Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
File: kq8Dyi32Qjt30O83N7D0eRqgNaM.mft (raw, json)
Hash identifier: 6XmPjGEFiIm1tUed+udSd0gaxAmYv8wSPUkXnJL7JBU=
Subject key identifier: 1C:39:75:F5:7B:97:5A:07:CA:E4:55:27:36:0E:72:B2:D5:AF:83:2C
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 0198D5160EBF33D9EF58C07D50909011A7E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
Manifest number: 0AD8
Signing time: Sat 23 Aug 2025 04:00:49 +0000
Manifest this update: Sat 23 Aug 2025 04:00:49 +0000
Manifest next update: Sun 24 Aug 2025 04:00:49 +0000
Files and hashes: 1: XFrF4ZD8RKmENGKuXlNfyh9_oV8.roa (hash: Syc9HmjiF/DkUOhl4IVh1oQ9jwD6L7ptWtUgxSy9ut8=)
2: kq8Dyi32Qjt30O83N7D0eRqgNaM.crl (hash: 5aSswg2uqbWGJugehgCv/Aw8+gxrBRa5Z7PZF2n5EZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:0e:bf:33:d9:ef:58:c0:7d:50:90:90:11:a7:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: Aug 23 04:00:49 2025 GMT
Not After : Aug 24 04:00:49 2025 GMT
Subject: CN=1c3975f57b975a07cae45527360e72b2d5af832c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1d:1f:09:28:e1:56:56:b5:59:7d:58:20:20:
6a:e6:a1:25:e2:21:85:c0:86:bd:98:32:a7:be:18:
3b:fa:1a:dd:50:f4:f7:e6:0c:88:a9:bd:7e:c6:75:
88:d7:fd:e9:57:91:93:3b:1d:ed:6f:da:7d:9e:46:
15:12:db:4d:cb:5a:14:cf:19:f7:39:d8:42:b4:e9:
13:fc:a4:9c:b1:50:6c:e1:2e:fd:9c:6f:4e:bb:e0:
ad:dd:25:19:3b:01:4d:77:fa:73:87:ae:16:93:e1:
a9:a2:82:c1:d6:56:f1:65:c2:ce:a8:e6:8a:b8:92:
c1:05:34:96:3f:fc:8c:bc:db:de:7c:af:68:19:58:
d5:ee:30:8c:55:36:97:8a:49:0b:38:25:66:2c:8e:
74:ae:cc:6e:15:75:cb:33:c4:c1:03:8c:6b:61:f8:
0f:bc:e1:cc:b6:0a:fe:91:43:f3:2b:f3:bc:86:11:
20:43:00:93:f0:cd:d4:c5:16:55:ee:48:3f:6b:82:
c2:7a:f9:42:da:9d:77:51:d1:75:e3:e0:67:5b:c5:
fc:d5:23:83:97:e9:cc:98:70:82:85:14:31:54:6b:
61:6d:6a:5d:9f:c2:e3:b9:6b:7f:63:91:84:4c:5a:
4e:14:b9:52:ff:a8:8d:4b:0d:1f:7d:3a:2c:ae:39:
a4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:39:75:F5:7B:97:5A:07:CA:E4:55:27:36:0E:72:B2:D5:AF:83:2C
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:60:f3:8b:37:2b:3f:4b:43:2b:8a:9f:ec:fa:0e:f0:19:f9:
7e:0d:94:8b:c0:d2:df:8c:f2:31:ca:0d:b6:9b:d1:68:90:6b:
57:46:a1:88:0a:88:ab:bd:bf:2b:ce:56:ca:ba:90:90:70:d4:
85:75:6e:46:12:cf:f8:c7:ef:d7:33:71:8b:36:94:94:46:78:
06:b1:12:a2:aa:1f:37:a6:07:a7:c5:39:6e:e5:db:23:87:10:
4b:8f:c0:de:1b:4c:be:b7:82:5b:bd:36:ab:d4:f8:9c:9c:dc:
2e:f4:26:68:3d:5d:1a:55:af:9a:62:6f:19:8d:05:ea:92:cb:
2c:92:9f:c6:ab:3c:5e:a5:2b:6e:3d:ef:5c:5c:83:fa:d5:c8:
c1:1c:a5:6d:42:c8:1f:ed:37:54:f9:e2:9a:5e:bb:94:fd:bc:
26:05:e1:44:06:78:98:58:f3:9a:5c:24:6f:41:7c:03:ff:87:
c0:a5:6d:3a:eb:e1:4f:ce:fa:11:3a:db:7b:1b:c2:aa:99:9f:
ae:ec:db:da:06:2c:8a:78:bd:7b:d5:53:97:11:1f:69:ef:a1:
7c:32:cc:62:62:32:21:eb:8d:c4:15:0d:cd:5d:32:0e:67:8d:
4a:43:48:cf:0f:f3:51:c1:41:5e:17:20:88:88:77:51:22:58:
b3:53:62:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:39:48 2025 by rpki-client