Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft
File: kiluMEh7qUY-S2rcgat9pkfDn-c.mft (raw, json)
Hash identifier: OY0+5ucn/HhydFuKRHXFdi8HjO0AlUp4qbzyYpOEHBE=
Subject key identifier: A4:48:46:C0:0D:1E:1D:CD:06:72:AB:16:3B:0F:3A:00:2E:7A:BC:B5
Authority key identifier: 92:29:6E:30:48:7B:A9:46:3E:4B:6A:DC:81:AB:7D:A6:47:C3:9F:E7
Certificate issuer: /CN=92296e30487ba9463e4b6adc81ab7da647c39fe7
Certificate serial: 0198936D253FAB7745CEF6896A97FFC30EF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiluMEh7qUY-S2rcgat9pkfDn-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft
Manifest number: 1628
Signing time: Sun 10 Aug 2025 10:01:00 +0000
Manifest this update: Sun 10 Aug 2025 10:01:00 +0000
Manifest next update: Mon 11 Aug 2025 10:01:00 +0000
Files and hashes: 1: i-OzQF2bcpPJxDcOX5kIL87LKyE.roa (hash: y62UPCmvVteCyYBr7OynuTmwVuaAEnPLTcqTccWvdJo=)
2: kiluMEh7qUY-S2rcgat9pkfDn-c.crl (hash: YaCxoSTcmN53QXajThNBApMZSyFDxhYyKBD29pxneS4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/kiluMEh7qUY-S2rcgat9pkfDn-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:6d:25:3f:ab:77:45:ce:f6:89:6a:97:ff:c3:0e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92296e30487ba9463e4b6adc81ab7da647c39fe7
Validity
Not Before: Aug 10 10:01:00 2025 GMT
Not After : Aug 11 10:01:00 2025 GMT
Subject: CN=a44846c00d1e1dcd0672ab163b0f3a002e7abcb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f3:f0:d7:9d:43:d6:05:bb:fe:02:14:f1:a9:
1d:f9:93:09:8e:81:02:a8:3f:81:cf:9f:71:03:3e:
5a:93:98:bd:34:f8:7a:b2:f1:2a:19:5f:73:04:4e:
05:37:3a:06:bc:10:9d:28:6b:e5:79:d5:20:e5:fc:
a8:d5:95:1a:87:85:c9:85:1d:63:32:84:61:50:9a:
ee:22:28:93:54:41:01:0e:e6:8d:49:6f:98:b0:19:
c6:bd:4f:ac:e5:ad:1c:09:a4:4c:3d:ac:12:0e:00:
8d:5c:7c:10:3e:d0:5a:ec:38:a2:9f:99:a7:04:86:
8a:25:bc:75:58:7e:fa:78:e2:b1:2a:19:7f:85:9d:
b6:7d:4f:02:3a:b7:e8:1f:51:fb:a0:5a:e2:46:61:
b7:99:5e:23:8b:0f:f5:2c:48:87:d0:93:11:01:78:
a4:05:ea:10:c9:a2:1c:92:0b:ce:3e:05:7d:38:04:
45:19:d4:4b:d7:47:43:2f:25:6a:93:a3:c7:b5:5f:
91:34:3b:11:3e:c9:fb:0c:c2:b8:d3:d8:1a:00:4e:
f3:0e:94:6a:ed:7b:a6:80:85:4d:5e:8c:bc:67:98:
36:99:ce:29:2b:37:38:e5:7b:ae:d9:59:a2:03:48:
ee:36:ca:f3:29:d8:0e:60:b8:31:42:73:7e:69:c3:
2a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:48:46:C0:0D:1E:1D:CD:06:72:AB:16:3B:0F:3A:00:2E:7A:BC:B5
X509v3 Authority Key Identifier:
keyid:92:29:6E:30:48:7B:A9:46:3E:4B:6A:DC:81:AB:7D:A6:47:C3:9F:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiluMEh7qUY-S2rcgat9pkfDn-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:ce:3c:11:75:48:ec:c6:c3:02:b7:63:6d:43:6e:05:8f:a0:
a9:3f:5a:55:d7:a3:2f:54:9f:1b:33:fb:1e:a2:47:ea:97:11:
56:ad:83:b1:dc:ca:22:1a:c6:2e:f9:33:32:9c:05:14:d7:ab:
08:32:9c:a2:b0:7e:3c:06:28:2a:0d:cd:39:80:05:64:0d:0b:
99:cb:cf:c4:d2:fe:b3:0f:fa:35:c7:d2:4a:3c:88:b8:1c:04:
f0:2c:40:cf:ff:98:b2:86:21:29:70:cb:69:3d:33:19:81:c1:
58:c5:dc:a8:cc:17:1b:2b:8e:25:e5:fc:ab:4f:20:c6:b5:2b:
6e:99:2f:b9:4c:7a:4a:fd:77:65:e0:2f:bb:c7:f7:93:81:36:
db:5b:e2:fd:03:52:0e:82:c2:82:86:85:38:3e:be:ec:63:45:
a4:7c:d7:06:c5:28:3d:2a:32:3d:4e:7c:7a:8a:ce:7c:ff:6a:
a8:55:8e:88:8b:25:0b:09:2e:d5:15:20:5d:60:bf:6f:78:64:
ad:e0:1c:db:55:f8:1e:18:c1:d6:1c:f2:54:83:9e:d2:14:b6:
87:f6:d9:61:e7:48:de:37:6f:d9:63:c3:27:6b:e7:7f:82:c3:
87:2d:70:c3:42:b1:d8:83:5f:e0:bb:24:69:94:26:5f:81:dd:
5f:8d:c8:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:45:32 2025 by rpki-client