Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: j9c13nZ35tXI2zDuZgcODhhXHIGFasFo3IxEE7HN5z4=
Subject key identifier: 6B:5D:9F:9B:3E:06:34:D5:2E:5A:B9:1B:7F:AF:90:F8:21:AA:91:40
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 01988F905127D2FBEAE3FBC54EA1AD81AEDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 0401
Signing time: Sat 09 Aug 2025 16:00:56 +0000
Manifest this update: Sat 09 Aug 2025 16:00:56 +0000
Manifest next update: Sun 10 Aug 2025 16:00:56 +0000
Files and hashes: 1: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: Sp4aJufsmOmV1qTK3A0gP3zmu+GNgq/LBh4CEjMIRv4=)
2: o05sdzj6m4fQO6_WrgnQWVEGn8s.roa (hash: 4PZyqJElCUrsee8Vele9Jxa/SXWOHXm1LP7RgEQB9SY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 14:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8f:90:51:27:d2:fb:ea:e3:fb:c5:4e:a1:ad:81:ae:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: Aug 9 16:00:56 2025 GMT
Not After : Aug 10 16:00:56 2025 GMT
Subject: CN=6b5d9f9b3e0634d52e5ab91b7faf90f821aa9140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8a:70:4e:7b:2f:a1:71:91:8f:ce:da:f2:33:
64:30:59:be:cf:c1:7a:a4:e0:49:85:0e:33:9e:c1:
3c:83:cc:39:19:af:0b:c2:d1:f7:b7:3c:96:38:62:
aa:89:2f:77:43:da:00:87:50:db:85:ee:d1:d2:30:
25:f3:d4:65:e5:ec:33:d0:32:cf:f9:78:03:4c:c7:
71:95:20:99:9f:85:6d:dd:f9:1c:1c:d8:a3:ac:5e:
d0:35:da:6d:6e:25:4d:ef:af:49:d6:4d:5b:f2:e3:
1b:b7:f2:0a:58:84:43:21:5f:c2:34:f2:c1:67:65:
a7:0d:d6:ed:79:48:77:64:6e:3a:ab:eb:a5:25:d2:
d9:d0:7e:08:de:5d:f0:49:6f:f7:bb:30:3b:83:a0:
6e:37:41:78:20:a2:85:01:3b:f6:b8:5b:e1:13:66:
30:7b:9b:79:61:62:3c:50:a9:76:f6:19:5d:21:60:
ed:bb:5d:3c:ae:6c:73:0d:24:8d:5a:95:0d:1d:27:
ac:f4:03:11:7f:b2:b1:5d:56:ca:66:90:aa:ed:51:
45:8b:57:53:82:ff:54:a2:27:eb:ae:04:ba:02:d3:
d4:14:ed:9d:33:4d:2d:52:9e:6e:33:44:79:81:65:
7e:de:a8:1a:4c:a8:5f:08:78:f1:a8:b0:52:e7:b6:
8b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:5D:9F:9B:3E:06:34:D5:2E:5A:B9:1B:7F:AF:90:F8:21:AA:91:40
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:d4:43:37:fb:1b:32:94:b6:30:5d:3f:90:8d:71:3a:86:ef:
14:cd:f0:ba:04:14:c1:42:14:33:1f:ba:56:12:e4:a3:3b:8f:
26:8f:3f:1a:d5:e8:91:eb:2f:a7:54:68:1e:27:fe:ac:6a:04:
dd:37:f6:48:0a:ff:cf:76:23:0a:06:af:98:46:8d:33:68:00:
53:81:a9:ab:14:0b:0e:55:f7:53:77:3d:83:d8:8e:4f:22:06:
e5:49:62:e5:34:f2:67:7e:da:f2:c4:01:d3:5c:ae:35:88:ce:
93:73:a3:77:c4:41:26:94:ef:88:4e:27:71:39:71:8e:f9:53:
f2:e5:03:ae:3c:88:6c:02:9b:6b:ae:5a:7d:83:93:81:21:7c:
75:27:a2:30:93:b4:02:3f:81:e3:e9:4c:f2:30:55:07:1b:08:
17:b9:84:bc:aa:c6:13:d5:2b:48:39:2a:eb:8a:01:fb:07:e7:
6c:72:74:0a:d9:d7:d6:7b:22:4b:2d:e6:5e:84:00:29:d7:23:
6c:29:2c:de:88:8c:2d:5a:60:9d:28:0d:7c:f0:d3:16:74:73:
2c:00:f7:61:ee:ea:10:0e:87:b3:49:ce:45:5f:77:ac:78:74:
1f:0a:43:9b:a3:39:d5:3d:2c:96:20:e0:dd:58:79:fc:0c:20:
18:b7:42:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 23:21:08 2025 by rpki-client