Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: Xtz7OHIqQJyclvTuuKVYLNfRHbEeR5T2bT2VRTPQYhs=
Subject key identifier: CF:02:EF:EC:65:AE:57:A8:E8:E5:F4:C5:E8:A0:77:A0:7B:6B:18:C5
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 0198748779104E3F7D52AD101F6D5B1A0C90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0A25
Signing time: Mon 04 Aug 2025 10:01:31 +0000
Manifest this update: Mon 04 Aug 2025 10:01:31 +0000
Manifest next update: Tue 05 Aug 2025 10:01:31 +0000
Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: XBqcFjrdN70cbJgGGdW4GQ3+cthJdimkK+9ngduNF+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 10:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:87:79:10:4e:3f:7d:52:ad:10:1f:6d:5b:1a:0c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Aug 4 10:01:31 2025 GMT
Not After : Aug 5 10:01:31 2025 GMT
Subject: CN=cf02efec65ae57a8e8e5f4c5e8a077a07b6b18c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b2:c2:3c:c3:03:88:f4:10:dd:b7:2e:40:47:
4e:9f:37:d6:2b:3a:2a:f0:36:ac:ee:ed:3d:6d:dd:
97:83:e2:b9:5d:eb:71:74:30:c5:d7:42:a8:a3:00:
b1:7f:29:1f:3c:c1:a1:19:97:83:d8:da:cc:4a:71:
aa:12:b9:a7:35:cb:93:7f:4e:bc:eb:f5:3f:26:75:
79:ae:54:fd:71:fa:45:b9:a7:80:7d:7c:55:94:34:
09:60:c3:19:4a:90:dd:ee:e3:4e:be:93:77:af:93:
dd:5c:12:f9:f3:cd:48:c3:58:af:a5:b9:b9:1c:1b:
05:aa:d4:fa:c7:77:2b:9d:f8:d9:94:56:dc:13:69:
4d:c0:50:9f:4c:82:54:be:23:84:05:88:a4:a3:73:
e6:80:f4:99:fe:51:7a:86:de:33:6c:4e:56:12:a3:
c8:12:d3:77:f5:65:19:c9:34:ca:74:60:b9:89:ca:
a0:43:3b:a2:f6:fd:3b:f9:83:b2:6b:63:74:af:49:
b0:20:f2:3f:94:7c:f4:86:1e:4e:8e:7c:2c:2f:2d:
86:06:63:9d:c0:2b:67:cf:4b:44:11:8b:a4:df:7d:
3c:cd:b5:0d:31:3c:29:30:e2:9f:f3:2c:fd:52:cb:
33:dc:5f:0a:6c:1c:73:ca:34:b2:1f:a5:a4:6b:56:
c0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:02:EF:EC:65:AE:57:A8:E8:E5:F4:C5:E8:A0:77:A0:7B:6B:18:C5
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:ad:1f:6e:f9:76:5a:54:7e:58:3e:c5:90:f4:bd:a4:7e:67:
35:d9:d9:92:20:7a:0e:0b:fe:08:d3:d8:6f:28:7b:48:a3:67:
d4:d7:21:8a:e8:b5:c4:fe:85:8d:62:2f:a7:96:80:0b:3f:7a:
30:9f:62:ee:7c:d5:3a:3a:15:b7:b5:1a:35:40:84:0f:f9:3f:
cb:34:cc:d2:33:75:50:23:d5:65:6e:4e:6d:31:63:8d:cc:4a:
db:62:31:c4:62:21:e7:f1:0d:95:d2:d8:4b:eb:3a:81:54:f7:
bc:22:05:16:df:83:70:da:40:12:f3:59:32:78:2f:98:a2:67:
fe:7a:aa:41:8d:20:f1:d7:f6:8c:37:9c:c4:47:70:8b:54:7d:
2d:b9:5f:8b:fa:43:35:19:9d:75:70:ff:e1:05:ed:85:e3:15:
ec:5d:ea:ea:9f:ae:0d:3e:50:92:9a:28:91:1a:4a:64:9c:9a:
17:03:68:44:05:e0:f7:c3:47:23:45:4c:17:d0:37:a5:e1:d9:
73:80:7e:b2:94:2d:3c:79:7c:09:de:20:a5:17:2b:fd:a7:2d:
5a:59:a0:0f:75:9f:1b:f7:18:69:67:b5:43:5b:b9:d0:69:60:
10:bd:b8:ae:ed:fd:81:fc:70:00:a1:cb:69:9b:c7:e3:e7:4e:
10:29:aa:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:56:27 2025 by rpki-client