Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: +72Af+H57XuK80TvcWHs/kydMz3Nw8rzjVJLntzBZ3I=
Subject key identifier: FE:A3:DF:A9:3A:BB:12:C5:C7:93:A5:3C:96:CA:6A:67:CB:92:01:E4
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 0198D4A7E51F3F312F2E3655AB74C581CAEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 165D
Signing time: Sat 23 Aug 2025 02:00:29 +0000
Manifest this update: Sat 23 Aug 2025 02:00:29 +0000
Manifest next update: Sun 24 Aug 2025 02:00:29 +0000
Files and hashes: 1: 0_EpdViy3Y27mqejc66l1--sjBk.roa (hash: 5pxFxSH3+mNeuLlB3lfUr3Q81qL23oDYt7nqdhFYvqU=)
2: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: X6bvOAREt953EySekc0MwD+A8IJ4BNJckkzC5aOEHuA=)
3: LcFyOrobUrG-q36ENaVBWkIxyec.roa (hash: aiGhAwWl1vo/+1mZ5amS0ElRqf0Ru78HcL61kI16D7M=)
4: mJjYnvCF0aJWwcOO87dJLulTej8.roa (hash: cyYF0//qn6HDiGNvk9163fm1e6ldk0sS9GYuhZI3HqU=)
5: oOM7QrbyKmK3sX9tSspvcF4LQYc.roa (hash: FI0q4cfrXLcPzOiQWzP6cR+1RIpvdT5irQXBJq3jipE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a7:e5:1f:3f:31:2f:2e:36:55:ab:74:c5:81:ca:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Aug 23 02:00:29 2025 GMT
Not After : Aug 24 02:00:29 2025 GMT
Subject: CN=fea3dfa93abb12c5c793a53c96ca6a67cb9201e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:87:50:49:86:c5:d6:6e:4b:f6:69:eb:7b:
f2:87:77:c7:24:5c:5a:fb:d3:ab:cc:3f:e5:8b:3a:
43:a2:97:c9:b6:a4:77:aa:4b:8f:ce:f1:1c:8d:fa:
1e:35:52:cb:ab:c9:7b:84:4c:81:10:2d:40:0b:24:
d3:db:9e:c2:f2:91:e0:01:30:fc:d7:3b:5d:f9:13:
43:9a:84:ab:34:93:81:60:61:e2:22:9c:c2:8c:57:
49:2b:20:5e:02:43:df:48:7a:07:ba:fd:f1:88:6b:
00:03:c9:3a:05:d2:4c:8d:42:93:2f:92:5f:a6:67:
9b:36:d6:76:90:7c:4b:90:13:94:c9:89:de:93:4f:
f1:87:f6:f3:e1:17:52:8b:49:11:c2:ff:a4:dc:59:
79:1a:31:6a:27:7d:2b:82:4e:09:4f:c8:1a:5e:fb:
6a:fd:25:07:b1:65:fd:97:33:08:83:fe:2c:75:07:
7b:a7:e1:59:3f:5c:05:f2:04:cb:68:ff:e6:5e:4a:
36:a1:0d:49:5b:6a:45:30:17:77:3d:4f:1d:93:f5:
b5:ac:06:d8:48:07:63:9f:28:3d:40:06:e7:b6:13:
95:00:60:72:d6:3b:55:68:6b:c4:e0:b7:8b:d6:81:
4d:f0:55:e0:23:cd:e4:9b:40:f1:76:e4:4a:f7:13:
4d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:A3:DF:A9:3A:BB:12:C5:C7:93:A5:3C:96:CA:6A:67:CB:92:01:E4
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:a0:86:be:fa:a2:07:ec:26:56:04:fa:72:f9:29:db:34:52:
83:b0:a0:b8:65:e0:6c:76:98:8c:fd:2d:80:6b:a5:8b:b5:c9:
bc:b3:41:67:3e:61:8d:fe:2c:53:65:47:e2:2a:9c:be:c4:36:
c3:db:13:01:16:1f:5f:86:74:30:c8:1b:fa:55:9d:a8:4d:ed:
2e:60:2d:3c:e1:ae:07:42:fd:7b:2a:31:8c:c3:5c:9c:5b:34:
d3:e8:65:a1:28:a9:95:87:50:0a:f6:fa:52:f9:df:53:0f:9e:
99:e8:08:04:d1:a0:28:8c:9b:34:58:87:b6:ab:da:90:9a:96:
2a:52:4f:b6:48:c1:5b:d3:20:e2:c7:d1:9d:41:23:6c:a6:ea:
e9:ce:c8:3e:19:1e:08:0f:02:0e:4d:78:41:fb:c0:7f:7e:d1:
aa:d1:2b:e8:dc:83:0a:49:a1:68:1a:e7:df:36:f7:27:93:a7:
9c:99:00:18:61:98:21:71:b4:c6:16:33:03:f5:90:9c:1c:b9:
f0:0b:7c:17:20:7c:52:65:d1:5e:d1:0e:86:db:21:d4:ff:02:
09:fb:08:03:08:b0:8a:b4:3d:09:61:ca:72:b8:07:46:73:79:
a8:31:c2:eb:31:5f:45:81:cb:84:04:9f:3f:93:39:a7:ee:c0:
ea:79:3b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:12:37 2025 by rpki-client