Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json)
Hash identifier: 0RcLgl5sZyLlIKBNCan2TqNqbqIu2Tt2+VXrH2l1/yA=
Subject key identifier: F1:35:A5:4E:76:68:B1:2F:44:C8:3B:F2:0D:2C:58:64:CB:B1:F7:DC
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 0198782D0436DBF1A44415586800EC68AE39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
Manifest number: 161B
Signing time: Tue 05 Aug 2025 03:01:12 +0000
Manifest this update: Tue 05 Aug 2025 03:01:12 +0000
Manifest next update: Wed 06 Aug 2025 03:01:12 +0000
Files and hashes: 1: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: ZwJOtOSJV1LAVy8kdkaor6R7qDnSnjnRp2q6aoUj1dk=)
2: wzuPiDmhnP7Nv_Dp2QI7h5h3O-g.roa (hash: 1/0ldOLBPILSR69hThfIMtpZUKnlBM4vs1kLEHBC5Mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 00:46:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:78:2d:04:36:db:f1:a4:44:15:58:68:00:ec:68:ae:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Aug 5 03:01:12 2025 GMT
Not After : Aug 6 03:01:12 2025 GMT
Subject: CN=f135a54e7668b12f44c83bf20d2c5864cbb1f7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f6:1f:e6:7b:77:a7:f9:f4:e9:c3:4e:8a:b2:
79:40:15:f1:e6:19:99:59:a6:ea:3c:83:83:05:2d:
81:3a:d1:a2:d8:93:39:02:be:3e:de:ad:12:5d:66:
7f:79:da:26:b3:8e:e1:4e:27:26:a1:4f:0e:98:f1:
94:b3:77:c2:90:8a:4b:d4:3b:aa:aa:08:b9:a4:90:
30:6d:10:cc:6f:50:c3:e8:c4:91:11:51:70:17:64:
e3:ed:06:ad:9e:4c:ed:63:58:04:3f:e7:a0:a5:b5:
15:19:8d:65:f8:6f:4e:19:67:4f:f9:c1:03:a6:5a:
55:bd:fb:8c:45:61:c2:d7:39:57:4f:6e:fa:d9:70:
d7:fc:fc:d3:56:54:b0:1b:c8:4c:da:d5:18:83:c8:
79:10:f0:e0:42:a5:1a:c3:96:e6:02:92:6f:52:24:
eb:9a:46:9b:d6:b9:4c:02:eb:cc:0b:c2:e8:a3:50:
47:0d:b7:12:d6:d7:bd:e2:ea:5e:bb:c1:3d:64:aa:
01:59:0b:0e:db:5a:7a:00:b2:00:f0:fd:81:dc:70:
33:6a:28:64:21:33:eb:2d:04:1c:45:8c:3e:29:b8:
5f:18:79:96:c7:5d:a2:57:b7:99:8f:4f:14:a3:a8:
d5:bd:bc:87:f6:62:75:16:12:b2:25:f0:67:06:77:
6d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:35:A5:4E:76:68:B1:2F:44:C8:3B:F2:0D:2C:58:64:CB:B1:F7:DC
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:b1:94:ea:8a:0c:c4:43:18:28:16:e4:79:4e:d8:b0:1e:d7:
4a:81:95:6b:3b:cf:28:2e:f3:bf:e1:87:47:b4:58:2a:d0:c5:
e1:71:0f:21:24:91:21:57:ad:af:de:41:77:0e:14:a5:f3:ac:
c0:12:3f:c5:6e:f3:86:db:8b:d0:f7:ba:d2:fa:4d:02:b9:ff:
18:a3:ce:33:0c:b2:81:0b:e7:82:36:e4:de:d1:4e:bc:4b:0d:
71:e3:d1:11:76:0a:98:27:e7:8f:c5:e1:c7:0b:2d:05:c8:e8:
72:64:50:ba:97:5b:b1:38:51:44:c3:a5:1b:b4:40:ef:f6:76:
70:2a:1d:25:cc:f0:4c:00:78:83:06:6e:7a:d9:c0:3c:a0:bf:
95:ef:73:7e:10:7c:4a:da:64:2e:86:85:66:78:8f:3c:20:2e:
ef:22:ba:f6:8f:41:e3:4a:aa:b9:ba:4e:dd:5f:b7:dc:45:9b:
eb:db:de:30:10:7c:0d:ce:e1:9d:5c:9a:29:72:23:ca:4f:43:
1e:ff:45:11:80:03:cb:c1:52:73:05:ea:cf:e8:2b:df:31:96:
89:01:2a:2d:32:47:3b:39:07:e9:c6:88:bb:d8:2b:62:9b:24:
3e:73:1b:d2:65:18:d1:2c:d9:eb:ba:3d:cb:fa:0e:84:b0:70:
5e:af:ce:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 08:09:13 2025 by rpki-client