Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier: mNp5OgGBqUlibFZ/l4klUcwwAuKFOLnhy2qPQpbEoac=
Subject key identifier: 07:7B:19:A7:BE:AF:A1:A3:FF:66:8A:53:2A:07:F9:0F:A0:A9:8A:97
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 019849D2E94F6E7E8AFE3F0AD1739058265C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number: 09F5
Signing time: Sun 27 Jul 2025 03:00:15 +0000
Manifest this update: Sun 27 Jul 2025 03:00:15 +0000
Manifest next update: Mon 28 Jul 2025 03:00:15 +0000
Files and hashes: 1: REM4mLJG7EnsBgBtsv162D0wKhg.roa (hash: lvlcTJIeXHpqeTqGfZTwiMwS8+bWAY5YDqELcR5epC0=)
2: Tkqht9ZvM7aeuWPx5RB29sIJQsY.roa (hash: GjW60rpkATBwTZcA2wdYPAVMSlJOCTBR0jsl1OrgYgE=)
3: XddNSlbeSdL2BDOBSBtXKwmbrLQ.roa (hash: YTwv2DMMu/UpDiaZkqxeVtYaDul2+Oka8KEh6z36NkA=)
4: b10-uyzSDsE84X1NxkfqXsdCqjM.roa (hash: 656/1JM/Gtv27/XvapYOtDJ81ebQFKIEF9n9ARvTwoo=)
5: bXzPu6L2HXchD9ZujQmLXPM_bDM.roa (hash: KqR406WMI/nRws1aNrGcGP+z2vKLl1H8bxnYaFt2+LA=)
6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: n9GrcNJqrIswwZoswpDdv+mP73xDDorCoN1ZMCyqNd8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d2:e9:4f:6e:7e:8a:fe:3f:0a:d1:73:90:58:26:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Jul 27 03:00:15 2025 GMT
Not After : Jul 28 03:00:15 2025 GMT
Subject: CN=077b19a7beafa1a3ff668a532a07f90fa0a98a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:99:85:0a:83:e8:df:b3:7b:4a:87:dc:8f:e6:
46:b0:50:d8:b0:3b:99:f2:72:46:53:0b:40:3a:c8:
43:d3:da:15:5a:94:b0:fa:16:10:6b:c7:32:30:f2:
75:1e:6e:86:89:67:a3:d9:95:cf:cf:df:56:1d:44:
cb:d8:b7:e5:f3:32:53:ed:4d:50:02:0d:c9:97:89:
15:b2:c6:86:5f:da:0d:26:70:76:75:e3:63:ef:fc:
e7:a6:78:8b:d6:d9:09:77:02:b5:8f:22:16:2f:1a:
1b:b8:63:f1:84:a2:f7:43:2a:b2:dc:31:c6:27:e5:
ca:7c:12:d0:8e:1f:2a:6a:b3:19:c8:8d:c6:e8:78:
7d:2f:34:2f:87:e3:bf:4a:c1:d0:01:75:18:a2:c0:
a5:eb:eb:6d:b0:bc:da:e7:9f:3c:32:7f:68:8f:05:
88:d0:58:58:3e:af:a5:f6:58:ae:41:a9:ed:14:f6:
09:f0:df:f3:b0:27:e9:0e:b8:72:1a:fa:cc:7a:d1:
3e:17:c9:7d:8c:e4:8a:56:a3:a9:4d:3d:0a:b4:c3:
21:80:32:8a:d3:99:bb:17:92:75:18:4a:2d:70:5c:
94:70:39:0a:50:ab:0f:77:69:27:69:f3:90:ea:d8:
60:b1:d5:a6:d5:c8:dc:a2:88:38:da:67:98:01:70:
e4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:7B:19:A7:BE:AF:A1:A3:FF:66:8A:53:2A:07:F9:0F:A0:A9:8A:97
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:94:a9:cb:0c:e8:b4:26:37:b3:47:79:67:81:07:c4:34:b0:
26:36:b4:70:68:bc:cd:b4:c0:84:4c:92:6d:9a:b7:f3:3f:20:
0f:55:14:dc:88:29:18:34:aa:88:39:b0:a1:ca:07:ba:6f:c7:
62:2d:c0:00:a4:a2:c9:cf:00:95:3a:2f:e8:49:fb:e1:80:5c:
ae:3b:c1:cb:10:98:89:a8:15:91:1e:78:64:94:a8:5e:e3:09:
6d:4d:1e:dd:fb:d4:b3:1b:3f:a7:6a:71:56:1f:cf:ee:2a:e0:
c8:16:7f:83:d7:ac:ba:bd:d6:87:54:9a:3f:99:2c:4e:13:b8:
64:cd:9f:ec:0f:bc:41:48:27:ac:88:7c:01:c9:98:f5:44:91:
c2:0f:10:2e:52:6e:4a:b0:09:4f:76:4a:bf:4c:46:18:e9:30:
81:ae:32:f3:6b:a7:84:b5:4b:50:5a:c5:19:b7:be:3c:09:01:
29:ba:09:61:56:79:49:28:ae:74:0a:94:38:46:cf:02:bf:ff:
23:f5:c9:b8:ed:67:eb:41:db:64:f4:50:ef:37:d6:04:d1:0f:
83:d7:5e:d7:04:50:bb:49:cd:a0:cd:5d:03:c0:54:e6:8c:31:
5d:0b:e3:53:e0:06:17:ac:0e:a9:3f:11:89:e7:65:7c:22:ca:
37:fa:32:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:20:57 2025 by rpki-client