Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
File: KZWUToTcN7pqQtaLseK5pEIehKQ.mft (raw, json)
Hash identifier: RrtipZSdu2HxRkt4wtfh/GRSRH8oWehWufK7y7uq22o=
Subject key identifier: 14:AD:00:E8:75:79:A8:97:98:F8:C3:9F:9A:FA:76:C7:56:F5:F1:34
Authority key identifier: 29:95:94:4E:84:DC:37:BA:6A:42:D6:8B:B1:E2:B9:A4:42:1E:84:A4
Certificate issuer: /CN=2995944e84dc37ba6a42d68bb1e2b9a4421e84a4
Certificate serial: 0198D404D614F1511E7AB901ED2CA931E239
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
Manifest number: 1648
Signing time: Fri 22 Aug 2025 23:02:23 +0000
Manifest this update: Fri 22 Aug 2025 23:02:23 +0000
Manifest next update: Sat 23 Aug 2025 23:02:23 +0000
Files and hashes: 1: 5zGonyGbziYUvusSh8Q5DC8llVk.roa (hash: S1qJmZBpZMGg2baTrfrvnMFHCPji28boUDCTeMahmcM=)
2: Iy-azWAI6KWrOd6xINfWkQK0mmo.roa (hash: WW8+TBzRLpV7fj0dmKJQYyc2cjZjFlGMNCS3c3X42Q8=)
3: KZWUToTcN7pqQtaLseK5pEIehKQ.crl (hash: ha/FbbN0zjUOaltqJscpP9HsKobniHwyKoaWYoOZBjo=)
4: SkUUShcqahf4Ud48xHWiKU08GtI.roa (hash: FRMGmcPu5n4tT7AA3DByB+9obpA4BvNTbGm4L5aAqOY=)
5: k-lfK2Nu0bBTBeFW46-yt6JkICk.roa (hash: muqDHPsC+eweSCrdqAGPB3SXVNwkzBd2weVA2/7oxMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 23:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:04:d6:14:f1:51:1e:7a:b9:01:ed:2c:a9:31:e2:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2995944e84dc37ba6a42d68bb1e2b9a4421e84a4
Validity
Not Before: Aug 22 23:02:23 2025 GMT
Not After : Aug 23 23:02:23 2025 GMT
Subject: CN=14ad00e87579a89798f8c39f9afa76c756f5f134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:30:0d:77:7c:82:a1:91:32:2a:40:b5:1a:78:
4c:de:e6:ec:37:ae:12:49:d6:c7:df:1e:fa:ee:7e:
2d:b4:71:95:c1:0d:39:f9:e9:9b:df:47:89:c3:f0:
8e:0d:66:8d:dd:a8:aa:b0:f8:26:40:60:0f:0e:45:
88:90:42:8b:e2:3a:e0:0e:e6:f1:ed:46:d3:ca:72:
f1:56:42:05:b2:90:21:04:26:e0:10:b7:03:57:90:
f3:b8:5d:c7:e8:64:23:36:80:87:86:9e:61:e2:71:
2a:a5:fc:cf:5f:19:97:0c:85:6d:85:f8:46:4a:6b:
13:10:3e:4e:c9:c3:2c:92:9f:89:0e:fe:1f:b2:a0:
93:50:6e:91:29:2a:e6:d3:09:98:14:b8:12:44:f2:
c2:18:c6:b8:19:f5:99:20:5d:51:79:a3:17:fb:25:
f6:09:39:37:6e:ce:b3:17:30:18:e8:73:c3:0d:5b:
63:6b:c9:95:95:9f:9e:e6:d4:77:19:b3:9c:a6:c8:
18:ab:17:95:ce:9a:6e:68:bb:ac:10:97:bb:e5:bb:
58:d9:76:a9:20:4b:09:11:c8:b4:49:11:03:e9:b1:
54:29:96:30:cf:3e:cd:fa:68:ee:b4:a1:fc:e9:d4:
43:02:8d:b4:72:ae:b4:5e:57:45:03:fc:b6:07:da:
d3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:AD:00:E8:75:79:A8:97:98:F8:C3:9F:9A:FA:76:C7:56:F5:F1:34
X509v3 Authority Key Identifier:
keyid:29:95:94:4E:84:DC:37:BA:6A:42:D6:8B:B1:E2:B9:A4:42:1E:84:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ca:e9:72:90:9c:58:d5:b5:8d:4a:aa:7b:58:16:c6:c7:11:
d4:7d:71:3a:f0:64:13:dd:76:c3:1c:18:31:41:cc:6e:db:b8:
e0:d1:df:48:68:73:5d:34:8b:bd:7b:05:9f:ac:e8:9e:33:e6:
4b:97:ce:d3:8c:cb:69:1e:dc:82:52:c3:2c:b4:b0:b4:be:84:
14:6d:db:a6:a8:5c:39:f6:26:62:63:a0:a5:2b:5f:dc:3e:8e:
cd:b2:13:eb:39:3e:c2:3f:49:85:14:09:96:3e:29:86:fe:22:
b7:6b:f2:66:cf:43:a6:e6:25:c7:dc:09:a7:19:67:16:82:93:
3f:60:32:03:4a:73:39:f1:dc:33:bc:d6:63:46:a7:fd:3a:e4:
f8:c8:bd:9d:3c:0e:21:2c:ce:3b:ab:a2:4c:23:15:bc:fb:3a:
9a:d9:36:44:0b:3d:63:9c:44:9d:33:e4:18:bf:20:c9:2f:4e:
6a:35:b2:ff:55:21:c5:40:27:bf:25:04:6e:d0:1d:15:e3:19:
36:26:3d:da:18:03:a0:f5:a8:5a:e4:eb:ec:59:8f:80:2c:d3:
6c:48:28:0f:ce:ef:5a:1f:e7:69:59:2f:a4:5f:3d:82:bc:10:
ed:4a:54:ed:a9:63:1a:fb:c4:76:14:40:ba:00:60:bf:d9:69:
0b:ea:3b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:36 2025 by rpki-client