Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
File: KgzEYwHIsf1GOSkwGPulNlOiZbI.mft (raw, json)
Hash identifier: ZeT/2c7+kWEmse7OuZTM9ObkzJ5IlNgv7hivmRKILrs=
Subject key identifier: 5D:2D:71:6E:6F:33:F4:83:5E:E3:14:BE:82:53:FC:A8:97:58:1E:7F
Authority key identifier: 2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
Certificate issuer: /CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Certificate serial: 01987C7759958419BB745A25D0DC3CDC7B81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
Manifest number: 161F
Signing time: Tue 05 Aug 2025 23:00:53 +0000
Manifest this update: Tue 05 Aug 2025 23:00:53 +0000
Manifest next update: Wed 06 Aug 2025 23:00:53 +0000
Files and hashes: 1: 25LU7394eXHg-PBe4_GLTG3VIkw.roa (hash: HyP22/g9CSOKH8mPcT6JDAYedjiAUR/5O/lp9cDajCk=)
2: KgzEYwHIsf1GOSkwGPulNlOiZbI.crl (hash: 4atcHiH261Nol+h7U2GGOL8IIp+tlG17AuCoqmbEsTk=)
3: VUqvat4WtfuUczhMBY4TDvxEK_s.roa (hash: Zqzw2dEApvnq4zRqyWAKudIEokzGJ+rSfWzcaKX+at0=)
4: jfIFCuUZlCfoxkAB48zp-OMBSv0.roa (hash: tfMbXizXQYE7ANVbZs7KN2qDtk5wxuAhU53t/l8imds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:59:95:84:19:bb:74:5a:25:d0:dc:3c:dc:7b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Validity
Not Before: Aug 5 23:00:53 2025 GMT
Not After : Aug 6 23:00:53 2025 GMT
Subject: CN=5d2d716e6f33f4835ee314be8253fca897581e7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6d:91:29:e5:5d:eb:3c:db:bf:99:ec:03:42:
c2:5a:f4:9d:3d:7d:fe:5e:c2:3c:ae:75:eb:20:a5:
2a:9a:ec:d1:93:d9:25:61:1e:51:aa:65:98:d7:b2:
c8:13:56:53:0e:09:94:ab:dc:48:30:e1:d3:fb:09:
af:9f:f8:97:79:c3:89:e9:cd:96:68:f4:9f:9d:53:
43:bc:79:a1:7b:3b:fd:19:a5:fd:c1:ef:7e:06:4e:
a2:25:33:5f:ee:76:85:63:5b:e1:b8:dd:82:08:72:
69:84:06:49:e6:78:0e:09:bc:c5:e0:71:ac:c8:8f:
79:c5:4c:84:bb:c7:a7:a1:75:13:aa:eb:71:a5:3d:
c1:dd:e4:f1:ad:7d:f3:8d:62:57:1c:4e:dc:ab:a9:
3a:c5:fa:1a:fc:bd:e3:dd:c6:17:9f:5f:59:76:a2:
6a:5b:e1:b4:02:53:68:ee:b6:06:e6:52:bb:05:b6:
4d:2e:f6:da:16:3b:9a:80:20:a5:c1:61:da:89:64:
a5:a2:5d:7e:6f:e9:49:36:d3:3c:5f:a8:2b:61:24:
94:1c:d8:90:af:7a:d2:85:00:70:c5:70:dc:2e:56:
b6:a3:20:54:3e:6a:e1:5a:3e:30:66:43:25:8c:16:
94:3b:a9:96:00:ef:8e:1b:8f:d0:29:fd:db:63:f3:
0e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:2D:71:6E:6F:33:F4:83:5E:E3:14:BE:82:53:FC:A8:97:58:1E:7F
X509v3 Authority Key Identifier:
keyid:2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:35:3f:3c:01:55:c2:f3:3d:cc:f6:cb:22:2c:f6:f0:ac:8f:
94:39:80:66:42:8d:77:2d:7b:7e:7e:6b:e5:36:4b:3b:0f:a6:
a6:c0:56:a6:e5:d5:72:37:3c:79:08:47:c6:58:89:3b:10:20:
07:80:12:a6:eb:35:30:bf:6c:b5:02:e1:56:7b:ea:9d:5d:d4:
67:eb:f6:c8:c7:1f:71:04:2b:af:74:00:67:ba:39:72:02:66:
b4:27:ae:22:b6:3f:92:5f:da:7a:78:09:82:e3:46:d3:bd:6a:
f8:a9:49:ce:93:41:a4:d6:ca:e4:ec:76:47:81:ca:dc:a0:ba:
ee:19:f3:70:6c:62:17:47:3c:2a:2f:22:40:f6:1c:a3:03:09:
8e:02:60:d9:7a:f4:bc:a1:d4:19:05:b2:18:3b:a4:e9:62:76:
80:2f:f1:29:82:35:d8:f9:2e:42:80:9a:a4:66:1f:10:5c:12:
87:4f:25:15:71:a3:2f:55:9c:70:72:79:2c:86:b0:a4:da:36:
e2:2d:1f:f7:77:7e:66:f9:91:fc:15:e6:ba:d1:ce:d5:eb:4a:
3b:76:1e:c8:4e:34:e4:7b:a7:aa:17:33:a1:88:18:08:6a:6b:
80:71:95:69:23:72:c0:12:5a:54:31:55:9d:a8:67:e9:45:5e:
34:06:41:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 04:00:21 2025 by rpki-client