Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
File: RKMb41sydPLLhX5a81aLaFqJEn0.mft (raw, json)
Hash identifier: 0tkNi1nKOBoSBs9pmarJ5EGb7HDRWK3d+uGyn8qdwnw=
Subject key identifier: B6:56:AC:87:95:FD:DE:35:8B:7A:1F:6F:D1:CA:70:5B:83:A8:F8:0E
Authority key identifier: 44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D
Certificate issuer: /CN=44a31be35b3274f2cb857e5af3568b685a89127d
Certificate serial: 01987D1C72B8D8240F4B15D34AD41DA7A0E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
Manifest number: D0
Signing time: Wed 06 Aug 2025 02:01:13 +0000
Manifest this update: Wed 06 Aug 2025 02:01:13 +0000
Manifest next update: Thu 07 Aug 2025 02:01:13 +0000
Files and hashes: 1: RKMb41sydPLLhX5a81aLaFqJEn0.crl (hash: pQhp9zZcj+e44/xwOvG0yPVrNOgJc4MLLpUDd0YOUzM=)
2: YFJicIZOsKffrZlgqGfXDM6-Vko.roa (hash: clBAf9+wIJJTmEssFM2b37Ghk44VkYVJfz08MTSBlTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:1c:72:b8:d8:24:0f:4b:15:d3:4a:d4:1d:a7:a0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a31be35b3274f2cb857e5af3568b685a89127d
Validity
Not Before: Aug 6 02:01:13 2025 GMT
Not After : Aug 7 02:01:13 2025 GMT
Subject: CN=b656ac8795fdde358b7a1f6fd1ca705b83a8f80e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f6:64:d9:0a:fe:57:f3:75:34:2e:64:26:7c:
f2:0e:1a:97:af:dc:c1:27:78:35:37:ea:e9:f4:c2:
b5:10:7e:70:57:3e:10:18:e7:a1:6d:72:41:56:e5:
c9:ba:8a:bf:d6:44:af:e0:7a:e2:ce:5c:d0:1b:25:
50:d0:bb:ef:80:f4:0b:06:b9:44:97:5e:74:86:fd:
43:1d:b4:a6:cc:f0:f6:8e:ff:19:aa:99:07:8e:bf:
f7:8b:e1:ca:f0:52:29:c8:da:cf:14:38:9c:db:30:
08:45:8f:d6:4e:ec:e0:07:d4:56:15:a8:72:8a:55:
e1:66:bd:04:ff:b1:2a:28:df:8d:4d:41:e4:47:9c:
27:b6:e8:d6:c2:87:7e:8e:32:c7:b7:2a:d9:0e:82:
52:90:fc:85:04:b8:3a:79:99:8b:a0:95:eb:cd:a9:
14:fc:20:84:8f:fe:94:c0:c2:93:d0:19:29:53:ba:
b7:51:75:48:d1:26:05:dd:de:9a:18:c4:61:bc:a7:
ad:40:29:52:6a:25:bb:8a:23:d6:77:73:5d:8e:87:
ce:63:43:3d:e0:f8:cd:95:8f:82:ea:a6:16:cb:ec:
ce:04:84:bc:74:cf:be:47:fd:2d:b2:4c:be:76:9e:
92:8d:b0:29:fa:ec:c6:38:21:38:9f:d4:99:e3:8c:
5f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:56:AC:87:95:FD:DE:35:8B:7A:1F:6F:D1:CA:70:5B:83:A8:F8:0E
X509v3 Authority Key Identifier:
keyid:44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:97:56:a4:b6:8a:90:40:3f:75:ff:29:97:9d:fe:0d:68:38:
73:f3:9a:b6:bb:da:a7:df:fc:cd:8f:cc:8f:4b:07:28:14:12:
ff:b0:63:ca:ec:11:01:80:7c:24:dc:e3:b9:a5:9f:6c:d6:8e:
7c:cb:cf:c8:de:49:7d:73:32:4e:32:3d:1e:a0:34:a7:44:f7:
21:3e:1c:c8:e2:7f:1b:61:e8:c7:44:c4:c1:0c:eb:fb:e1:7f:
9b:8e:cc:2a:78:94:a7:b2:08:49:58:0f:cb:96:f4:0d:cd:6c:
34:4e:d4:56:3f:00:9a:f0:08:63:3f:3c:91:06:02:69:1c:90:
32:01:12:33:ff:f8:ca:11:59:86:7b:73:eb:0d:07:49:e3:9d:
9c:a9:e2:d0:ca:f6:ab:1e:4c:41:e5:e4:c6:22:33:58:fb:8b:
07:6d:c5:25:f7:68:5b:6e:cd:b0:42:dd:8c:cf:96:18:71:57:
a7:b1:37:d2:c9:07:61:13:ff:34:5a:98:dc:99:42:1f:9f:c6:
34:77:0e:f7:81:6b:4c:59:2e:45:52:71:09:bc:37:87:df:4d:
b3:70:b0:ba:48:09:6b:e0:1c:de:1b:e5:bc:30:0e:4e:1a:36:
52:f5:da:3a:a5:1f:d6:1c:dc:07:03:e0:33:98:0b:a4:96:a5:
61:4e:ab:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:41:51 2025 by rpki-client