Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: ygrpea9P+AUO76DRdnogICH+s2dkR3ePLVdbrHSiUhA=
Subject key identifier: BA:B1:0B:26:05:6F:2D:73:20:A4:9C:A5:36:AD:4F:3B:79:B2:00:86
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 0198722AD9F6B394573EE3E3240380381602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 03C1
Signing time: Sun 03 Aug 2025 23:01:07 +0000
Manifest this update: Sun 03 Aug 2025 23:01:07 +0000
Manifest next update: Mon 04 Aug 2025 23:01:07 +0000
Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
3: HxZyQaGrGtOk8RKg0Mhbl06w1Co.roa (hash: T6PK192RHox/GMNjjl8t8FiOFdhRf0h3waZVXZOPKpk=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: 7diHJVof/Y7Cjs+uLg1WodWwME0f/kJDsx21tA6lim8=)
5: PwMQ2FB61zxu5sQ2E09luTqKMvk.roa (hash: izn212mH5oYV5cpl26pTxpZxIsUMzoPkaD7C7yvNm8E=)
6: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
7: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=)
8: od9af71GeQfA9Hxa-pUi9HfyQbQ.roa (hash: XWeJ2o3YIDMGq+Gf7bx+E7FN5efcdXQkm09+SRPSSXw=)
9: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 Aug 2025 18:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:2a:d9:f6:b3:94:57:3e:e3:e3:24:03:80:38:16:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Aug 3 23:01:07 2025 GMT
Not After : Aug 4 23:01:07 2025 GMT
Subject: CN=bab10b26056f2d7320a49ca536ad4f3b79b20086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:28:8e:84:fb:e6:1c:50:a2:7a:f6:ea:ce:73:
b4:44:8d:36:01:f8:95:15:04:9d:6c:83:2d:a9:f6:
3f:20:72:95:79:16:c5:39:0e:63:75:a9:07:44:43:
aa:09:19:92:32:66:45:f7:c1:fa:29:18:e8:17:a5:
5c:36:a0:04:cf:f0:b7:c1:f2:ee:c8:59:41:7a:37:
c5:04:fa:cf:d6:73:56:e0:81:f6:d2:c4:59:3d:bd:
21:80:d5:5f:94:4e:9c:f0:59:78:b0:ef:7a:bc:e1:
3d:c6:dd:a6:59:2c:18:81:f6:47:cf:57:ff:0a:4d:
ff:ea:5c:6e:9f:06:54:e5:90:44:08:fb:f9:cf:17:
42:e9:21:e4:93:c6:3f:57:85:c6:ab:21:e7:8f:fe:
ed:3a:6f:77:d8:02:67:03:5a:de:1f:52:18:e3:b5:
32:fa:1d:8d:03:3b:d4:0c:c2:30:de:24:e7:3d:d7:
22:c7:1d:ae:11:9b:67:62:35:e8:69:d6:ca:d4:75:
3e:f7:36:15:93:48:b2:8b:6f:78:0b:62:cf:ba:08:
aa:df:a4:c4:f9:44:33:4f:a7:bd:cd:7d:c8:f0:6d:
52:79:de:13:6b:b9:e2:4f:25:10:01:8d:07:d1:5e:
63:d3:d7:3a:4c:ba:62:98:dc:c9:78:ae:72:9e:05:
ae:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B1:0B:26:05:6F:2D:73:20:A4:9C:A5:36:AD:4F:3B:79:B2:00:86
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:43:81:43:57:ee:5e:5a:4f:e5:74:bf:14:48:ab:fd:53:bd:
00:74:e6:14:84:53:6b:be:3c:48:c0:73:a4:0f:25:07:31:ff:
39:04:20:47:1c:17:5d:56:b1:e4:2b:11:08:25:f4:60:ac:40:
e8:03:c3:10:d7:e9:2f:44:dd:66:3e:93:4a:2f:5b:d4:a5:b4:
43:e7:29:1e:bd:41:f0:20:d5:75:07:63:e4:49:22:74:28:45:
23:a6:af:d9:32:1e:43:e0:90:b8:30:46:fb:55:fb:2e:d9:f2:
07:18:f3:fb:23:a6:71:35:1f:94:4a:ae:c9:c4:b0:34:f6:3b:
ea:4a:2b:21:55:62:38:f1:36:8c:28:5e:b6:d7:cb:c7:ad:8f:
e3:a9:16:6f:11:79:06:c7:31:88:6c:f2:78:8e:0d:e0:14:4b:
83:bd:97:5d:2f:bc:5a:4d:c3:2a:d1:b7:81:ed:68:19:e3:5c:
91:67:a9:59:b5:6a:12:5c:8c:4b:95:9a:11:df:80:84:8e:d2:
e8:ce:75:81:fe:9c:a7:54:c9:7c:3e:d7:ed:fd:e1:97:4a:9b:
54:cc:98:ea:12:12:b6:d4:27:46:89:46:41:52:ad:1b:c1:57:
8e:48:fa:ef:6d:f1:23:2a:81:93:73:12:ba:64:28:2a:34:f8:
03:b5:77:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 03:34:19 2025 by rpki-client