Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
File: kd3H2eAtRMa_jGNcHQcV9uicEBI.mft (raw, json)
Hash identifier: P0uaDzkczs/8WkKw1ZuwlDYMaGgU/ucTYitqV+NJAok=
Subject key identifier: 8F:81:D5:62:59:94:E4:CD:C7:0E:C8:8B:CB:FC:C2:E2:8D:06:AC:82
Authority key identifier: 91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
Certificate issuer: /CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Certificate serial: 019923D62CF1439DEB5C7C3797090917C739
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
Manifest number: 2D
Signing time: Sun 07 Sep 2025 11:01:02 +0000
Manifest this update: Sun 07 Sep 2025 11:01:02 +0000
Manifest next update: Mon 08 Sep 2025 11:01:02 +0000
Files and hashes: 1: kd3H2eAtRMa_jGNcHQcV9uicEBI.crl (hash: bKjLIFpstp2axL368rQjiNVFMpqK//p6khvtZzxW3G4=)
2: s5q2oTWE63BKKJHezuXxV23_1ao.roa (hash: kxGqoLV/rWB0wj/sYCOZiA+1BQk6TjqEiRvVL8/Fnps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:d6:2c:f1:43:9d:eb:5c:7c:37:97:09:09:17:c7:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Validity
Not Before: Sep 7 11:01:02 2025 GMT
Not After : Sep 8 11:01:02 2025 GMT
Subject: CN=8f81d5625994e4cdc70ec88bcbfcc2e28d06ac82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f6:f7:1f:18:45:73:5f:32:47:25:ea:55:98:
1e:1d:d5:29:8d:0b:67:f5:bd:70:54:70:0c:43:4b:
5b:3b:34:73:0b:1c:ea:76:01:37:2d:13:fe:52:31:
e4:eb:cc:e7:3e:b9:0a:70:44:ca:9f:a1:f6:f8:fe:
1d:5a:19:f3:36:3d:1d:d5:6d:f5:be:fc:22:49:f9:
f2:80:7a:c4:a1:d5:b5:da:4e:f3:d1:e4:f6:a5:03:
ae:21:c5:f6:b9:92:0e:ce:e1:fd:db:7b:ea:9d:c2:
60:ca:6b:e4:1c:67:01:6d:77:e8:11:e7:15:20:91:
1b:5f:13:3b:8c:cf:a7:d7:a2:e2:41:5e:31:72:9b:
36:38:40:54:a5:3b:50:de:90:b0:e3:6c:2e:a8:c9:
c3:49:27:d9:1d:c6:c6:6a:39:05:ac:17:2e:16:fc:
76:57:6f:97:96:52:46:3c:1c:04:51:12:49:84:c9:
c7:ed:19:36:85:88:51:f3:9b:e0:3f:6d:fb:c8:58:
2d:91:3f:7d:44:03:4b:0c:0c:41:74:2c:ab:4c:dd:
2e:3f:11:9f:2f:db:e2:2e:2b:85:32:f8:7b:77:b1:
a7:8b:cc:36:ed:0c:48:39:aa:91:dc:93:55:aa:7c:
4e:52:18:09:a1:de:84:7c:08:97:67:6c:bf:10:67:
ad:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:81:D5:62:59:94:E4:CD:C7:0E:C8:8B:CB:FC:C2:E2:8D:06:AC:82
X509v3 Authority Key Identifier:
keyid:91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:fc:e3:4d:65:46:4b:92:4f:00:74:d3:5b:89:90:eb:07:60:
02:c6:fa:fa:39:d0:bb:e3:bc:4d:94:4c:8f:0f:19:a1:91:af:
1a:7c:88:22:72:a4:a8:ab:56:35:73:8a:74:0e:bf:08:77:9f:
1f:b2:94:c0:62:0e:7b:8c:00:a5:56:a1:9f:9c:6d:22:22:f3:
38:0e:dc:60:07:81:59:d9:d5:f5:11:f6:d8:67:d5:3d:ee:cc:
e9:42:36:0c:62:c2:8b:c5:fc:a7:87:9f:23:1d:dc:dd:4a:f0:
28:b0:65:7d:68:d7:f9:f0:0d:3c:fb:45:9b:80:2a:e3:5d:e8:
08:93:55:e2:6f:e2:74:b2:61:13:bb:2f:ae:80:d5:90:01:b0:
be:0e:e3:4f:bd:95:0b:8f:ca:51:3b:ba:10:e1:95:d6:fc:78:
4c:de:ef:ed:42:62:72:6f:32:af:a7:96:24:5d:cd:83:70:7d:
99:c6:27:bb:b1:2f:d4:14:0c:80:03:9b:a5:05:4b:94:83:d3:
1d:79:e1:86:17:3a:1c:bf:e1:ac:4e:37:df:dd:44:72:58:81:
86:82:1c:ba:b1:cf:6b:29:20:ca:5c:45:d7:f6:37:3c:9b:1f:
8f:f8:13:5c:c6:ab:ee:31:a9:0e:9f:47:be:6a:d3:b8:2c:b6:
d6:07:7e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:21:16 2025 by rpki-client