Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
File: KRKNnU8aVulw-HRtaCesESD5Jmc.mft (raw, json)
Hash identifier: QLobeZnHtIoXpO3rGCD2+qNGfrBqewknWnfR04VxPls=
Subject key identifier: CE:D4:41:D9:BD:E5:2A:76:56:70:03:C3:FD:B6:F4:81:7E:A1:86:76
Authority key identifier: 29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
Certificate issuer: /CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Certificate serial: 0198D5F1302D579BDA7A81D22664BCFC692E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
Manifest number: 014F
Signing time: Sat 23 Aug 2025 08:00:10 +0000
Manifest this update: Sat 23 Aug 2025 08:00:10 +0000
Manifest next update: Sun 24 Aug 2025 08:00:10 +0000
Files and hashes: 1: F89K3Q0XwdNsBMWEF-9n8HX8seQ.roa (hash: k36l/8lxtcKwAJTjrdDRO46ly7DD3aRm+mH7GwvYLjg=)
2: KRKNnU8aVulw-HRtaCesESD5Jmc.crl (hash: Nkf7DK4J7j2X1GoHf/IZjQBy1gPQT7qNB9MGU6sMG2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:f1:30:2d:57:9b:da:7a:81:d2:26:64:bc:fc:69:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Validity
Not Before: Aug 23 08:00:10 2025 GMT
Not After : Aug 24 08:00:10 2025 GMT
Subject: CN=ced441d9bde52a76567003c3fdb6f4817ea18676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d1:82:15:b0:1e:64:32:69:dc:aa:19:90:a0:
62:15:65:6d:8a:6a:6f:59:69:0c:28:1d:a4:bb:9b:
58:9c:6e:0d:d5:01:9c:79:96:47:cd:70:e2:ec:c7:
18:65:9b:2a:83:40:a4:42:db:a4:3a:92:95:06:4f:
6d:56:86:13:18:26:1d:40:58:f1:81:98:ae:82:60:
16:a1:ae:c0:77:f9:a4:e1:70:1a:86:f4:2f:64:3c:
f7:c3:97:09:a9:f0:c5:8a:c6:73:fb:59:f5:93:d0:
34:2b:65:8c:83:65:da:24:50:21:6e:40:5e:b8:ca:
29:b2:d7:d7:0a:d3:f2:10:d9:e3:a5:26:1f:29:74:
9a:3f:c7:c7:ed:45:a3:b2:9c:30:4e:42:5a:ff:8f:
a0:0e:27:5d:db:31:09:ed:8a:84:4b:61:5c:65:ab:
37:a8:10:28:52:98:89:78:36:6c:ea:8e:b2:3e:d9:
45:42:37:5d:44:be:ff:a6:1f:b3:8f:3f:1f:5d:22:
64:c5:06:e1:d3:96:cf:1b:51:e0:ad:59:63:21:c2:
49:34:e9:b4:bf:88:2e:70:29:a7:f4:fc:80:e7:46:
8e:7e:b5:a1:b1:7e:c0:79:31:3d:17:90:f4:7c:44:
2f:e8:d6:25:e9:58:e2:d8:61:63:07:c9:c4:18:37:
d5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D4:41:D9:BD:E5:2A:76:56:70:03:C3:FD:B6:F4:81:7E:A1:86:76
X509v3 Authority Key Identifier:
keyid:29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:c7:18:7a:2a:f1:50:c4:fa:a8:1b:93:7e:24:ab:c2:7c:81:
97:36:3c:10:ac:c4:04:eb:99:cb:8a:2a:f9:dc:a7:bd:5e:e4:
4b:c3:0d:b3:85:1b:73:84:7a:98:c4:f2:2d:d2:c1:5e:87:b0:
5b:66:f1:7e:2f:21:90:26:80:8d:2f:94:f1:20:8a:51:ef:e5:
28:72:71:2e:60:41:21:43:81:4c:c1:27:92:78:94:c1:b8:ac:
e3:80:2d:68:19:d0:c9:77:cf:a4:60:d6:e3:f0:e1:33:c2:f1:
f9:2e:3f:1a:9f:fb:db:c3:c5:2d:ba:84:ec:f6:c9:38:c3:28:
e8:f3:57:ce:d5:07:0d:0e:ed:5f:e3:ab:61:aa:5b:e0:de:94:
78:5f:df:99:93:cf:07:e9:c2:b0:90:5c:8a:7c:a0:40:84:d2:
4e:bc:93:2c:3c:39:b5:6d:11:41:0c:f3:33:40:89:6d:5b:b5:
6c:56:2f:41:a3:b1:34:13:65:c6:ba:37:20:57:fb:ca:5d:73:
29:7a:62:57:9f:76:7d:9c:f8:9b:67:23:58:12:08:ff:c7:4e:
2b:bc:dd:c6:ef:2d:bf:33:83:9b:7b:a7:2c:df:55:bd:f4:10:
2f:25:87:7f:40:ad:95:e8:49:bb:98:1e:7a:57:a0:55:a1:93:
e3:54:f9:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:09:42 2025 by rpki-client