Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
File: KiZGBSRa8gGcKTw3KPal4lXYnyU.mft (raw, json)
Hash identifier: cTp9cULtXGXu8qONWOyv7uikFOEtrl2+vA7gOIbFYS8=
Subject key identifier: CF:B5:D1:52:CF:E6:F7:B6:EB:55:52:D2:E5:AA:2B:22:53:87:40:1E
Authority key identifier: 2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
Certificate issuer: /CN=2a264605245af2019c293c3728f6a5e255d89f25
Certificate serial: 019876750E37C505CEECF1DDC21461D5D5A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
Manifest number: 1618
Signing time: Mon 04 Aug 2025 19:00:39 +0000
Manifest this update: Mon 04 Aug 2025 19:00:39 +0000
Manifest next update: Tue 05 Aug 2025 19:00:39 +0000
Files and hashes: 1: 3KSN_k3KfyRIpkOpKsbbz9Bqq5E.roa (hash: iHgOduhUsida+9pHg8iFsStpH/s/1dREHiJkoJW0aww=)
2: KiZGBSRa8gGcKTw3KPal4lXYnyU.crl (hash: PKw5Q4lxlb2ZaiTLj0YBy2H1FV9UGZwD/fwqtgIn/9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:76:75:0e:37:c5:05:ce:ec:f1:dd:c2:14:61:d5:d5:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a264605245af2019c293c3728f6a5e255d89f25
Validity
Not Before: Aug 4 19:00:39 2025 GMT
Not After : Aug 5 19:00:39 2025 GMT
Subject: CN=cfb5d152cfe6f7b6eb5552d2e5aa2b225387401e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:12:ad:9a:ab:63:83:52:db:6b:aa:35:07:47:
30:4c:ff:63:cb:2e:5b:05:b0:91:aa:e7:8c:d5:b2:
b5:82:fe:91:d2:19:a1:c2:2e:cc:40:39:4f:3c:ca:
f8:16:cf:3c:c2:85:10:31:25:0a:cc:3e:ac:c4:e9:
5a:50:e0:e8:6c:80:26:83:90:b5:82:04:4f:40:e0:
20:4d:8e:35:7f:0a:39:61:36:a5:db:82:7e:c0:46:
63:ff:8b:4a:6a:80:c1:00:f9:3a:0f:73:de:ad:d0:
ae:29:3c:ae:6d:b5:bc:fa:35:bb:1a:fd:ba:36:50:
f6:10:4b:bd:e4:62:24:aa:06:38:a5:3a:ec:25:57:
ec:83:54:8a:fe:f6:36:94:9a:14:53:96:ae:6b:98:
db:ee:95:90:aa:53:ec:d4:5a:6a:f1:18:2b:35:5c:
f8:f8:c2:aa:7c:47:6f:9e:92:2a:29:83:69:ec:cc:
3b:83:1b:3c:72:7f:ba:59:4f:ca:c2:30:a3:c4:24:
32:31:8c:59:8b:d9:c8:15:7c:4c:8b:eb:56:e1:b9:
40:2c:7e:9f:51:40:99:a0:61:8a:78:c1:6a:61:de:
e0:9f:74:0d:c2:8d:ad:1a:ef:7a:d3:77:44:1b:66:
6f:83:a3:14:4c:e7:16:7c:db:53:04:f5:46:cb:d8:
d5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B5:D1:52:CF:E6:F7:B6:EB:55:52:D2:E5:AA:2B:22:53:87:40:1E
X509v3 Authority Key Identifier:
keyid:2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:0a:8b:7f:68:91:95:4f:15:f0:79:aa:65:75:63:87:a7:7e:
2a:51:52:1b:95:b2:31:db:4e:1e:7a:4f:50:87:72:13:12:18:
72:42:3d:03:93:d3:80:99:11:a9:f7:84:f8:fe:a5:6d:b1:cf:
5f:df:57:42:4b:46:b7:d4:53:97:30:e5:7e:3e:80:1a:4b:eb:
34:73:f1:a3:f7:e4:89:70:11:8e:9c:91:d9:57:5a:c3:69:ff:
9d:2d:1b:87:ae:a1:b9:4e:85:c5:64:8f:36:04:68:de:d9:54:
fb:b8:b8:93:5b:5d:5b:ec:5b:0f:35:4f:f1:28:c5:cf:35:94:
e9:51:e6:bd:d6:24:41:af:a8:39:62:57:6a:e2:1b:5b:03:81:
1b:57:84:1b:0b:fb:21:c0:d0:a9:18:32:6b:38:16:92:3d:3e:
9b:ad:97:c1:27:d2:6d:28:80:20:e0:45:c6:58:98:1f:c2:bc:
d0:15:89:d6:a2:7e:e2:e9:4a:a6:b3:a1:65:34:49:c8:6c:65:
38:f8:a6:3e:9e:3e:05:41:74:5b:16:a8:1b:94:41:9c:42:f2:
50:21:42:d9:64:ca:46:a4:f7:75:a1:73:0a:e8:44:37:51:22:
86:04:b2:78:8a:40:ef:5f:fe:a9:ff:db:64:70:75:a2:8f:36:
ea:a8:b4:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 22:20:09 2025 by rpki-client