Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
File: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft (raw, json)
Hash identifier: 9ynF1sAipEartGUfDDZaSP+vpSw4EwdzDCnBmMfv/AE=
Subject key identifier: 38:05:88:84:73:7B:73:F2:FB:ED:B6:B5:E4:3C:D0:B5:AE:10:70:AB
Authority key identifier: 29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
Certificate issuer: /CN=29da6411a13264dc6de0f101108540ef741ed19a
Certificate serial: 0198D660967784F49D05267CA27172F3F4E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
Manifest number: 1267
Signing time: Sat 23 Aug 2025 10:01:50 +0000
Manifest this update: Sat 23 Aug 2025 10:01:50 +0000
Manifest next update: Sun 24 Aug 2025 10:01:50 +0000
Files and hashes: 1: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl (hash: R+juGh2nzylo2c6PSaFF41AgkHMvtoM61y4pJ4DnVnM=)
2: ofG1VLRjjYIcZfzAaNigWWgyFxw.roa (hash: ZHICR+Axb4b3KRXOcmZzuP26q8FUw656ivJ0mJFMsoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:96:77:84:f4:9d:05:26:7c:a2:71:72:f3:f4:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29da6411a13264dc6de0f101108540ef741ed19a
Validity
Not Before: Aug 23 10:01:50 2025 GMT
Not After : Aug 24 10:01:50 2025 GMT
Subject: CN=38058884737b73f2fbedb6b5e43cd0b5ae1070ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:53:4c:ba:ab:85:89:fd:21:87:b1:0d:98:04:
a7:32:6b:6f:f7:84:d9:11:d2:22:6c:15:59:4c:ff:
a4:ea:0e:21:2b:e2:a9:4b:59:7d:e8:9e:01:50:27:
66:be:49:c7:b5:79:f6:11:03:6a:f5:7e:03:5f:b7:
f5:86:d5:4e:a5:6b:be:1a:47:12:68:5f:59:20:02:
15:74:5b:7d:f4:41:c3:40:f3:32:32:23:c0:90:2a:
56:9c:1b:32:fd:e9:b4:74:61:72:31:a2:82:57:01:
ee:53:69:7c:5e:8b:0d:ee:8a:80:be:22:28:3e:07:
cd:36:61:5c:9f:e4:d6:f2:4b:ef:58:09:1e:3a:c9:
23:c4:40:cc:b1:93:e8:5c:94:84:e1:44:88:ec:4b:
89:b2:b7:ce:d0:ad:64:8b:30:19:a7:26:65:39:ec:
36:16:2f:07:c1:4a:63:8d:a5:01:f9:cc:10:6f:05:
0e:2b:0e:69:fb:85:3d:79:1f:78:7f:cb:9c:93:a4:
8c:ff:e9:23:4c:37:63:65:57:88:d4:93:b3:44:0e:
3f:4d:46:ea:98:a1:06:54:b6:ef:f5:80:01:5e:0c:
fa:5b:04:84:e5:9f:16:3c:07:03:84:c6:e7:b0:38:
f2:aa:74:55:b0:62:c6:5f:1c:f3:28:f2:d4:e5:ff:
bf:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:05:88:84:73:7B:73:F2:FB:ED:B6:B5:E4:3C:D0:B5:AE:10:70:AB
X509v3 Authority Key Identifier:
keyid:29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:e3:77:d4:ad:c5:67:54:53:35:a7:9f:0e:b9:7b:d3:5e:df:
8f:d0:39:f9:e3:39:e8:96:ad:2d:67:8e:1a:21:e1:40:c4:26:
5d:15:da:89:52:64:4c:0e:c6:fe:65:f6:9b:9a:cf:bc:ec:3b:
cf:ca:bd:a4:90:f2:31:b1:aa:b3:fb:dc:d1:99:90:7b:c9:ba:
c0:db:d9:20:1e:3b:b3:96:17:f9:48:f0:31:79:c6:02:ce:7b:
e3:86:1c:e9:5b:0b:c3:7c:51:1f:10:96:36:13:a2:95:83:50:
87:72:c5:19:4a:83:b3:b5:bf:de:4d:7c:16:af:29:1f:1f:81:
9d:c9:9c:94:f4:2e:7d:0d:99:60:45:df:b6:a7:43:bf:af:a9:
b2:88:dc:ec:c6:52:e8:cf:d4:4d:e7:60:cb:46:d3:c5:a6:84:
8e:be:74:ae:0a:cb:5c:57:23:82:bd:38:73:54:b2:41:88:01:
0e:71:f5:9f:36:ea:47:b0:1f:73:28:bd:95:fb:d9:07:d5:11:
a1:b3:a4:d2:85:0f:02:58:2d:02:23:86:3e:68:f8:14:9b:90:
26:71:da:be:3d:36:40:ed:5a:7a:f4:21:3f:7a:00:61:7e:56:
77:0b:3f:08:c2:00:17:d3:2b:e2:18:43:aa:4f:4a:dd:57:7e:
aa:7b:69:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:01:44 2025 by rpki-client