Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: sthKTZ2qZVDeCi9wDbVSh5f2YT/yZN37AksTYbDSHQo=
Subject key identifier: 62:F6:84:FA:60:1E:6D:7A:8E:78:AB:4E:97:26:EA:8E:F0:C0:5F:17
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 01988C8EE76480EB1FD039957E87F46677DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 0A6F
Signing time: Sat 09 Aug 2025 02:00:31 +0000
Manifest this update: Sat 09 Aug 2025 02:00:31 +0000
Manifest next update: Sun 10 Aug 2025 02:00:31 +0000
Files and hashes: 1: 1gJl5QGcLnfhKR4ZX5vkhukZyTU.roa (hash: NMFFqW5s2zQQWT6VrzvJinnOwTRcu4h6yTFNCCxpjXA=)
2: HlpYPKfUTSJ7pDq2oQziu1OJN70.roa (hash: 2/lnsP1apTOPlsNH0YhFprUwFbQM2G9j3yZLF5vZFt4=)
3: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: rTEe6A7iGMEy2YvvMYYajuuLuaXc4tztSfZe1GKEfJw=)
4: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (hash: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:8e:e7:64:80:eb:1f:d0:39:95:7e:87:f4:66:77:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Aug 9 02:00:31 2025 GMT
Not After : Aug 10 02:00:31 2025 GMT
Subject: CN=62f684fa601e6d7a8e78ab4e9726ea8ef0c05f17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:06:73:87:50:71:6a:5c:c7:09:40:3c:da:2c:
b3:66:97:b2:94:f2:34:10:33:e6:ed:88:70:e4:ff:
81:db:b5:80:d2:8f:72:0c:67:77:e1:01:1d:a8:de:
7e:00:0b:bd:63:2d:c7:00:49:ce:96:ef:69:e5:32:
46:e1:e6:c1:b6:97:f8:7b:1c:98:40:60:dc:f3:f0:
5b:52:69:97:28:30:b8:0d:b8:ff:98:e2:b5:6f:3b:
eb:f5:6e:8a:6c:4c:a8:a6:6b:bd:44:3b:2d:5c:60:
8d:eb:4d:71:ac:c1:eb:34:e1:8c:2d:ea:3a:e5:d0:
73:9a:04:d1:7a:c3:39:64:d1:dc:fa:e6:c3:66:9d:
94:1a:99:d6:4c:84:c6:44:c6:4a:22:1f:db:51:7e:
21:26:9a:b9:93:6d:70:56:d1:76:11:08:bf:92:89:
a5:0e:18:35:ba:f1:84:6e:4d:74:a3:b3:34:cc:58:
cb:ff:93:a9:c7:a9:57:f4:34:79:62:83:c9:fa:3d:
64:6a:a6:02:eb:61:b1:c9:bc:6f:9c:5b:60:6f:fe:
08:87:db:db:48:19:09:1d:ec:a1:b7:a9:d7:7e:37:
1c:a6:30:ff:ba:e4:15:1d:d0:a7:4b:87:6f:34:41:
9b:d4:38:78:0c:66:f1:e7:af:b5:3f:60:5f:73:e3:
98:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F6:84:FA:60:1E:6D:7A:8E:78:AB:4E:97:26:EA:8E:F0:C0:5F:17
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:4f:0a:a6:d3:f6:e5:8d:19:e6:57:39:fe:5d:13:bf:42:9f:
1b:02:71:07:2c:ef:7f:c4:02:2d:a4:9f:65:3b:61:19:8a:a4:
ef:09:38:b5:2e:27:68:1d:66:a9:3e:c4:b1:fd:99:46:6d:06:
0a:24:bd:2b:c9:c3:8b:b5:e2:9a:6e:23:bc:53:be:21:c9:b1:
33:3b:fd:03:29:bb:c6:1c:4f:5c:79:0a:fc:78:ad:7d:e2:e3:
21:cc:28:da:9d:a1:19:cc:9d:e2:96:97:72:ce:77:30:70:78:
84:ef:6e:ac:46:38:5b:ec:30:e7:df:ac:92:db:ff:f5:10:da:
a8:7a:a1:ab:6b:0e:49:2e:ef:6c:cc:1d:3e:9f:77:e4:7d:87:
63:4f:79:ad:e9:a5:28:a4:c1:8a:3e:3b:b1:3b:58:89:f0:80:
3f:c8:40:9f:ab:36:37:4b:8e:ab:d2:3c:fc:b4:c7:b0:a1:b0:
10:ef:a3:22:8a:d1:03:db:34:49:58:6f:47:50:f8:d0:32:61:
45:bb:3e:b6:de:d0:dc:6a:95:46:36:c6:ac:39:6a:13:3b:3d:
6c:5a:fd:32:0d:f0:e0:c1:c6:07:81:c3:e7:33:b7:92:23:58:
69:8b:50:93:99:9b:5c:6b:26:3c:04:f7:c4:66:04:44:00:03:
fd:cd:41:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:44:56 2025 by rpki-client