Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
File: KgV9tw5HTrSgd_oT875N17Y4C1Q.mft (raw, json)
Hash identifier: kpxOsER2PtQIJtsjrpoAMFI9eYuthSOp5clooneXkFs=
Subject key identifier: D1:4C:B5:F1:CA:2A:9D:EF:24:E0:4D:58:07:DD:98:C8:B5:3B:EB:4B
Authority key identifier: 2A:05:7D:B7:0E:47:4E:B4:A0:77:FA:13:F3:BE:4D:D7:B6:38:0B:54
Certificate issuer: /CN=2a057db70e474eb4a077fa13f3be4dd7b6380b54
Certificate serial: 0198D47302DB9F4DCDDCEDEC47BFD573FB26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
Manifest number: 1041
Signing time: Sat 23 Aug 2025 01:02:43 +0000
Manifest this update: Sat 23 Aug 2025 01:02:43 +0000
Manifest next update: Sun 24 Aug 2025 01:02:43 +0000
Files and hashes: 1: KgV9tw5HTrSgd_oT875N17Y4C1Q.crl (hash: KpkHwAWFqraxrZ2YClwbfRJ28ifZM2uIndh10JL1x5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:02:db:9f:4d:cd:dc:ed:ec:47:bf:d5:73:fb:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a057db70e474eb4a077fa13f3be4dd7b6380b54
Validity
Not Before: Aug 23 01:02:43 2025 GMT
Not After : Aug 24 01:02:43 2025 GMT
Subject: CN=d14cb5f1ca2a9def24e04d5807dd98c8b53beb4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a0:cc:ab:ef:32:5e:9e:6c:1a:0b:c9:72:cf:
84:4b:05:f4:d9:e6:4f:9a:32:df:e3:b9:9a:47:ab:
65:08:01:7a:64:f2:28:ed:65:15:6e:83:38:77:63:
6d:e4:e0:b6:f9:35:a2:ea:6a:8e:19:82:3b:21:4f:
97:28:55:fe:56:e2:66:ee:e2:6a:a8:01:57:1d:19:
40:d7:e8:e9:bf:d8:ce:c2:96:bd:d9:ad:db:70:45:
49:bd:d5:0d:12:17:72:0c:f0:fe:29:0a:d6:ec:ba:
83:26:52:c7:03:c6:31:a9:61:23:a2:26:43:00:19:
8a:10:2f:24:1d:92:ea:d7:93:36:b8:21:48:5f:92:
97:a1:f7:6f:eb:ff:1a:86:1d:a2:ad:0f:38:b0:f0:
82:6c:85:f7:4e:3a:07:cd:8e:ca:f3:09:4e:c1:2a:
a0:c2:be:e0:54:48:86:28:29:08:b6:09:f7:bb:0e:
ae:6d:e4:a4:d3:0a:fa:cc:f2:71:cd:da:f4:5b:0b:
86:f6:29:41:92:82:6f:f2:c8:f5:11:35:d9:67:d4:
41:89:52:55:85:0c:da:0c:4d:83:48:8d:f5:3f:51:
76:dc:b5:59:cd:72:44:6d:a1:12:f3:70:da:be:cd:
1b:f8:6e:fe:e2:dc:53:42:67:12:87:cf:dd:8b:ae:
4a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:4C:B5:F1:CA:2A:9D:EF:24:E0:4D:58:07:DD:98:C8:B5:3B:EB:4B
X509v3 Authority Key Identifier:
keyid:2A:05:7D:B7:0E:47:4E:B4:A0:77:FA:13:F3:BE:4D:D7:B6:38:0B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e1:3a:3c:72:ed:61:9f:a3:0d:8e:ae:32:3e:96:e6:45:52:ee:
2f:e3:59:dd:66:da:ff:5d:4d:dd:34:5d:d8:1e:7c:36:3a:88:
1a:4f:73:64:7c:af:14:fc:e2:e1:3b:0c:55:1a:67:c0:3a:4d:
27:62:3c:db:49:0a:96:bc:65:65:e6:7c:3e:dd:d6:26:d6:94:
ef:48:d1:90:27:f1:30:a0:66:2a:66:04:e8:e6:f7:71:ad:ea:
07:75:db:7f:48:69:4e:54:fe:40:7a:d0:02:c5:f4:02:cc:c9:
61:91:5c:3f:fa:2d:57:e6:d1:c0:eb:be:86:05:37:ce:ba:10:
14:f9:32:1a:d9:d5:7a:f5:cd:36:1c:80:29:a8:4b:ea:ff:9f:
77:87:70:ab:1e:69:76:39:24:9d:b9:85:7f:b0:0b:68:ab:0e:
5b:84:6b:09:18:91:39:29:82:de:db:57:be:04:ff:0d:c7:ce:
9a:95:dc:c6:42:d5:34:ac:f1:56:e6:0d:34:51:6d:b1:03:17:
65:22:73:1d:1c:4f:20:1a:89:a4:f6:84:2a:26:de:45:84:2e:
c5:fc:69:6a:cd:fd:6c:66:05:d7:7e:66:1a:1c:e7:d8:09:bd:
b0:ff:e8:a1:86:fe:45:94:78:1b:53:00:c8:d5:15:1e:eb:da:
72:91:ea:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:47:56 2025 by rpki-client