Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
File: Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft (raw, json)
Hash identifier: UNBcSmn09HBCvOrxddLIwjPjzHXKLsDNhmrhAO34Bek=
Subject key identifier: 18:7A:D3:F6:7F:18:EA:98:BC:F0:88:DA:FD:F6:CF:B7:05:47:6A:C6
Authority key identifier: 2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
Certificate issuer: /CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Certificate serial: 019872CF2F92AB2A8B0AE9F7566C39D730E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
Manifest number: 0F44
Signing time: Mon 04 Aug 2025 02:00:37 +0000
Manifest this update: Mon 04 Aug 2025 02:00:37 +0000
Manifest next update: Tue 05 Aug 2025 02:00:37 +0000
Files and hashes: 1: Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl (hash: q0lCE++N1n3uIUh8Sw/pc6iuKhVM9jOqwOnqsfC+p/g=)
2: so_dnSs4BnrVZYioQ2oy6VOroHk.roa (hash: EXJQLyqb51APlznWLoV0tXq0fpUDEu2dhVkLYk30HsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:2f:92:ab:2a:8b:0a:e9:f7:56:6c:39:d7:30:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Validity
Not Before: Aug 4 02:00:37 2025 GMT
Not After : Aug 5 02:00:37 2025 GMT
Subject: CN=187ad3f67f18ea98bcf088dafdf6cfb705476ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:60:b7:56:9c:4a:c8:fc:fc:82:b0:a5:ef:61:
3c:ae:5f:a0:82:75:5c:9e:bb:fe:51:73:0b:fa:71:
69:d0:28:23:4e:0b:26:8c:c8:1c:ba:31:98:a8:d2:
bb:a3:52:4c:97:28:17:a2:f8:46:13:c2:5f:56:23:
bb:4a:66:5c:b2:81:df:99:19:cf:49:98:30:1b:62:
3e:e2:cc:73:81:29:01:31:6c:ce:78:c1:31:9f:54:
f5:f2:65:a8:72:62:32:76:33:77:65:45:5c:c3:94:
31:83:55:76:a6:78:de:5f:58:d5:65:ba:02:65:ab:
0d:3b:f7:0a:b8:50:1b:a5:9b:9d:b2:63:3d:9a:a4:
0b:ba:d8:ca:42:cc:a9:7b:c2:94:7c:b3:30:ab:e2:
8b:ab:ee:f0:b4:b5:2d:fb:fe:f2:9f:7b:f3:d8:fc:
6f:f2:f5:51:41:3e:cc:07:d2:cc:fd:55:17:6f:cd:
c1:c7:83:b9:2d:c4:b2:44:25:91:b3:ab:4d:19:de:
9d:97:f9:27:a8:93:12:8c:04:f1:69:ee:97:03:44:
4a:61:47:87:35:1a:5d:76:a8:e2:69:fc:ff:c7:f4:
0d:72:6e:ad:55:e2:82:12:1c:29:5a:2e:47:35:76:
96:b4:4c:64:eb:96:ee:05:69:82:dd:14:f7:98:cb:
7a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7A:D3:F6:7F:18:EA:98:BC:F0:88:DA:FD:F6:CF:B7:05:47:6A:C6
X509v3 Authority Key Identifier:
keyid:2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a9:67:5a:e7:fb:c9:37:f4:5a:35:15:a1:51:21:9e:ab:5d:
36:91:67:ac:1d:8c:ae:60:d6:f7:e2:84:34:8e:d9:e2:87:cf:
25:28:61:88:99:82:2f:64:54:f0:01:ae:fe:b3:7e:57:40:5c:
6e:fb:e8:c7:c7:70:45:54:03:26:ed:bd:03:ec:da:79:74:96:
14:a0:76:8d:57:d1:86:e5:0f:72:e4:52:fd:92:87:20:e9:25:
7f:76:08:c5:d3:04:89:fc:6d:ae:61:3f:ec:a2:14:92:82:78:
e8:cd:e2:11:2d:cb:d7:98:ac:81:6c:51:90:7d:75:38:0c:33:
16:1a:ed:85:dc:66:aa:f2:9f:82:3c:23:1f:c7:15:ee:5f:c3:
99:99:a7:19:76:22:dc:0f:bf:38:8f:62:1a:9e:53:0f:8d:55:
0d:25:b9:e4:d7:6f:c8:38:7e:02:bc:21:ad:f0:db:9e:7d:6b:
33:1d:fb:e0:c1:cf:88:1c:8a:7f:29:dc:30:25:9a:2b:a8:21:
1d:b7:d5:ed:dc:a4:fd:8b:b3:6e:b6:a9:27:de:3b:26:0d:e8:
d2:e2:5a:fb:6c:1b:ea:0f:b8:6d:42:ae:78:03:ab:28:fe:08:
d3:91:34:d9:73:8a:d6:d2:c5:44:ee:04:20:17:e4:a4:3e:84:
66:c2:a0:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:20:42 2025 by rpki-client