Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
File: KeRudYZejUoIHktd2kbTyUADZ5s.mft (raw, json)
Hash identifier: /IyorKHlHEe5eTJHh5urbgRbJJnaMc3rjxgINBO0ITs=
Subject key identifier: 4D:71:EC:B1:49:C6:2E:F5:AC:B8:2C:8D:05:3A:5B:AF:2D:7E:76:32
Authority key identifier: 29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
Certificate issuer: /CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Certificate serial: 0198978095C1857CDB0B1E21B213DF963F31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
Manifest number: 1508
Signing time: Mon 11 Aug 2025 05:00:43 +0000
Manifest this update: Mon 11 Aug 2025 05:00:43 +0000
Manifest next update: Tue 12 Aug 2025 05:00:43 +0000
Files and hashes: 1: KeRudYZejUoIHktd2kbTyUADZ5s.crl (hash: ggNieTqwVF4Z1nm2ZN7VMCC6vCAsWmeVtogGNNhK0Ng=)
2: sYwqpJAH6xt25FV658_Z0b8PqQ4.roa (hash: nTc7YSWaucHsViUALBoDYtryVR1AkC4pCCvnaDdeVwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:80:95:c1:85:7c:db:0b:1e:21:b2:13:df:96:3f:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Validity
Not Before: Aug 11 05:00:43 2025 GMT
Not After : Aug 12 05:00:43 2025 GMT
Subject: CN=4d71ecb149c62ef5acb82c8d053a5baf2d7e7632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fb:b0:5c:79:e4:f5:24:f2:53:2b:6c:56:3e:
a1:ef:96:8d:d8:25:e4:ec:07:6f:2a:4e:dc:16:4e:
9d:69:75:39:b0:56:ea:73:bc:d6:ba:c0:a0:ec:94:
ca:6e:8a:11:eb:cf:51:77:9d:d9:8b:7b:48:4c:72:
62:72:fd:90:95:2b:95:e8:53:77:85:16:46:8f:58:
81:b1:95:8f:b0:52:67:c2:4c:6b:14:3f:2a:cb:72:
34:df:bb:6f:e0:19:30:94:30:4a:3e:c8:92:ec:3a:
05:de:0d:02:72:23:6e:ea:a1:fc:0e:fa:e0:2e:e0:
26:d8:9b:86:8e:b4:10:ed:fb:e7:34:54:d3:7d:d9:
f7:c7:0a:41:25:87:b4:92:0c:13:51:9b:ca:52:5c:
81:3d:c3:7f:f1:08:81:2f:06:22:c5:32:84:8f:4a:
f3:97:1f:84:db:a8:91:42:38:ec:1f:f9:68:cf:34:
5d:73:42:65:e4:5f:bd:41:09:28:51:06:bf:69:0b:
ec:99:e5:46:0d:85:61:c5:65:e4:be:a4:e4:b7:84:
17:2e:23:8e:80:5a:ab:c8:3f:b8:1e:27:b6:c4:1f:
45:46:e0:5e:64:e7:5b:7e:1b:c8:5a:25:82:d2:f7:
c4:db:46:76:70:0d:a5:1f:7f:d4:b4:c1:7e:20:d9:
2a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:71:EC:B1:49:C6:2E:F5:AC:B8:2C:8D:05:3A:5B:AF:2D:7E:76:32
X509v3 Authority Key Identifier:
keyid:29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:b5:ea:d7:18:49:6a:49:26:b3:77:79:f5:41:df:3f:30:2e:
2e:80:53:3a:aa:9f:e6:0c:5b:62:5e:ce:0c:5d:fb:75:0e:2d:
06:01:ba:9e:0e:f8:d7:7d:b6:0c:6b:fb:ce:00:a2:76:66:21:
fb:b0:0c:08:4c:8a:b0:66:69:4a:f3:c3:26:c4:0c:7d:3c:f0:
56:2a:1b:2a:a7:8d:91:5e:8c:49:83:b0:c3:2d:4d:27:27:62:
55:ac:b3:d8:80:74:49:c9:0c:ce:b2:76:5f:62:12:a2:76:a4:
a5:23:03:37:66:db:7c:86:d0:91:93:b5:6c:42:ad:25:b8:bb:
94:57:87:2b:1c:5d:d4:9a:97:6e:d9:55:c7:a9:b4:57:9c:64:
fc:1a:5f:aa:d7:2f:41:86:56:0d:49:7f:bc:69:89:15:36:e9:
e9:1d:a9:a8:9f:14:6b:44:75:42:ce:d1:c9:d1:c6:dc:e3:90:
dd:e3:60:2d:ec:16:d8:e6:b8:9d:92:86:83:b9:fd:31:2b:34:
f3:0f:60:9b:f5:08:86:83:14:19:1c:2a:79:7d:2c:56:1a:31:
56:61:13:99:f8:2c:87:09:d5:ad:cb:12:46:46:d9:6d:bb:21:
a7:ea:7f:ea:35:a3:42:0b:10:83:1d:2d:26:91:88:9c:ba:0b:
74:e9:04:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 07:47:02 2025 by rpki-client