Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json)
Hash identifier: qBrjBawZupKxLuwwaw1xMOmpnPqf5sAotQ9ifLOfS54=
Subject key identifier: F7:96:D0:F9:A3:37:AC:7B:2A:05:B6:CE:70:A4:5F:3A:F8:A5:F0:AC
Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3
Certificate serial: 01988B7CBDD357D06E1C854B9795D1E7DEC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
Manifest number: 0EC0
Signing time: Fri 08 Aug 2025 21:01:04 +0000
Manifest this update: Fri 08 Aug 2025 21:01:04 +0000
Manifest next update: Sat 09 Aug 2025 21:01:04 +0000
Files and hashes: 1: 9Bw4s7L1PZyJ0cmK8dHggvZkyc8.roa (hash: k8G5zSf+pp8Di/1i1Rk8bBBXkqYoG95ba1/+ZDXAe1E=)
2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: GILPC72tsHoq8R8ZQXrV6EhVBs0jer+LQFC5+dDsFbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:7c:bd:d3:57:d0:6e:1c:85:4b:97:95:d1:e7:de:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3
Validity
Not Before: Aug 8 21:01:04 2025 GMT
Not After : Aug 9 21:01:04 2025 GMT
Subject: CN=f796d0f9a337ac7b2a05b6ce70a45f3af8a5f0ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0d:0b:df:83:f2:e1:54:07:9c:88:f3:70:44:
65:9d:8f:ce:11:b6:74:d8:41:e8:e3:85:b9:07:0d:
7d:57:37:c4:0c:fc:06:e4:4c:ff:22:d0:49:ac:c2:
b6:62:f2:fa:de:79:0f:f4:94:c2:c7:9a:9d:c3:17:
a2:00:3b:0b:f8:ce:3e:1a:e0:05:07:7f:8d:0e:a4:
8c:7c:49:32:f3:d6:7f:13:66:f5:2e:b5:1a:d5:6a:
3f:b2:5f:56:9e:4f:c3:15:78:7c:b6:a1:ce:02:ce:
46:4e:b3:90:89:bc:ac:ff:54:35:35:77:be:20:51:
5e:3e:72:1a:66:84:0e:1b:04:2f:f2:b3:cc:fe:f3:
6a:47:3c:ce:b7:f4:5b:03:ef:e2:b1:ab:26:93:f3:
d8:a0:d2:11:19:f1:5b:0a:d0:bc:f4:21:cb:0f:9a:
a3:8b:4a:ea:f8:4d:02:cc:65:3e:fd:59:7a:d6:59:
c2:52:10:45:1a:ad:cd:9f:f2:bb:ef:2a:b7:e7:75:
d5:2c:f1:98:bf:19:c3:6d:b6:1a:dc:c8:c5:fb:f3:
2c:ac:b4:bb:cf:03:41:d4:80:4e:66:93:bf:14:b3:
d0:02:65:96:f9:83:38:46:a1:b5:88:e4:c2:89:cf:
75:b5:87:fb:36:03:85:b1:2a:cc:dd:c6:1e:5d:f3:
8f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:96:D0:F9:A3:37:AC:7B:2A:05:B6:CE:70:A4:5F:3A:F8:A5:F0:AC
X509v3 Authority Key Identifier:
keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:c9:32:23:4c:8f:8c:be:d0:c4:a8:73:7f:96:84:1c:1c:72:
b5:f4:50:a0:bb:3c:ab:d4:62:10:1f:af:65:b1:bf:35:15:2a:
ea:5d:5b:9f:b9:70:7e:d2:ab:a6:db:06:32:f1:b0:06:ce:ff:
1a:51:bd:f1:27:84:39:f5:0e:6e:1d:e0:4b:a5:a9:56:27:20:
38:fa:8b:59:7e:86:2e:88:f8:76:82:0b:bc:cf:ca:a6:b0:c5:
be:d9:3b:ea:5a:bd:49:94:8b:bd:c6:eb:f0:5a:c1:24:90:57:
c8:8f:84:29:74:d7:c5:dd:0d:69:60:c8:20:67:02:83:b1:ac:
aa:d7:b7:af:6a:98:89:ed:01:ac:4b:f2:bc:52:2b:44:53:db:
bf:5b:01:21:3c:b5:82:95:4c:a1:75:5a:87:ba:8c:5c:14:4c:
3d:f9:5b:f1:63:4f:c7:6e:5a:4b:4c:20:ed:9c:ea:51:03:86:
bd:a3:9f:8c:28:39:2e:a5:b3:b1:fb:a4:c6:64:cb:8b:d0:ef:
af:35:89:57:d5:a4:f5:2e:e1:dd:88:27:bc:a0:f8:5d:96:1f:
d0:b4:b5:1e:94:4f:47:78:63:2c:bc:a3:b6:e1:04:4b:1f:fc:
f8:ea:c1:0b:bf:8a:70:64:ee:4b:95:60:5b:91:9f:dc:f7:b2:
c7:4a:ee:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:37 2025 by rpki-client