Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
File: KeoL3n9pK8X9wLFoumFKAnLy5k0.mft (raw, json)
Hash identifier: 8xXqOGTTD8Lmds5yjq3fYEG61DXg5UAPCOWZDSVU/vw=
Subject key identifier: 06:3D:06:AD:2F:42:85:34:C1:B0:9E:9F:72:AD:0D:31:8E:EC:6C:A9
Authority key identifier: 29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
Certificate issuer: /CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Certificate serial: 019873E3A8BA777DC000C9A7162B7354F92A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
Manifest number: 0C82
Signing time: Mon 04 Aug 2025 07:02:36 +0000
Manifest this update: Mon 04 Aug 2025 07:02:36 +0000
Manifest next update: Tue 05 Aug 2025 07:02:36 +0000
Files and hashes: 1: 9cEvXYVcBJeRVXoK10hhOCyNhJY.roa (hash: ihTe2JjgXGvlLA7K+HxYQQd7iWcLoXsDNyag9kYHBGk=)
2: KeoL3n9pK8X9wLFoumFKAnLy5k0.crl (hash: sqBoTxuiCRn5xbnUhQQEFmAvbnWccfu2OzQxkRyTWi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:a8:ba:77:7d:c0:00:c9:a7:16:2b:73:54:f9:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Validity
Not Before: Aug 4 07:02:36 2025 GMT
Not After : Aug 5 07:02:36 2025 GMT
Subject: CN=063d06ad2f428534c1b09e9f72ad0d318eec6ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3e:2d:47:d6:05:07:8b:97:33:99:68:df:fa:
4b:de:b6:9c:c0:10:73:b4:e6:30:1d:f2:01:cb:5c:
29:81:aa:5b:70:e0:fe:b5:25:c6:78:85:af:ea:00:
38:e8:86:6a:f1:42:f7:a6:7c:94:57:4a:1e:88:50:
44:86:20:a4:81:a0:f6:54:a4:8f:da:34:96:3e:23:
96:6f:96:0f:21:08:37:0f:8b:9c:e7:a3:8b:14:05:
ed:7c:ef:cf:ac:55:3f:3e:62:41:9e:1e:de:ec:cf:
ae:30:8d:40:56:08:c0:43:f0:51:c1:60:2e:be:7e:
97:68:1b:97:7d:10:e8:67:45:1b:dc:dc:fb:d6:01:
ed:55:09:28:1d:aa:3f:ef:dc:0d:25:ba:ab:58:db:
e8:18:9b:4d:03:2b:43:fb:70:76:9a:d6:46:dc:31:
06:ba:d7:74:5d:66:f9:0c:1e:b8:57:b0:d9:ff:aa:
49:3d:32:9b:9c:f5:ad:cd:53:19:53:03:21:b7:bf:
ff:f8:09:39:03:36:5c:87:91:3e:34:f2:51:e2:d9:
18:2a:97:24:63:bf:e7:8a:80:38:ad:d1:3d:79:63:
df:3f:ef:8a:be:24:c6:69:9e:7a:21:37:a0:ec:53:
0c:ed:8f:6e:7f:00:6e:a4:01:d3:ba:53:20:40:cd:
1e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3D:06:AD:2F:42:85:34:C1:B0:9E:9F:72:AD:0D:31:8E:EC:6C:A9
X509v3 Authority Key Identifier:
keyid:29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:96:c3:0d:65:8b:67:6a:92:28:1f:b9:33:10:da:52:ff:b3:
f5:f4:3f:19:dd:21:a0:5b:7e:c3:97:fd:43:cd:f0:e1:12:85:
4c:59:07:41:d5:5a:30:bd:9a:4f:c9:d7:d3:46:1f:78:2a:ea:
fb:d4:72:dd:2f:20:e9:31:40:95:3e:05:2f:d4:3d:5f:d1:a6:
de:e7:ce:45:59:c8:a3:a8:0a:1e:5e:b4:4e:23:fd:c8:5f:24:
1f:06:6c:db:90:1e:5f:b5:58:41:7f:ff:4c:0c:3e:94:d1:dd:
28:0b:ab:e6:3b:61:60:2d:4f:d9:00:b4:7d:62:96:e7:63:5e:
e9:65:e3:70:dc:49:8c:7f:2c:0c:9b:71:64:9e:f2:53:96:a0:
e0:cb:f2:59:f5:e6:fe:85:21:0d:b9:e1:bc:84:0c:c8:bb:3c:
cd:fd:d9:5d:48:d8:80:c2:b5:e7:d3:34:04:e8:52:24:20:72:
c2:90:61:d3:48:21:d5:07:8a:4b:af:d9:6e:2f:92:f9:f6:83:
f8:66:d3:50:30:3f:d6:70:10:dd:80:7c:9f:5f:f7:a2:3e:33:
51:c1:9b:7f:97:d2:2d:7d:dc:0e:ea:86:6f:b9:c5:52:d7:b1:
08:ce:f1:44:37:fd:07:79:a4:c9:80:cd:aa:ef:84:87:c7:a2:
ed:c7:0b:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:51:16 2025 by rpki-client