Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File: kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier: aUNTIXYfQQzdAag0ZoYV5yEF26AyckMRvYU3iGu3UoM=
Subject key identifier: 10:C5:5B:58:96:3B:A4:38:85:8C:8B:49:99:2F:A9:BE:63:8C:D5:06
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 01984A0A3C70AB77B7DC87DF06E37196F609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number: 1606
Signing time: Sun 27 Jul 2025 04:00:41 +0000
Manifest this update: Sun 27 Jul 2025 04:00:41 +0000
Manifest next update: Mon 28 Jul 2025 04:00:41 +0000
Files and hashes: 1: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: mTM9goQ4EPl1gFDt96Lpkpl7FQYcVgkMLm0amNzu1LU=)
2: yaNI0_QU-og_a5wIKL7nblpP3wo.roa (hash: mocSKnatPWu2K5HO5VSBkHGD9dsGk50fbeHRajNzTSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:0a:3c:70:ab:77:b7:dc:87:df:06:e3:71:96:f6:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Jul 27 04:00:41 2025 GMT
Not After : Jul 28 04:00:41 2025 GMT
Subject: CN=10c55b58963ba438858c8b49992fa9be638cd506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a0:97:22:c2:21:35:76:71:42:ed:78:12:65:
39:5f:45:a0:1a:68:ba:11:b7:ff:26:7c:62:ca:a3:
7b:ef:64:c2:ad:da:3b:e5:f8:61:71:ee:ef:c8:88:
26:f3:60:c2:87:8d:94:7f:3c:1a:ba:c5:09:33:59:
76:7f:32:8f:3a:48:78:c6:a8:35:10:39:cf:9c:c5:
c3:32:20:2f:ce:93:72:b9:4e:07:91:55:19:1b:0b:
eb:37:a9:e3:ec:56:33:35:dd:16:40:ed:5e:b0:4d:
61:ee:dc:2b:79:86:7d:89:ce:64:90:9c:05:d9:5e:
ac:f0:14:54:f5:07:58:2f:9d:f2:85:b3:70:8a:52:
18:72:28:b8:30:8b:9e:25:99:3e:4c:8c:c3:10:e7:
f6:f1:18:c0:56:09:cc:ec:d9:b1:b6:76:32:2a:ba:
93:5d:6a:1d:fa:7e:fb:a7:cc:56:df:1f:a7:5a:78:
ee:7a:44:e8:39:69:e6:fc:25:5d:ae:ae:c0:5c:e3:
c4:97:72:dd:f2:b3:53:cb:a6:73:60:e5:fa:e4:39:
c6:6a:d4:e8:13:85:4e:d0:94:4c:69:8b:54:69:cb:
c7:c0:e8:3e:b9:9f:9e:93:fe:bb:8b:3b:6b:d6:2a:
a3:ae:23:79:5d:d4:9f:34:4b:f6:90:64:db:bf:95:
a7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C5:5B:58:96:3B:A4:38:85:8C:8B:49:99:2F:A9:BE:63:8C:D5:06
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:65:e7:f3:3a:8d:68:27:1d:7b:5e:87:ec:26:c5:94:f4:a6:
e6:13:06:ec:76:88:8c:46:b1:9e:81:a0:62:a7:6b:d0:e6:98:
60:0e:59:61:54:56:f3:f0:41:d6:76:5e:0b:9d:bd:99:5f:78:
0c:41:44:3a:6f:89:17:41:3e:95:6d:53:49:fc:35:41:86:8b:
86:cc:a9:32:ad:05:94:77:02:24:34:2d:6d:cc:f9:91:5a:8e:
c2:f6:cf:b6:c2:ef:62:a7:5e:d6:f6:0e:57:e9:08:38:b3:d2:
d6:67:10:f2:22:07:3a:52:60:d9:17:84:ab:71:99:a4:64:6c:
c5:22:0e:c5:18:86:22:73:02:01:c3:ac:8d:55:e2:fd:05:c3:
8a:db:0e:88:69:10:59:5c:f1:b0:3d:59:a9:09:99:72:13:e7:
13:6e:6f:fa:7e:88:57:e1:57:72:7a:25:04:fc:28:f6:83:17:
2e:94:f2:ec:c7:61:61:66:f6:86:ec:99:f3:63:96:e9:c9:31:
c4:ad:a1:ce:d1:b6:b0:e9:e7:e1:02:4a:11:cd:bb:f9:5e:7d:
ca:29:7c:8f:c3:e7:33:1d:77:68:00:2d:f6:cf:57:97:48:c4:
96:c8:de:bd:97:a0:65:a7:a7:78:6a:e5:9d:ba:74:06:af:d8:
97:52:2a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:22:44 2025 by rpki-client