo=
Subject key identifier: C1:2C:D7:91:DC:D3:B4:53:C2:0D:01:47:ED:2E:EA:AA:C5:27:19:1B
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 0197CF4DF09F16B72C2A19A0514115DB143D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 0318
Signing time: Thu 03 Jul 2025 08:01:20 +0000
Manifest this update: Thu 03 Jul 2025 08:01:20 +0000
Manifest next update: Fri 04 Jul 2025 08:01:20 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: kOw5hgfRZ/HMBKCVMxwPnLS8WunMBnblsCqayiBJbbk=)
2: OsS2avf_SCsvTL1pRqTL_5n-su8.roa (hash: q2VY8Sbvggao2o4h3H+VtLne6bMzXujw9hwcUuBVuOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cf:4d:f0:9f:16:b7:2c:2a:19:a0:51:41:15:db:14:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: Jul 3 08:01:20 2025 GMT
Not After : Jul 4 08:01:20 2025 GMT
Subject: CN=c12cd791dcd3b453c20d0147ed2eeaaac527191b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:dd:74:d2:77:07:a1:bc:af:f1:89:85:cf:2b:
9e:4a:fe:87:54:81:65:4d:db:f1:eb:fd:98:c6:e5:
0b:df:8c:9b:4d:23:f3:c3:c1:dc:50:03:c4:d2:0c:
db:2f:7d:10:bb:82:41:05:86:d7:f3:fa:18:7e:d4:
8c:6c:d1:e9:4f:d9:54:91:7c:ba:9d:fc:fd:0f:e1:
a5:b2:91:69:c7:40:0d:fc:fd:69:85:f9:64:68:1e:
0f:b6:a1:a4:7f:c8:2a:42:6b:3a:22:0d:fc:87:49:
87:3a:1e:d5:f8:30:e4:21:3e:32:f1:c6:7c:a5:a0:
a6:3e:3b:39:2c:0a:a7:50:89:92:53:fa:91:24:70:
3c:a3:2b:1a:d6:38:8e:e3:df:cb:0f:29:48:6b:d9:
58:72:18:37:8d:a8:c9:36:09:6b:2c:21:5d:dd:56:
ae:36:41:44:01:ac:1b:cf:0d:a3:86:4e:78:c8:33:
f2:44:a4:50:11:a8:20:42:b5:3d:4c:26:a6:ac:ce:
7c:6a:2e:a5:7f:c9:83:31:a9:ef:e3:05:f2:86:8e:
7d:ec:d6:21:51:9d:72:8f:23:a8:06:19:06:2d:58:
0a:00:81:9e:45:b6:50:4e:5d:43:b1:ae:52:6d:76:
1a:df:1a:12:3e:51:8d:3c:fc:df:7c:1f:f5:a6:ba:
66:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2C:D7:91:DC:D3:B4:53:C2:0D:01:47:ED:2E:EA:AA:C5:27:19:1B
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:0f:e5:ad:96:2e:3c:8f:e1:e1:87:bb:a0:5a:50:a8:74:74:
dd:9e:31:3a:35:3e:30:4c:8c:b1:94:2a:a2:5c:b9:15:37:8c:
63:7b:d6:66:02:0e:34:4c:b3:5e:b5:da:3f:a7:b2:b2:9c:f8:
88:07:06:c4:a5:4c:84:b3:ec:9f:f0:98:41:4f:bd:d3:40:b3:
22:4f:30:e8:23:c9:4d:e4:2d:c0:05:c1:65:1e:fc:a1:bf:b3:
4b:a9:48:f9:f8:52:ff:b6:be:57:30:5f:bf:9d:96:8c:e3:73:
95:5f:c9:28:49:8b:83:8f:5d:34:ff:e4:68:b8:95:a6:14:31:
ea:a0:fe:48:90:d0:61:14:9e:0b:fc:0a:e2:e7:f3:96:fd:54:
fd:ed:33:93:0f:f0:e5:f1:aa:72:2e:01:89:10:dd:b4:a1:d1:
5c:d2:c9:90:d6:85:91:ec:99:9e:c5:a7:26:51:e9:40:89:a9:
f9:22:93:cb:2e:d9:1f:7d:7f:7b:31:ec:f1:a5:b9:e2:93:26:
5c:14:fc:6f:b1:7f:ba:cb:73:96:5d:0f:3d:e5:fd:b9:4c:d9:
36:0e:67:bf:b8:1c:a3:4b:29:b4:77:fc:08:d7:e7:b1:d1:80:
87:d9:f5:18:8e:20:78:40:ba:70:ef:c5:8e:8a:05:0a:53:d6:
3a:2a:fa:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 14:15:12 2025 by rpki-client