Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
File: KfzfdinE4A6QbxQ19EndEJ9BC2w.mft (raw, json)
Hash identifier: HSv8SL8L2pHbX1SSS7nFs6uoCRJRZmuJMmDQcqna6Us=
Subject key identifier: 0F:33:D4:B6:E8:DA:45:19:FE:D0:C8:6C:74:50:FF:7E:40:2B:D2:4C
Authority key identifier: 29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
Certificate issuer: /CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Certificate serial: 0198D6606747E1087C92622E74C9F4A19A30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
Manifest number: 1327
Signing time: Sat 23 Aug 2025 10:01:38 +0000
Manifest this update: Sat 23 Aug 2025 10:01:38 +0000
Manifest next update: Sun 24 Aug 2025 10:01:38 +0000
Files and hashes: 1: KfzfdinE4A6QbxQ19EndEJ9BC2w.crl (hash: qYsmJyxYmyysPxBDpD28d7qHBJa241QrPnK9ar1hZr8=)
2: lKv_MpftntPeWIBfQDo4EvQnOCE.roa (hash: v96JNz5ZiqAWk2kEUzYU+IVtwUC39vYGpp2p54BaFZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:67:47:e1:08:7c:92:62:2e:74:c9:f4:a1:9a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Validity
Not Before: Aug 23 10:01:38 2025 GMT
Not After : Aug 24 10:01:38 2025 GMT
Subject: CN=0f33d4b6e8da4519fed0c86c7450ff7e402bd24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c4:7f:bb:aa:71:0f:65:1a:d7:d7:c8:c2:e0:
ed:40:31:e7:b9:6e:ef:d5:a3:95:8e:d5:e6:7d:e7:
ba:86:02:d6:df:f1:0d:f7:90:6f:90:35:a0:22:0b:
5d:3d:85:01:6b:19:ba:64:c6:8b:e2:a1:55:8f:9a:
80:ae:39:ea:06:dc:c0:c6:f3:b6:f0:0e:1c:72:3e:
78:13:8a:d9:74:25:6c:35:ac:ff:e5:8f:21:29:4d:
b4:7a:32:cc:1e:70:c1:43:15:8a:8a:2d:e2:c2:39:
eb:55:d8:90:40:9f:93:74:39:a2:be:df:b1:dd:7b:
93:03:a5:d2:d1:ad:3f:00:e6:fd:44:0f:d6:35:3f:
00:84:29:33:47:f8:0f:45:77:73:50:cf:22:3c:2b:
e3:ea:67:a6:34:6e:56:7c:97:82:26:98:dd:01:1b:
5a:18:78:c4:6d:29:30:8c:25:04:2e:e6:9b:70:fe:
f1:f1:de:89:17:f9:c6:92:92:3a:eb:65:a8:91:a8:
bc:9e:ec:fd:c4:e3:04:ea:1b:23:25:48:a8:c3:6f:
3b:56:76:60:bd:ef:0b:74:e5:c0:b3:31:05:c9:d1:
dc:87:87:81:21:c7:b9:dd:3e:d1:55:d2:63:21:35:
61:bc:56:e5:12:c9:35:0a:8a:ae:b4:52:ea:0f:34:
c6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:33:D4:B6:E8:DA:45:19:FE:D0:C8:6C:74:50:FF:7E:40:2B:D2:4C
X509v3 Authority Key Identifier:
keyid:29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:a5:a6:66:8e:c1:f8:34:a2:72:55:d5:f2:02:74:ce:33:c1:
f3:63:d2:2c:0d:9c:b6:43:7c:d8:dc:23:73:42:86:a8:89:db:
f4:46:a7:18:85:9f:52:33:45:2c:4b:de:57:14:ce:f0:03:2c:
94:a9:0a:1e:b8:20:49:b8:97:32:4e:f6:e5:2e:5e:4b:68:5b:
9d:4a:b0:c9:db:d8:00:52:ac:bd:e9:dd:32:1f:75:88:76:35:
11:de:76:a4:5d:dd:42:24:14:1a:f4:59:ce:da:ec:75:80:09:
c7:03:43:37:83:3e:7b:84:81:34:60:92:59:8d:25:71:6a:42:
11:52:86:40:90:74:43:58:dc:23:73:fa:4c:36:31:bb:f4:4b:
83:13:a7:d6:b0:34:4c:0d:5b:82:49:cf:ec:61:be:29:0f:bf:
01:e3:b5:9d:09:c0:15:8c:a4:85:93:79:e3:dc:86:f5:89:6e:
ce:63:c1:7c:14:e0:90:57:97:00:f7:a6:a8:b4:38:a1:26:a5:
8a:f6:a5:b6:b9:ac:8e:c0:43:89:3a:1f:52:d1:ba:2f:1b:36:
47:d6:08:09:1c:b6:64:9d:b3:66:2d:35:76:a1:18:62:7b:d1:
a6:37:fa:ee:15:92:ed:a0:e6:1f:8a:5e:38:ba:f0:58:78:96:
a2:28:db:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:20:07 2025 by rpki-client