Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft
File: KANYk6JXplTz-FSVxBaevobeGNE.mft (raw, json)
Hash identifier: MBPfzx8dXrL+7Nj61mxYrfSJDsahH9zx91e0xnX7NH0=
Subject key identifier: BD:87:1D:44:36:D1:76:50:83:4D:F9:68:05:9B:30:92:41:54:C2:AA
Authority key identifier: 28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1
Certificate issuer: /CN=28035893a257a654f3f85495c4169ebe86de18d1
Certificate serial: 0198D58396B58FDB410F27A96AF6665A1760
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft
Manifest number: 0B86
Signing time: Sat 23 Aug 2025 06:00:27 +0000
Manifest this update: Sat 23 Aug 2025 06:00:27 +0000
Manifest next update: Sun 24 Aug 2025 06:00:27 +0000
Files and hashes: 1: HzZn0ba7QItzyWun3HWfVhfe2Mw.roa (hash: iE4IEBeKKD6peBsX5m6y9GBML1LTBu1RqbqOosqLhr0=)
2: KANYk6JXplTz-FSVxBaevobeGNE.crl (hash: MKqS3cu4ZFhGSuWycQRbyind4f7nwks5Mq2WjhOsMOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:83:96:b5:8f:db:41:0f:27:a9:6a:f6:66:5a:17:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28035893a257a654f3f85495c4169ebe86de18d1
Validity
Not Before: Aug 23 06:00:27 2025 GMT
Not After : Aug 24 06:00:27 2025 GMT
Subject: CN=bd871d4436d17650834df968059b30924154c2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:91:53:3e:67:65:43:1f:e8:e4:27:76:7a:b5:
b1:30:92:e0:a0:19:13:08:1e:a6:ae:22:d5:52:5f:
7b:41:ac:61:fe:ce:18:ee:54:02:fe:44:e2:c9:60:
88:64:d7:0d:38:2b:8b:1a:27:bb:a1:e6:28:db:b7:
07:24:09:2a:4d:19:11:10:b5:e7:81:ab:a9:87:11:
d9:74:62:47:16:aa:a1:e5:b6:5d:7b:f5:85:27:44:
29:51:12:1f:a3:77:01:e1:ec:44:4c:e2:2d:59:10:
1f:2f:ef:3e:fe:45:6f:a6:21:e6:7b:92:6d:f2:e8:
4b:62:39:20:50:92:51:dc:71:03:a1:77:58:c7:25:
ec:63:ac:d9:00:d5:3a:87:da:5a:da:52:96:10:5f:
3f:4a:5c:80:3b:62:3f:dc:d1:75:36:81:e0:a1:2d:
62:93:45:51:38:de:ce:42:eb:dd:9b:65:c0:24:2b:
27:82:b8:a5:2e:e4:b2:4f:b9:df:a7:e3:52:38:4a:
50:96:a2:85:ea:67:53:54:3b:29:1d:62:37:81:5d:
b7:24:a4:43:4a:37:35:30:e5:e6:2d:b4:58:10:5a:
69:a0:76:31:d0:45:6f:f3:be:11:7d:dd:5d:87:24:
88:98:af:6d:4f:f2:43:27:a8:28:a6:14:3b:78:2c:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:87:1D:44:36:D1:76:50:83:4D:F9:68:05:9B:30:92:41:54:C2:AA
X509v3 Authority Key Identifier:
keyid:28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:c2:2c:aa:d2:6e:9a:4d:17:4b:b5:a0:d8:67:fa:18:1f:32:
51:1e:48:b2:a2:5e:f8:88:d0:41:91:83:ac:ac:64:38:40:c9:
cf:92:76:7a:a6:42:36:e5:4e:31:96:ae:da:1f:85:ab:cb:b4:
56:b6:75:e6:26:a1:51:11:04:97:14:b5:1f:ed:4c:9a:ca:fa:
e0:04:c7:25:86:6f:d1:94:30:a6:89:b8:e8:14:d5:d9:ee:48:
f4:0b:c7:10:9c:6e:e8:80:66:ed:dd:9a:e0:60:5f:ee:7f:fa:
cc:fe:fd:f6:16:fb:28:bd:1f:07:64:29:40:d3:06:dd:b6:1a:
8b:72:9c:fe:00:e4:fb:eb:d0:d7:ba:23:42:9d:e9:e9:bd:4f:
7a:a3:4e:a4:3f:ab:72:b1:df:3b:c2:b5:82:c2:fa:e5:7a:3c:
1d:cf:f6:e1:53:87:b4:96:59:5d:36:2a:df:82:3a:28:ec:95:
d1:25:bb:a6:d7:1a:d3:06:8f:d2:ae:66:59:53:dd:c3:bc:4b:
7a:e5:b0:24:07:40:2d:c6:e8:4b:14:92:aa:82:2c:f5:4d:68:
ac:66:d2:c8:49:48:e0:b2:02:a8:32:e4:ce:76:2d:e0:ee:b9:
85:0f:6a:4d:00:20:cc:69:5e:11:6a:7b:8c:d9:0f:61:75:2e:
18:6d:ea:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:48:34 2025 by rpki-client