Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: WNMAu/jcKWaBl9iGVt+eBbn+aQ2ntr8kaazno9AhXCI=
Subject key identifier: 21:2F:34:37:93:CD:36:2C:F4:D7:2B:CF:19:46:9D:20:1C:FD:5F:98
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 0198D6613C7DB02DFE09D4A57820DC6F7B05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 0545
Signing time: Sat 23 Aug 2025 10:02:33 +0000
Manifest this update: Sat 23 Aug 2025 10:02:33 +0000
Manifest next update: Sun 24 Aug 2025 10:02:33 +0000
Files and hashes: 1: U5Y7YWVXNPPm9KoqmwsivloXzrs.roa (hash: ca5vcs2GJ+zXpmrDaBzBSEBE+1Vnejqdln+cTCo9uxU=)
2: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: Sb3iSV1Pkr9UOaqReP2u0/SqyzvTsRPhv3TuCIbOQas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:3c:7d:b0:2d:fe:09:d4:a5:78:20:dc:6f:7b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: Aug 23 10:02:33 2025 GMT
Not After : Aug 24 10:02:33 2025 GMT
Subject: CN=212f343793cd362cf4d72bcf19469d201cfd5f98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:52:91:39:33:c1:ac:39:a5:06:1d:61:24:3b:
39:ee:72:dc:00:1c:3b:da:76:dd:b8:cc:db:25:68:
e4:37:86:2e:aa:0c:1b:e2:96:54:02:a6:54:f1:6e:
8a:df:c5:53:1c:49:bb:7b:54:52:2e:9f:5d:0e:a3:
a4:dd:b6:e2:2f:bc:f8:1d:2c:93:9a:f9:d0:cb:fc:
8b:66:44:c4:16:3e:6e:c5:bc:03:e4:1e:9f:3e:f2:
23:52:53:93:aa:5c:a4:2e:e8:8e:22:2d:9e:05:c8:
ee:ce:78:f0:01:97:15:38:f7:77:cb:b4:0b:24:1f:
50:69:65:46:93:4f:5e:ca:ca:e9:af:a9:7c:a0:a0:
14:c2:57:7e:cf:a7:97:56:4a:ed:f4:26:c7:96:1b:
ad:40:0b:74:0d:e8:27:7d:ec:53:5e:0e:26:b5:c6:
c8:b0:11:9c:67:aa:67:ca:bc:fa:7e:36:65:27:cb:
e1:b5:d9:17:f7:04:b0:d7:d4:11:91:34:4e:de:d4:
76:8c:0d:ad:ba:48:d6:b0:60:73:83:18:a0:36:ff:
67:91:fc:e8:6b:18:b5:d8:cc:e1:8e:6d:b5:5e:03:
02:c3:8f:55:0c:48:72:42:e9:61:64:26:03:06:fd:
95:cd:79:91:56:a6:82:87:0f:d3:c0:10:3e:b1:90:
64:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:2F:34:37:93:CD:36:2C:F4:D7:2B:CF:19:46:9D:20:1C:FD:5F:98
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:34:e9:e3:1e:64:b9:67:16:5e:56:a4:1f:23:e2:a7:ff:b1:
46:3b:6e:87:94:71:fa:34:9d:5d:0c:77:bf:0a:66:f6:ed:da:
92:0e:79:5a:60:11:83:69:45:92:3e:a3:e5:c8:d4:ad:49:c7:
2c:03:99:77:c5:d7:0b:4e:92:8a:6b:81:7c:6d:a4:fe:78:5a:
61:39:d9:c4:f6:e9:b6:d2:83:63:a3:99:6a:1d:40:67:fe:1d:
67:8b:7b:18:32:d9:b9:ca:50:9d:03:bf:c5:6e:07:04:4d:9a:
43:1d:d4:98:64:7b:26:96:33:e4:05:5b:b8:68:93:d1:4d:87:
5e:18:63:eb:18:9f:f5:50:dc:97:93:be:5c:f1:e7:b6:9e:d0:
89:81:65:b8:fe:13:1e:0c:36:6a:67:7f:b7:72:27:bc:42:94:
8a:85:cd:02:ed:1e:97:21:39:8c:cc:6c:4c:b9:12:87:1e:33:
00:32:bd:9c:a9:c6:4f:d2:61:1e:89:70:cc:01:3b:ea:f1:ca:
24:a1:e8:51:b6:51:ca:40:29:4a:0f:02:b2:b8:bc:f2:bd:42:
b0:b6:20:1c:d2:32:90:e8:1b:fc:0e:2c:5e:d6:0d:23:65:c4:
c4:e7:2a:3f:f2:e7:ba:b3:7a:df:9d:00:ab:b9:9d:e8:4e:27:
35:62:e8:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:47:44 2025 by rpki-client