Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
File: KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft (raw, json)
Hash identifier: 8uE6BUiPqi/D+jY+O+IUWEK66OKggoPpDcfyc7rgFGU=
Subject key identifier: 61:31:D9:AD:05:9A:E3:D0:40:3E:3D:F9:F1:FC:95:CB:62:51:6C:D9
Authority key identifier: 2A:A3:C9:9F:F5:8B:8F:73:3E:F2:C6:2A:77:72:C0:C1:F2:9E:57:FC
Certificate issuer: /CN=2aa3c99ff58b8f733ef2c62a7772c0c1f29e57fc
Certificate serial: 01987374733A7C1885DFD487D2BC4805D88D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
Manifest number: 0F22
Signing time: Mon 04 Aug 2025 05:01:08 +0000
Manifest this update: Mon 04 Aug 2025 05:01:08 +0000
Manifest next update: Tue 05 Aug 2025 05:01:08 +0000
Files and hashes: 1: KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl (hash: RXoFF3OwB8+Vrn7SMVI//Pd5C+rqiHclkLbXeeQd1Y4=)
2: UZvnE-CaTB9qoHVdVXMgB-LiNEM.roa (hash: Ycg6B0Rffq0DfziTHdPyE76c/wB4R/dWXA7Fjbacvbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:73:3a:7c:18:85:df:d4:87:d2:bc:48:05:d8:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3c99ff58b8f733ef2c62a7772c0c1f29e57fc
Validity
Not Before: Aug 4 05:01:08 2025 GMT
Not After : Aug 5 05:01:08 2025 GMT
Subject: CN=6131d9ad059ae3d0403e3df9f1fc95cb62516cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cb:0b:2b:2f:56:1e:8a:a8:fb:3e:f0:6a:3d:
10:4d:62:8b:cd:7e:3c:7b:15:83:14:12:12:65:21:
bc:b7:dd:74:82:dd:c6:ac:4f:21:7e:c7:9d:03:7c:
56:7d:91:e0:6e:e1:79:da:28:2c:d3:04:2e:f9:6d:
4e:f2:ad:fc:4a:9f:70:63:fa:6a:5f:88:14:91:4e:
b8:d4:d3:b1:9c:28:74:fe:93:f5:c6:05:3e:d0:45:
84:d1:e1:a0:7c:94:ab:1f:4a:17:f6:39:95:04:3c:
a4:97:b3:0c:0d:c2:30:89:f0:83:7c:d8:2d:75:f6:
b8:d3:84:97:49:ba:60:86:83:38:2e:99:bc:1e:d6:
ed:e8:02:03:29:00:24:7c:45:3b:5e:fd:42:84:a8:
36:ee:bc:cf:ba:be:e9:66:1b:85:7f:da:3b:bc:b6:
2a:ec:0c:12:4e:5f:67:8d:d3:9d:3c:2c:df:79:16:
71:04:5c:11:00:aa:a4:27:38:b7:d3:ba:0d:ca:34:
31:e2:0d:71:b4:7c:fa:8e:5e:56:3c:54:c2:ba:b5:
6a:be:8a:9a:cd:de:03:51:77:db:50:41:20:a7:dd:
38:83:c1:b5:20:f5:7b:70:94:0d:4e:d5:52:4e:00:
4a:fe:cc:58:9b:93:a7:f2:66:c0:18:40:bb:5d:22:
79:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:31:D9:AD:05:9A:E3:D0:40:3E:3D:F9:F1:FC:95:CB:62:51:6C:D9
X509v3 Authority Key Identifier:
keyid:2A:A3:C9:9F:F5:8B:8F:73:3E:F2:C6:2A:77:72:C0:C1:F2:9E:57:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:87:a7:76:50:70:bc:c8:55:4f:4c:6d:ba:5d:9b:0f:db:19:
a4:e3:ea:fb:4e:fe:ce:f3:8d:de:9e:d6:d1:56:c5:8a:66:26:
c7:25:b8:fc:7f:7c:fb:1e:15:18:75:90:c6:24:9e:8b:f4:01:
e5:e4:d2:cb:24:35:e6:e0:8a:58:60:81:58:09:9e:cc:18:03:
00:d7:62:55:bf:db:cd:69:fb:9d:47:df:3d:f8:09:2d:94:85:
f8:46:ac:a7:9e:08:15:05:54:7e:b3:b7:19:10:d8:54:a4:41:
1b:e0:77:6e:68:ca:af:b4:fb:d9:84:1d:04:cf:c8:41:82:d9:
e4:d2:75:ef:44:24:a2:d3:04:33:69:39:19:7e:00:1d:96:66:
9e:f8:b3:8b:b1:64:93:85:99:6e:d0:8d:1c:0b:67:b4:18:d6:
4f:71:10:3b:c9:73:e4:ce:d9:00:f0:69:14:84:3f:28:38:24:
dd:23:3c:10:6b:a0:56:1f:34:90:5c:a5:40:1e:36:66:60:10:
59:8e:68:0b:96:01:67:3a:db:0e:57:07:55:20:0d:97:1f:d3:
cd:22:13:8c:fa:05:22:e8:f3:40:0c:43:43:d9:88:e6:03:9f:
1e:ca:8b:04:b5:11:15:25:30:c5:35:ba:b5:c7:df:e2:0c:99:
c6:d0:3b:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:09:39 2025 by rpki-client