Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
File: KBZKV1f91XJaYIRPKufvc7EHpMA.mft (raw, json)
Hash identifier: YeUn9dFfGDfMH2A0eleieUafpYWgzgyaFFhxJkfdMKQ=
Subject key identifier: 0E:3C:9C:3F:6C:7A:73:1F:94:12:79:E5:8B:8C:EA:60:1F:71:EC:5C
Authority key identifier: 28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
Certificate issuer: /CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Certificate serial: 019874F484F116033BA711C3856D7A917499
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
Manifest number: 1615
Signing time: Mon 04 Aug 2025 12:00:38 +0000
Manifest this update: Mon 04 Aug 2025 12:00:38 +0000
Manifest next update: Tue 05 Aug 2025 12:00:38 +0000
Files and hashes: 1: KBZKV1f91XJaYIRPKufvc7EHpMA.crl (hash: LjiVHU3ipdTcfjZelxIAbKns+d5Y5zcN79Y3P1MXOrU=)
2: MhHg4JFChvahbVNUw3bJFSkkmEg.roa (hash: 4DOu8CWNY1OjDP1XSPeR4I2ZieWWV4v3/yu30qnq/P4=)
3: jPXAyTxRg6IHrumUsMVZCICaKwI.roa (hash: yu/3MPqNqBbwh5Kh6v8tYgtrr60bnzQOIu7M1/9ZqhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:f4:84:f1:16:03:3b:a7:11:c3:85:6d:7a:91:74:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Validity
Not Before: Aug 4 12:00:38 2025 GMT
Not After : Aug 5 12:00:38 2025 GMT
Subject: CN=0e3c9c3f6c7a731f941279e58b8cea601f71ec5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f8:64:5e:e6:02:77:d7:2b:1c:a2:d7:2d:bd:
14:fb:4e:27:90:9f:4e:f4:c7:13:05:8e:33:29:8e:
ad:23:fb:93:08:b9:d4:b1:6b:ff:64:0d:3f:29:81:
46:e9:02:9e:60:b0:c5:00:39:93:99:b4:d9:de:89:
98:a1:90:69:8c:56:f8:63:26:04:eb:a3:fd:85:5f:
26:f4:1f:11:4d:e8:fc:58:09:fa:00:5f:f1:48:c1:
5b:c7:a0:0e:0b:c9:78:7e:81:8d:18:c3:d4:a9:3b:
73:22:df:7c:73:de:68:44:28:60:b1:37:20:18:50:
f4:dd:20:0f:af:c7:c2:0e:05:bb:8a:e8:af:6d:7d:
99:2e:2b:c1:60:96:8f:46:92:b6:1f:73:8e:38:a6:
28:d7:bc:b1:b2:80:24:3d:d4:ed:d2:24:cc:47:6c:
cd:02:18:c7:4d:8c:d2:64:b3:4d:48:39:d7:42:71:
4a:a0:a9:d3:b7:c8:94:61:f7:f2:f0:02:78:9e:51:
59:9b:08:27:4c:52:ef:a6:fa:2b:09:51:50:73:b4:
76:6b:59:13:a9:cb:ed:f5:c1:54:a3:a6:a8:b4:30:
47:12:51:36:e4:d9:ac:75:e2:3e:c2:6e:e0:ec:3e:
08:8f:c7:05:bd:ec:42:00:36:f4:d4:19:d2:20:b1:
a9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:3C:9C:3F:6C:7A:73:1F:94:12:79:E5:8B:8C:EA:60:1F:71:EC:5C
X509v3 Authority Key Identifier:
keyid:28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:01:02:79:0f:65:af:5e:e0:7c:60:fa:89:67:11:26:5a:9b:
9e:24:09:7c:46:70:fa:ee:6b:f4:dd:dd:69:bd:d5:49:cd:e1:
81:63:a7:08:2a:a3:18:fd:8f:69:af:39:f7:9e:02:d0:67:f4:
6c:90:93:87:25:61:a1:1f:80:77:a6:7a:f8:b6:c6:3b:07:e1:
b2:0e:24:f3:64:13:fb:07:82:78:13:18:42:44:93:f4:ee:16:
32:9a:97:47:07:7b:dd:c2:db:f8:f3:45:56:09:be:7c:77:be:
06:99:e7:5e:cf:79:89:fb:60:2d:db:83:f8:1c:7e:78:f6:0e:
ee:fc:3a:d1:ab:09:f9:4f:be:c3:6c:31:e5:29:79:e0:2e:9c:
ce:0d:5e:8b:4f:81:e1:07:77:90:b6:6a:ad:67:df:43:ca:47:
2b:a7:04:f1:f1:1e:55:76:7f:2a:c9:07:54:6a:4b:cc:49:50:
fb:16:f4:6d:b4:2f:dc:6d:f7:1a:9e:c1:d6:e1:18:5b:41:0b:
55:fe:09:62:e3:7b:e1:8a:7d:46:f0:cc:93:b9:4c:f9:99:98:
c7:cc:8d:f4:22:0e:21:89:c3:2b:ec:c4:f1:a3:15:eb:7b:b7:
7f:19:8a:b2:cb:57:c9:78:fd:a3:d1:b1:08:68:14:32:95:84:
6a:9a:7b:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:33:40 2025 by rpki-client