Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
File: KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft (raw, json)
Hash identifier: zw2EG4d0ikk/SBa481j9z/GutGHcWBrpDOBDZuCT11U=
Subject key identifier: 61:93:6D:DC:92:C7:73:47:29:09:4D:A5:69:D0:B1:9A:0B:6F:EE:85
Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411
Certificate serial: 0198819DB2230241049EFFB969992560E8D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
Manifest number: 1621
Signing time: Wed 06 Aug 2025 23:00:52 +0000
Manifest this update: Wed 06 Aug 2025 23:00:52 +0000
Manifest next update: Thu 07 Aug 2025 23:00:52 +0000
Files and hashes: 1: KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl (hash: 5A3LI6DUYplcC0noYaG4mKrFKgdU8t4eOa0MdiYeU5w=)
2: rzOkydR3EHFZXD3XEkRebB02-_4.roa (hash: df7jTqxQL8Sw059sbRTkyG9ltt5KtHFaW+BfP29wPTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:9d:b2:23:02:41:04:9e:ff:b9:69:99:25:60:e8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411
Validity
Not Before: Aug 6 23:00:52 2025 GMT
Not After : Aug 7 23:00:52 2025 GMT
Subject: CN=61936ddc92c7734729094da569d0b19a0b6fee85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:da:8a:d0:21:bc:b1:7c:22:96:63:75:e7:46:
7d:bc:17:30:0f:e4:78:87:66:79:4c:c3:3f:b2:7e:
19:6a:2c:eb:9b:db:02:24:cb:22:bc:ff:70:63:f2:
9f:43:81:92:ce:09:01:36:b5:b0:ec:61:6b:7f:5e:
5f:d5:b9:a0:e5:ee:76:b5:4a:ed:a5:4e:54:52:7d:
de:ba:c8:6d:0d:a4:d1:8b:30:29:cf:4b:8d:e5:cd:
1b:a2:36:54:0c:39:4b:42:2c:a8:16:d8:0b:72:79:
4b:77:5a:3d:3b:58:41:0a:d7:0e:db:48:28:89:c2:
e8:7d:85:47:99:73:8d:c2:39:2a:3d:f8:af:c8:be:
68:57:1f:b8:e0:b4:3c:34:d3:b3:e5:30:66:df:59:
cb:73:8b:6e:f6:82:49:11:2d:10:27:61:4a:b6:e0:
8a:14:7e:37:8f:5b:ea:bf:5d:75:cd:cc:22:c1:34:
3f:39:58:e4:cf:76:5b:9d:c9:f2:8f:89:7f:7f:5e:
2d:6f:28:43:c8:d2:bf:c7:48:b4:c1:98:5f:23:5a:
77:67:cc:fd:7d:bf:45:54:83:b7:c9:3d:b9:f9:19:
2d:44:a2:e6:e0:72:a6:56:36:4e:4c:4b:45:5c:4f:
12:c2:79:59:33:b7:ae:67:ed:11:37:7f:4a:de:ea:
54:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:93:6D:DC:92:C7:73:47:29:09:4D:A5:69:D0:B1:9A:0B:6F:EE:85
X509v3 Authority Key Identifier:
keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:85:0d:c4:56:66:6f:b2:a3:8b:d4:45:5f:ac:56:75:da:f6:
a6:71:b2:55:8c:95:54:1e:d6:f4:c8:31:bf:c2:e6:b4:74:11:
59:71:17:fa:12:08:83:25:61:c8:7c:cb:09:a0:e2:75:0c:1d:
e3:d5:57:c1:92:c9:b6:97:3c:0d:5c:44:c7:e3:68:b0:be:c5:
15:a4:e7:76:c9:4c:36:83:af:8a:f9:93:1b:08:d9:18:ec:56:
74:03:c2:19:c3:6f:42:08:15:35:05:99:3c:1f:c7:0a:14:47:
7f:52:ba:c2:1d:aa:1d:b3:46:d6:57:3e:be:3a:d8:a1:6d:55:
6f:d7:79:b6:50:ca:62:8f:60:47:4b:d5:ef:43:c2:55:06:17:
63:4e:fb:4b:2e:a0:73:89:b1:3c:a4:34:92:8d:56:e0:14:69:
2c:50:7f:76:6d:19:6e:b2:ca:a9:1b:91:a8:29:09:21:d8:e8:
3d:05:27:5a:c1:4a:3f:38:e0:5c:96:41:63:47:47:67:f6:32:
15:3e:b0:68:78:c7:4c:9c:25:c0:4d:da:e4:4e:e8:85:02:e2:
f1:aa:7b:b7:73:a4:87:fc:88:a0:94:b9:d9:b0:08:ca:05:b0:
46:9b:09:44:3b:3a:f3:42:d6:3c:fc:43:74:ab:2b:d3:30:4a:
c5:15:8b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:29:38 2025 by rpki-client