Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
File: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft (raw, json)
Hash identifier: rA5Er1hK3vmVoov1C2j647Gf1z+DxlhixfHB9QObGYU=
Subject key identifier: 56:30:69:DC:90:BC:5B:F0:26:85:32:43:37:0C:07:B5:F4:C2:13:4D
Authority key identifier: 91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
Certificate issuer: /CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Certificate serial: 0198D54E6014BF6A6F6EF2CDE660CF91CD50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
Manifest number: 0171
Signing time: Sat 23 Aug 2025 05:02:20 +0000
Manifest this update: Sat 23 Aug 2025 05:02:20 +0000
Manifest next update: Sun 24 Aug 2025 05:02:20 +0000
Files and hashes: 1: N05LSOD5G7OCVr2R2Lk3Qm3IMnc.roa (hash: 2FUijApprdSPC+yt20CbCF23SFHyPUM/peKf0m3x+RA=)
2: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl (hash: wos2ZGUZCAiCiyhLlbpz5ZA08w06c8VvxLuO4+koRwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:60:14:bf:6a:6f:6e:f2:cd:e6:60:cf:91:cd:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Validity
Not Before: Aug 23 05:02:20 2025 GMT
Not After : Aug 24 05:02:20 2025 GMT
Subject: CN=563069dc90bc5bf026853243370c07b5f4c2134d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a1:01:3f:86:93:58:a1:86:d6:b0:f6:c7:39:
40:3d:d8:fc:c4:15:32:bb:e5:45:6f:84:bd:17:6b:
04:de:a1:5c:ed:83:fd:fd:81:1e:e9:bf:22:7f:93:
bd:1f:dc:a5:bc:b9:83:5e:3d:8b:d7:89:08:ca:16:
ad:77:c8:37:4b:0d:07:94:94:c3:f2:a9:e7:14:69:
a0:c7:bc:9d:80:c9:e7:30:26:83:4d:46:9f:c1:b2:
7f:3b:3e:5e:e1:09:99:6b:9f:30:92:7d:88:19:0a:
0a:02:82:50:5a:80:a7:3a:b9:5d:e6:32:8f:53:b3:
cf:0a:b0:0e:39:89:2f:88:73:79:5c:53:f6:92:8e:
f8:1d:4f:cd:af:4c:23:dc:1f:0e:c1:47:ee:05:93:
2f:65:95:30:39:31:1d:73:67:53:05:43:77:c6:22:
18:1a:d9:9f:d6:d9:3a:50:dc:74:20:b2:45:22:7a:
8e:67:29:70:46:a3:19:d1:48:39:90:29:f8:96:f3:
2b:12:1d:82:ca:1e:c1:1c:c7:0c:dc:dd:ae:8f:dc:
9f:04:9c:c4:7a:17:52:a4:2f:7f:3a:5f:fb:8e:b8:
15:f5:42:92:d9:0a:7d:31:14:15:b1:a1:e6:30:90:
75:85:7f:16:17:f8:4e:76:c6:94:f9:dc:5e:d5:29:
47:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:30:69:DC:90:BC:5B:F0:26:85:32:43:37:0C:07:B5:F4:C2:13:4D
X509v3 Authority Key Identifier:
keyid:91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:2e:58:ec:25:73:03:66:a5:fe:1a:f1:bc:55:3d:e4:6d:65:
dd:ab:ab:73:55:b5:3e:10:b7:d2:d3:ff:22:4a:09:1d:2f:7c:
7a:b6:19:c3:b1:dd:95:76:1c:67:e6:8a:bc:c8:1c:78:a1:45:
b1:d7:66:4b:4a:12:64:f6:8a:70:44:9d:58:a0:90:d7:4e:57:
86:09:06:f4:2f:7c:3c:9d:43:07:92:95:51:59:1a:34:5a:9c:
7c:4e:d5:de:41:02:4b:93:eb:1c:81:34:c9:04:b0:12:f3:8b:
ed:75:80:88:28:8b:72:98:e6:ce:91:d4:f1:e5:f0:dd:0a:ab:
c4:a5:50:8f:c6:40:88:e7:09:0f:fa:82:d7:95:00:19:47:c8:
80:aa:5a:22:b4:ac:75:1d:c3:5d:ca:f1:28:b4:d6:e4:73:a6:
aa:e8:66:33:ed:4d:55:9b:93:f9:87:4f:aa:fa:de:3f:cf:1a:
a6:8d:e5:a3:9d:17:fe:6c:99:4a:aa:32:76:10:de:b2:16:a4:
ed:e8:c5:4a:f7:ac:b4:d6:a2:d9:7a:83:e5:af:64:06:50:8e:
c0:d6:3c:c1:d0:4a:19:6b:46:b6:79:bb:7b:21:71:e5:5a:b6:
f3:94:05:ea:92:8e:fb:cc:86:e7:99:66:4c:90:01:ac:8f:ba:
d1:75:3a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:00 2025 by rpki-client