Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: LyWvOQiyiCOtZwReNBI4eSl96k124P3t88R7r8FS+SI=
Subject key identifier: DD:93:9F:90:D9:B8:AD:F4:DB:E8:2E:61:A8:86:FE:9F:7D:AB:90:4E
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 01988B0F8B7D8C2E75DACF449446EED0AA0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 162D
Signing time: Fri 08 Aug 2025 19:01:48 +0000
Manifest this update: Fri 08 Aug 2025 19:01:48 +0000
Manifest next update: Sat 09 Aug 2025 19:01:48 +0000
Files and hashes: 1: Lx4QL8l0KgaffC4QXEWzVHcEawc.roa (hash: DxG2rV8lArm7XTxrRaRlBv42lE1FblGks/y6Gbm7tWY=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: YXyw1V3PZdrpy0WED86i9UptrQNSuw955cJhwRaA2fE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 19:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:0f:8b:7d:8c:2e:75:da:cf:44:94:46:ee:d0:aa:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Aug 8 19:01:48 2025 GMT
Not After : Aug 9 19:01:48 2025 GMT
Subject: CN=dd939f90d9b8adf4dbe82e61a886fe9f7dab904e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ca:52:5a:fa:22:7d:9b:f6:11:62:de:97:9f:
a3:d9:f7:4e:97:ed:a6:ab:e7:d4:f0:ef:9d:ad:ed:
eb:a8:95:61:5b:b4:2e:0d:1a:9f:e2:c4:b2:15:71:
b5:22:c1:42:7c:f8:cb:09:72:1c:7b:5d:89:55:9d:
b3:d2:57:88:1a:af:f1:47:5f:eb:01:67:89:b7:94:
7a:60:b1:00:9d:1a:b4:9b:3a:c4:8d:8a:49:77:5c:
17:5d:41:7f:de:08:0a:32:e1:90:87:fd:ce:4c:d9:
f2:2c:43:0d:3c:48:a1:41:a2:4d:74:d4:8d:92:5e:
ed:05:3d:2b:1c:e1:da:60:68:80:fe:3b:3b:03:bb:
d4:a1:37:6d:9e:4a:25:8c:64:fb:6f:62:2e:8c:2b:
23:87:fc:3e:6f:60:b5:e0:1c:35:44:e4:bf:36:dc:
63:69:46:61:a2:f7:be:7a:9c:bd:46:06:e6:56:c9:
e1:14:11:6a:dd:e9:70:38:9a:59:0c:ab:20:ac:2d:
05:0d:65:2b:66:ef:ab:fa:ad:4c:9b:fd:fb:c4:18:
c6:58:d6:f9:5d:00:ae:94:39:a8:f3:c6:5a:3e:f6:
c2:d0:7b:28:96:24:aa:d5:8f:c6:6c:9c:1e:75:9f:
52:d8:d5:38:32:3e:06:d7:b1:bc:69:fe:64:49:2c:
89:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:93:9F:90:D9:B8:AD:F4:DB:E8:2E:61:A8:86:FE:9F:7D:AB:90:4E
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:43:1c:c5:17:6f:df:65:b6:f3:cf:aa:c4:ef:70:01:47:4c:
2e:a2:e0:a3:60:0a:37:a6:9e:5a:b1:96:cc:a7:de:39:ef:d2:
2a:48:cb:a8:93:27:cf:e2:7c:06:2b:bb:c0:2c:e7:ff:7a:71:
e0:31:32:24:ba:5b:08:9f:3f:e8:5d:27:97:5e:6f:cb:d0:a4:
a6:fe:2c:e6:65:ae:32:24:91:59:9a:07:d0:95:06:08:c3:55:
79:9b:4c:55:8c:9a:4e:5d:88:39:5b:53:d2:30:16:64:2d:58:
ac:e6:50:14:22:cb:40:8a:23:1f:de:96:80:86:f3:b9:40:02:
40:04:8e:ae:c5:3f:27:26:62:94:9e:39:12:32:75:b5:e4:14:
4c:c5:ab:0d:ad:7b:4c:17:a8:47:d9:2f:6f:db:e0:36:59:a7:
3d:e8:36:32:8d:c8:97:43:dc:b4:ed:98:8b:54:e1:9d:6a:37:
14:92:7b:e2:60:92:56:ad:33:03:ed:79:b9:e5:01:66:4a:71:
d2:58:23:a3:1c:d9:65:ef:87:77:64:b8:56:2f:a0:5d:9b:24:
8b:fa:08:6a:59:ac:95:9d:29:5d:75:75:9c:7a:9c:52:41:00:
20:c2:ad:e1:4c:05:5b:d1:0b:c8:a3:9f:a4:b8:39:60:4b:38:
b6:45:a3:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 02:48:51 2025 by rpki-client