Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft
File: kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft (raw, json)
Hash identifier: rOyFiga31RyzIuqLoOLMaPbss/DjDvbNbhQzeMwUty8=
Subject key identifier: BF:4B:07:C7:E2:60:67:B9:82:FB:17:D4:99:65:E5:E2:79:4A:C1:AC
Authority key identifier: 92:F8:56:22:E2:2F:C9:6C:EA:CF:73:11:4D:89:0F:4F:3A:A7:D4:95
Certificate issuer: /CN=92f85622e22fc96ceacf73114d890f4f3aa7d495
Certificate serial: 019854FB9E7BAD6B16240D56146C714225C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvhWIuIvyWzqz3MRTYkPTzqn1JU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft
Manifest number: 0D22
Signing time: Tue 29 Jul 2025 07:00:32 +0000
Manifest this update: Tue 29 Jul 2025 07:00:32 +0000
Manifest next update: Wed 30 Jul 2025 07:00:32 +0000
Files and hashes: 1: kvhWIuIvyWzqz3MRTYkPTzqn1JU.crl (hash: VWH3cTuyAg59YPCKIjtiKbYSbWs1vwC9aG35G3x1zAk=)
2: o0NNJAdQ09Zlx7io8L7w4JsxeRk.roa (hash: GHDYyjn7cWOGvu2PuaUkyCHLa21ud2IleT+Ydwgziyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kvhWIuIvyWzqz3MRTYkPTzqn1JU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 07:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:54:fb:9e:7b:ad:6b:16:24:0d:56:14:6c:71:42:25:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f85622e22fc96ceacf73114d890f4f3aa7d495
Validity
Not Before: Jul 29 07:00:32 2025 GMT
Not After : Jul 30 07:00:32 2025 GMT
Subject: CN=bf4b07c7e26067b982fb17d49965e5e2794ac1ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b0:c0:96:4e:a0:3c:5d:cf:37:df:f3:f5:67:
28:41:1c:c0:85:41:63:45:d4:97:f0:ac:6d:48:52:
53:44:7b:93:c5:cc:4e:e9:c9:2b:aa:d1:85:df:48:
3d:5d:bb:ca:2c:7d:16:2e:df:e5:19:91:b8:7f:b8:
51:b0:30:da:45:22:44:23:f6:35:c5:ea:8b:7b:1b:
34:e5:cf:b5:92:0c:39:9e:c9:70:a1:fe:0a:c4:7d:
66:c0:8d:9d:81:a7:76:75:52:ee:c0:17:fd:5a:28:
4f:e8:b0:12:14:46:75:b8:74:02:df:a4:70:20:75:
b2:db:37:1a:bd:57:05:34:fa:53:7e:fe:59:cc:91:
83:83:60:f6:5a:50:6e:c9:0b:34:bc:4c:2a:d4:91:
43:7c:ca:77:16:4b:6c:22:49:c5:9d:52:86:89:4f:
48:73:5f:e9:eb:00:76:9d:29:88:3f:09:70:58:8e:
d5:e4:de:11:bb:96:3f:22:1c:44:7c:c7:50:1d:78:
94:f6:7a:6d:1a:d8:88:80:c5:dd:46:59:6c:b1:58:
26:f2:55:30:29:eb:3b:f0:b5:54:97:45:6e:45:ac:
a1:3b:1b:1e:98:07:ea:6f:41:b8:0b:b4:b4:e9:a5:
99:3d:2d:35:4a:9b:63:b1:f9:c7:cf:1a:bb:a1:bd:
f4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4B:07:C7:E2:60:67:B9:82:FB:17:D4:99:65:E5:E2:79:4A:C1:AC
X509v3 Authority Key Identifier:
keyid:92:F8:56:22:E2:2F:C9:6C:EA:CF:73:11:4D:89:0F:4F:3A:A7:D4:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvhWIuIvyWzqz3MRTYkPTzqn1JU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/1000eb-ffd0-4fe3-b7af-0738c2334e7f/1/kvhWIuIvyWzqz3MRTYkPTzqn1JU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:87:90:dc:7f:ae:96:ff:fd:40:d4:50:d3:a0:e2:bb:e4:80:
04:4c:57:fc:ff:c9:e7:aa:dd:45:51:81:f2:ac:01:8f:5f:a5:
0d:c1:24:21:a8:a8:18:7b:52:63:85:5f:1f:fc:e8:72:a2:48:
39:d4:6f:c5:d4:06:47:cd:01:84:42:60:2a:c7:d8:20:c6:e7:
d4:1f:96:6b:69:3c:ac:c9:c5:da:ae:c4:cf:a6:35:63:cf:23:
6b:b8:a8:df:c2:82:5d:37:93:12:fd:d4:05:79:44:9e:97:9c:
dc:e7:81:85:0a:6d:74:27:5e:ba:5b:19:cd:4e:dc:f8:94:19:
aa:1e:59:43:aa:8e:26:45:4d:8e:f0:c9:a5:45:0b:08:93:9a:
9c:35:3e:51:58:fb:6a:ce:f6:1e:bc:6c:ab:3d:a8:e1:80:f8:
b4:4a:24:68:5b:9f:6f:67:2c:90:c8:d7:f6:a9:c7:03:60:f2:
37:8a:a7:6a:c2:5c:bc:dc:74:c5:cc:8c:98:9c:c1:8a:bf:36:
d2:4a:87:b3:ce:0b:60:2d:23:b5:e4:b1:02:64:58:ef:88:a3:
c7:f0:08:e1:d8:3c:5e:d3:aa:30:2e:dd:dd:40:d7:8d:11:0e:
6f:66:78:fe:92:7e:58:df:79:7c:df:80:3f:ef:6b:ae:54:e8:
c8:4f:78:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 16:16:39 2025 by rpki-client