Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
File: KgGcraFj42jMM2J2PyBrPerE0yA.mft (raw, json)
Hash identifier: nT9Poqq+Y73zWI8GKr7LmwwDBdkB8wxZbH0kwjeuhZI=
Subject key identifier: 4C:CC:1F:92:75:25:30:A6:8C:76:2D:04:26:03:39:A9:C2:A1:4A:C5
Authority key identifier: 2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
Certificate issuer: /CN=2a019cada163e368cc3362763f206b3deac4d320
Certificate serial: 01987ABFA9E3EF3D76E6C4941F95BD860C08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
Manifest number: 0B89
Signing time: Tue 05 Aug 2025 15:00:37 +0000
Manifest this update: Tue 05 Aug 2025 15:00:37 +0000
Manifest next update: Wed 06 Aug 2025 15:00:37 +0000
Files and hashes: 1: KgGcraFj42jMM2J2PyBrPerE0yA.crl (hash: l78AoOPktHmKangLwRLnh6QM6nNa5T07ZPdnj3XAiV0=)
2: aZtA3Tb82BUczOl9SsTYverE7lI.roa (hash: LK8Z2BqrNCcDSNuABGRySwkLhGqKgLJf/sHl1VyEOIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 15:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7a:bf:a9:e3:ef:3d:76:e6:c4:94:1f:95:bd:86:0c:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a019cada163e368cc3362763f206b3deac4d320
Validity
Not Before: Aug 5 15:00:37 2025 GMT
Not After : Aug 6 15:00:37 2025 GMT
Subject: CN=4ccc1f92752530a68c762d04260339a9c2a14ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c0:ec:ad:db:6e:36:ce:b6:47:74:28:e5:1b:
49:73:6c:fd:b3:70:a8:1a:a3:38:4e:4b:41:34:3e:
4a:0d:49:82:ae:ce:be:bb:01:88:4f:93:cc:44:29:
47:03:58:aa:9c:19:1a:8e:3e:6b:17:ea:51:04:e8:
b5:f1:56:8a:37:e3:89:0d:06:70:38:d5:b4:32:0d:
db:0f:ba:dc:fc:43:75:8b:f1:78:13:c0:09:a3:84:
f2:bd:33:6d:78:28:97:d4:b2:45:4e:2c:0d:0a:73:
87:90:f0:bb:e6:71:6c:e2:05:bf:0e:11:13:41:36:
6a:ad:3a:bc:41:a3:32:ff:60:ba:79:31:82:98:40:
c7:eb:a1:75:83:13:e9:de:15:59:41:9a:2a:b7:aa:
a8:e5:51:bf:88:e7:ce:e5:27:8c:3b:44:de:2e:52:
51:51:81:28:5a:0f:5d:6c:82:5a:02:75:5f:9c:31:
71:30:fa:04:57:74:4f:a8:ee:4d:23:87:db:46:48:
28:58:97:bb:8b:eb:60:0e:65:dc:4e:54:30:71:2a:
34:14:64:76:a7:ff:c5:2e:92:1b:02:7a:be:01:6f:
ab:72:b5:5c:ca:fd:0d:33:1c:61:25:7f:57:05:c7:
d8:11:8f:e2:9c:f2:cf:ea:4e:3d:c7:f6:2d:c8:f8:
26:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:CC:1F:92:75:25:30:A6:8C:76:2D:04:26:03:39:A9:C2:A1:4A:C5
X509v3 Authority Key Identifier:
keyid:2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ec:e7:c9:f5:9f:8b:a1:ce:d8:0c:6b:a3:dd:c2:a3:8a:f6:
4f:bb:45:c8:65:14:0b:68:c5:24:58:cf:69:a4:0e:43:de:81:
12:4d:09:48:2d:20:37:58:81:11:83:f7:14:91:4c:2b:f8:2b:
63:f2:64:38:c4:70:57:04:29:ca:91:49:76:60:09:bc:06:fd:
a4:3e:b4:56:bd:42:1d:0e:58:3e:f3:20:78:6f:cc:45:e8:9f:
f3:53:d3:52:f2:5c:13:af:38:cc:1d:a2:fd:18:a0:9e:58:96:
52:1b:72:fc:6a:12:aa:e6:20:0b:89:78:90:88:ec:55:6e:12:
ee:19:fb:f3:a2:92:ad:59:44:ee:ca:52:fc:a9:14:cf:0d:39:
e0:aa:b7:d7:41:7b:67:52:34:dc:c5:c6:06:ef:f5:fd:ee:70:
be:44:e3:8e:f0:ec:3d:30:34:23:a2:ce:37:73:e5:a6:49:d9:
b7:9a:25:1a:38:5d:19:4f:12:83:06:c8:b7:28:a5:a9:27:c6:
cc:ab:94:4c:6b:26:87:5e:1a:4b:ef:f8:1a:b6:20:54:b5:2c:
a8:a0:03:8c:1e:d4:e0:fe:bd:c2:6a:e5:f7:29:a7:93:09:12:
60:db:7e:49:82:03:d9:b0:ae:20:6a:1c:8d:1c:35:1b:f0:35:
77:04:2f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:46:08 2025 by rpki-client