Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: cirrZrzv3lKuAYg/KzGLLaqd0wL6LkyB8RyiFiQISAE=
Subject key identifier: D1:45:69:A5:F1:FD:F2:A0:51:A9:6E:DA:5D:74:BD:AA:EA:FB:F1:87
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 019894B66B0C7D26EB00936867C480E56B48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 1629
Signing time: Sun 10 Aug 2025 16:00:39 +0000
Manifest this update: Sun 10 Aug 2025 16:00:39 +0000
Manifest next update: Mon 11 Aug 2025 16:00:39 +0000
Files and hashes: 1: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: 72TjqWx9eqB8cGINI/7My3Sp4me9LoOtfGRkh57doVk=)
2: r4bjJ2cCOInhIlG1f9hIdTm3g6M.roa (hash: aZToxg96BEY8Qvj4uVJxCXKyOgQmRt2zg6OKjNY/eQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 16:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:94:b6:6b:0c:7d:26:eb:00:93:68:67:c4:80:e5:6b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Aug 10 16:00:39 2025 GMT
Not After : Aug 11 16:00:39 2025 GMT
Subject: CN=d14569a5f1fdf2a051a96eda5d74bdaaeafbf187
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7d:dd:fb:f6:92:09:da:25:ba:2f:f0:e9:ad:
75:85:20:fb:e7:34:d0:92:24:56:49:7c:87:ad:47:
88:ea:be:cf:49:86:e2:fb:59:5e:f6:3e:18:f1:99:
e7:a9:42:08:32:b7:3a:5a:ba:94:d8:1a:41:5a:bb:
fe:e0:73:e1:f0:d6:0c:ae:24:b0:6f:0a:af:50:51:
6f:6c:ec:60:34:a9:50:0e:60:59:6c:36:76:e5:f2:
c7:02:8e:3b:a8:a4:97:c9:29:c6:8e:5a:13:0b:0b:
90:03:34:4c:01:91:97:ab:19:34:bf:07:15:b8:55:
09:31:b3:8b:6d:2e:d3:e1:19:3e:52:76:d8:b1:71:
e5:23:75:79:0d:f5:5c:d7:97:3b:41:fd:6f:bf:46:
b5:4e:6c:6c:c4:4a:60:25:be:34:04:1b:53:cc:04:
f4:cf:ed:ce:cd:32:ed:18:89:c2:ea:36:85:4e:7c:
65:e3:47:10:14:b1:8b:4b:a4:98:4b:b2:51:26:f7:
d7:7f:3f:be:d0:e6:78:17:01:fc:6e:87:7d:37:85:
0b:83:77:e1:14:7e:6c:67:ce:3e:de:bb:e4:dc:6d:
03:55:9e:3f:2c:d5:11:fd:88:1f:e7:ca:48:a2:e0:
5f:4c:6c:18:84:fa:d2:92:e8:eb:3d:78:c1:9a:86:
37:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:45:69:A5:F1:FD:F2:A0:51:A9:6E:DA:5D:74:BD:AA:EA:FB:F1:87
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:78:50:b7:ff:76:40:65:91:d9:6c:bc:ef:d4:c7:15:63:7c:
53:d5:a2:0e:22:46:8e:82:ea:b7:0e:c3:84:40:f9:d0:6b:30:
86:1e:f4:1a:b8:9d:d7:50:8a:fe:5b:0b:c1:35:0d:22:f8:73:
f6:e4:5d:60:5c:29:93:9b:ac:61:ff:d7:a0:b1:6c:ed:98:db:
ee:68:48:c7:31:9e:b3:31:18:af:5d:5c:61:a9:af:62:d5:65:
f4:a7:88:09:2c:7f:4a:81:59:56:1a:b0:a4:a0:bc:a8:b4:9d:
a0:03:4b:21:ea:16:50:87:84:51:04:0d:8a:8c:78:98:26:f6:
e0:3e:14:5a:68:ef:da:b3:a5:9c:68:79:ca:1e:ac:25:9c:04:
22:e1:0d:8a:2f:cb:b5:b9:7f:da:56:b0:23:dd:6a:8b:aa:07:
b7:e4:1d:10:81:24:a2:ff:e4:93:d1:8f:61:0b:9a:4a:68:af:
92:6c:6c:70:8b:a1:a6:09:8b:71:ba:0d:75:55:13:b2:5d:7c:
18:86:9a:75:f4:1d:97:c3:cb:ea:55:82:46:94:91:dd:89:44:
c1:0f:3b:97:a0:6e:07:7b:2a:8e:01:06:47:99:3a:82:37:41:
e0:78:fe:fa:09:fd:8d:7a:20:3b:63:63:2d:3c:f0:e1:bf:f6:
2f:f1:38:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:13:28 2025 by rpki-client