Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
File: KcmwQBb28CGDMHwX32MKAonsW7U.mft (raw, json)
Hash identifier: GPT78RG8oGV2JTImTHUnvRtLhHjebMV/CRYfxfKMLl4=
Subject key identifier: 2F:DE:2A:1C:FC:57:4C:F3:45:19:62:A4:C2:20:5B:57:93:90:6B:10
Authority key identifier: 29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
Certificate issuer: /CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Certificate serial: 0198D5BC0086FD8586627E1BBF455D5F032F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
Manifest number: 0EAB
Signing time: Sat 23 Aug 2025 07:02:04 +0000
Manifest this update: Sat 23 Aug 2025 07:02:04 +0000
Manifest next update: Sun 24 Aug 2025 07:02:04 +0000
Files and hashes: 1: KcmwQBb28CGDMHwX32MKAonsW7U.crl (hash: rkZDuLcznwlmXoqSgYfE+Aa5yf+7s0rWPW21J62FFW0=)
2: UdEEZQE09FsGfYOWUhVww5xs81M.roa (hash: 6mSyURdhs/eGBTOXFJi0QulmUdFyZbb3K6nx0/FAyzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:00:86:fd:85:86:62:7e:1b:bf:45:5d:5f:03:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Validity
Not Before: Aug 23 07:02:04 2025 GMT
Not After : Aug 24 07:02:04 2025 GMT
Subject: CN=2fde2a1cfc574cf3451962a4c2205b5793906b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b6:d1:22:ae:c1:5d:1b:43:b8:f3:63:e2:33:
26:54:18:93:58:80:28:85:5f:a0:77:cd:be:4d:3c:
49:72:8f:e3:f3:37:11:0a:bc:e8:26:f6:46:eb:b4:
b4:8f:5b:35:1e:0c:93:6d:fb:e9:f4:27:6f:bf:c9:
4c:ba:51:0e:b7:87:3b:26:43:6b:cd:c4:48:6c:b8:
16:59:ef:1f:40:04:c2:52:48:92:a9:4e:3c:17:9e:
03:f0:92:3a:a5:dd:b6:99:95:7e:12:e7:81:5c:36:
f5:4e:7f:f5:22:64:a1:1c:9d:a6:2c:47:a1:26:1a:
b6:54:cb:aa:87:1c:b7:17:ed:bd:b3:fe:02:38:78:
82:72:e4:68:c4:b9:a6:f3:65:47:ed:1a:fd:73:26:
04:d2:cd:ee:5e:7f:c9:96:d7:3f:46:dc:a4:8d:51:
c5:77:b1:9f:b9:27:b9:54:34:7c:9e:60:62:a9:78:
05:18:37:19:4c:4a:9f:09:87:76:99:0f:46:18:51:
8c:60:a0:f6:e9:7b:1a:48:a4:cc:9c:b1:f0:c8:c7:
14:94:20:ed:9b:bd:9c:72:81:02:a2:cc:02:18:59:
8c:29:40:f5:f9:74:0c:6d:71:75:d1:2b:a0:a5:f9:
66:c8:5b:63:bb:d3:29:85:33:67:15:95:75:5a:e0:
6d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:DE:2A:1C:FC:57:4C:F3:45:19:62:A4:C2:20:5B:57:93:90:6B:10
X509v3 Authority Key Identifier:
keyid:29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:f4:9b:66:e1:e6:82:54:26:2a:93:ee:10:90:73:55:19:8e:
db:e8:55:56:ca:73:eb:e1:ec:69:ef:21:96:eb:50:a0:b8:f7:
9b:10:2b:0c:1e:72:e1:33:6a:69:e9:12:c8:72:50:6d:2d:a6:
5d:8c:ab:2b:72:0b:fe:b0:b6:8c:4c:81:6e:f6:56:d2:2c:a4:
8a:47:11:ff:5f:be:93:e7:67:f8:24:36:0d:ef:10:64:d9:ef:
20:b8:95:83:c1:00:e4:b2:1e:da:59:6e:6d:56:d6:17:43:0a:
96:47:5c:3c:28:28:e7:7c:e6:bb:08:92:e4:a3:91:db:21:15:
20:59:f9:8d:80:5d:60:f9:b9:3d:5b:c5:93:5a:1e:e7:27:a4:
c2:93:cb:de:96:3b:57:50:f8:b8:71:7f:a6:d5:5c:6a:2c:52:
c9:7c:32:da:27:1c:aa:22:0b:6a:a8:ae:f7:83:1a:42:2a:2a:
57:86:45:e6:ef:1e:8c:97:ab:a3:39:a0:30:d8:c4:8f:1c:e4:
e2:95:d6:c1:0b:59:21:f3:34:57:48:7a:2a:3b:a4:53:65:0c:
21:4e:48:8a:10:2a:d0:dd:9c:cd:a3:fa:e0:e4:18:44:c5:af:
24:de:1c:a5:43:33:38:7b:0d:09:3e:0c:0a:b6:cc:de:60:4d:
96:5e:cb:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:55:27 2025 by rpki-client