Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: RrjqzJmvP2is5X7bbta88WDmxhXmwMVbs8+/gjFloc4=
Subject key identifier: D2:B4:71:54:A6:FB:AE:15:22:70:38:24:51:2B:CC:AC:5E:C6:18:9B
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 0198D4E08F254F5967C8FEF7B43B780AA650
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 0706
Signing time: Sat 23 Aug 2025 03:02:23 +0000
Manifest this update: Sat 23 Aug 2025 03:02:23 +0000
Manifest next update: Sun 24 Aug 2025 03:02:23 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: b2mWONiaOHSigGc9qMRE9FOGC194n9g7MQOp25I6anM=)
2: wd_UoJqlC6X8mKMfS7O-YEGVRuo.roa (hash: xFPdoUnkz2JIkzmQ5taq1hUGjTFKvPuKX93R37CXGQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:8f:25:4f:59:67:c8:fe:f7:b4:3b:78:0a:a6:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: Aug 23 03:02:23 2025 GMT
Not After : Aug 24 03:02:23 2025 GMT
Subject: CN=d2b47154a6fbae1522703824512bccac5ec6189b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:33:bd:6c:3b:28:c2:f6:dd:32:84:81:0e:86:
a7:66:7e:64:ff:d1:8a:8c:87:4e:27:f0:4d:05:f1:
ca:fe:8f:c5:f3:b3:22:a5:52:e7:2b:68:eb:b3:7d:
37:d9:58:6b:4d:91:94:b2:65:be:1f:02:71:d4:89:
d7:bc:25:31:7e:fa:76:c1:ca:f7:eb:d1:0f:3d:ac:
38:23:64:16:1b:54:e1:76:58:c9:c8:90:e1:f9:f9:
10:dc:b4:cf:a6:c5:ad:36:9c:8a:a2:a1:68:51:fb:
bd:89:13:3d:5b:04:d5:1b:75:fe:ff:a6:e6:4e:eb:
b2:7f:0a:77:d9:da:e1:f3:8b:b3:79:3d:87:23:f8:
1a:f5:67:02:e6:d6:ba:9f:ca:78:b8:a0:3b:9c:01:
57:4d:f4:57:75:1c:ca:a7:73:ce:33:54:92:f9:9b:
1e:2c:74:72:7c:7e:dd:c2:b3:56:59:6c:d5:5b:a1:
44:ca:ff:e2:9b:e2:fc:dc:8a:e4:1e:08:4e:2f:b5:
2c:33:da:ba:e4:03:c6:5c:34:60:2b:3e:f7:4d:6c:
f9:ac:e4:bb:38:0c:c9:1d:de:5f:41:47:77:af:5e:
da:f0:1a:30:15:af:64:e7:59:6f:06:22:72:59:1c:
b1:ee:f4:44:d0:70:0c:45:bf:43:33:87:1a:6c:86:
f4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B4:71:54:A6:FB:AE:15:22:70:38:24:51:2B:CC:AC:5E:C6:18:9B
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:ac:76:7b:b4:44:56:75:92:3f:23:54:61:94:bb:10:2c:a0:
40:d4:60:92:d7:57:53:52:67:c3:56:72:c9:92:96:66:7a:13:
48:ef:1d:7f:6d:55:da:d6:e0:5e:3e:5c:75:50:63:01:dc:8c:
fe:44:ae:af:a6:c5:d4:26:6a:b1:75:4c:16:96:6f:fd:34:de:
42:a3:ea:6c:50:79:12:f5:20:65:75:5b:e6:d0:4c:5e:c4:20:
f4:36:7e:a2:11:1b:83:ff:22:4c:9a:21:b7:fa:fa:43:ea:b5:
50:3e:b9:2a:12:5d:80:8c:98:02:db:ba:8b:9b:b9:a3:84:31:
08:8b:9c:d6:a6:66:f3:bb:75:92:68:f8:7e:c8:34:c3:b6:7d:
88:43:1c:56:cc:02:d3:53:02:06:59:06:d0:80:73:63:2b:b1:
fc:06:ba:9e:1a:d7:ce:ff:75:1f:1c:c4:79:22:dc:15:3b:df:
7e:3f:50:08:4f:94:9b:69:06:70:db:2c:dc:1c:8e:44:08:e8:
31:97:58:c4:d3:7e:65:03:5a:5f:8f:63:98:bb:b2:cd:4b:1c:
bc:8d:c1:d9:c1:b5:7d:24:c5:6c:fb:7c:cf:35:9c:10:9f:07:
df:08:e7:3f:d3:d4:65:35:f5:5b:18:31:3b:98:f6:24:f2:59:
cc:a9:19:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:33:53 2025 by rpki-client