Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: 2JOVLNRlLfaXTK1h87Fl49AQ/N+06+CtM51NtCOyH3Y=
Subject key identifier: F5:AF:32:C2:19:DA:22:B1:0F:38:98:66:E7:41:EC:DE:6E:9E:69:F0
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 0198733D38C466D78D4B8485EA4BA3895604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 04:00:48 +0000
Manifest this update: Mon 04 Aug 2025 04:00:48 +0000
Manifest next update: Tue 05 Aug 2025 04:00:48 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: QP+xUNfLMZ3N0cl0x8jjyZ+D1Z8LyVVePWxrmqb7RZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:3d:38:c4:66:d7:8d:4b:84:85:ea:4b:a3:89:56:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Aug 4 04:00:48 2025 GMT
Not After : Aug 5 04:00:48 2025 GMT
Subject: CN=f5af32c219da22b10f389866e741ecde6e9e69f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:62:89:44:8b:f0:5d:bc:00:2b:2d:25:65:41:
f2:b8:04:b2:24:54:18:f5:fc:35:ff:50:22:5b:4e:
05:c3:ef:0c:8c:9b:73:56:bf:4b:86:18:40:0d:a9:
87:0c:46:c6:bd:b4:41:cc:bb:7a:71:1d:e9:c8:7a:
e9:53:ce:1e:2d:7c:84:02:85:8b:c5:04:29:36:9a:
fd:f9:d8:5a:86:8c:bd:1a:85:02:af:cf:c7:53:26:
0c:5f:a4:cf:32:2e:22:ba:37:dd:46:83:db:fb:fa:
b2:f7:8c:c7:c6:ac:45:cd:3b:4c:e5:86:7b:3f:9a:
89:2d:51:d8:7e:8b:5e:de:5a:11:6d:b3:33:2c:82:
31:f7:e2:4f:43:ff:b1:da:ea:80:d6:c7:04:39:f1:
6d:67:68:44:5b:b2:9a:fe:da:c4:40:98:02:d2:32:
47:b1:b3:c6:8b:7b:1f:7f:66:a3:e2:9d:7d:fa:82:
9d:5b:4e:2e:df:72:cc:d1:8f:ee:08:bf:c3:b1:5a:
c4:b0:d0:bf:11:d5:43:39:7a:a3:bb:0b:c2:86:46:
b4:30:38:3e:d2:ba:b9:69:9c:cf:05:21:79:e0:59:
53:12:08:a8:6d:60:9b:0c:e5:24:ae:17:09:4f:0a:
be:3d:7b:ec:06:a6:45:cf:c4:21:9b:54:82:4a:96:
85:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:AF:32:C2:19:DA:22:B1:0F:38:98:66:E7:41:EC:DE:6E:9E:69:F0
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:ce:8d:2a:a8:a2:32:6e:09:b8:1c:c2:0a:ba:be:bb:d6:e6:
4d:ae:7a:3a:38:0c:3a:a8:00:b5:4b:07:0e:08:de:6c:75:2e:
24:5a:87:cd:7b:f2:cc:ad:d5:76:97:a2:87:a6:8f:f7:49:d5:
f2:7f:e6:1d:7a:52:1d:30:f3:bf:a8:81:7a:c0:de:f6:34:70:
b3:18:4b:1f:8e:fb:6d:0b:47:0a:96:8d:62:69:65:7b:73:b4:
48:28:17:39:1d:30:6e:1a:4a:85:33:22:52:c6:19:95:84:6e:
de:ed:ac:e6:aa:5c:7a:7e:0f:cb:5b:8c:65:51:a3:60:4b:ac:
81:2f:56:42:5d:d6:31:75:ef:c3:6b:9a:b6:49:b7:04:c1:74:
aa:58:1f:00:a8:39:36:ed:0f:db:5c:d7:20:26:87:37:a1:79:
08:da:88:a0:d5:23:7b:43:a6:12:11:54:2c:06:93:69:fe:62:
f1:5e:7b:3a:ff:08:be:24:d2:8c:31:f3:f0:29:a0:5c:44:54:
56:5b:9f:98:f7:5a:ea:44:9f:43:26:e2:d4:c6:d1:cf:43:70:
a7:3a:09:9f:51:0e:90:22:34:2b:78:dd:35:2f:0c:65:ab:86:
b3:0b:95:98:83:8c:87:c9:8d:8a:77:12:b0:44:6f:1d:59:44:
8e:1e:5c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:14 2025 by rpki-client