Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
File: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft (raw, json)
Hash identifier: PxpgCtb2wICtiCW2vX62W1lowYbIzTYyBmwV1QFj1Qc=
Subject key identifier: 1C:08:6C:45:6E:5A:24:C5:08:AF:A2:C4:43:F9:F2:37:9A:A5:17:F8
Authority key identifier: 91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
Certificate issuer: /CN=913836859c6ce1869340edf1f273709b8094d9d4
Certificate serial: 019922FA46F1D3BEE8A7C6931E123A82023C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
Manifest number: 15D9
Signing time: Sun 07 Sep 2025 07:00:51 +0000
Manifest this update: Sun 07 Sep 2025 07:00:51 +0000
Manifest next update: Mon 08 Sep 2025 07:00:51 +0000
Files and hashes: 1: i0znYyDIsk78QzCDDCTg60lK9ig.roa (hash: aeDo1wq5VczgcfrDX0J+4eB6IcjwVsRwiJM6vkXROSk=)
2: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl (hash: 3+b/pgto1zL6Cutm8HAvjnNSfd5dCKYCLnIbGeDYh5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:46:f1:d3:be:e8:a7:c6:93:1e:12:3a:82:02:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913836859c6ce1869340edf1f273709b8094d9d4
Validity
Not Before: Sep 7 07:00:51 2025 GMT
Not After : Sep 8 07:00:51 2025 GMT
Subject: CN=1c086c456e5a24c508afa2c443f9f2379aa517f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e6:01:31:a7:10:a6:3f:9c:df:b4:75:8d:cb:
7d:f7:96:26:11:7c:b1:f2:8b:28:df:61:80:57:34:
7c:9c:57:d9:0a:4d:df:6b:5f:7a:d6:57:15:32:01:
70:58:d3:23:19:f9:21:8e:9f:91:d8:79:df:2a:1d:
91:77:fe:9c:79:26:45:c4:15:a8:b7:ba:36:f7:65:
f9:6a:6c:ea:98:3d:c0:51:c7:6d:cc:75:7d:8d:52:
b5:8b:ac:9b:a2:5d:9c:d7:8a:6c:da:ef:a7:a8:54:
9a:df:55:07:d4:5c:89:8a:c0:2b:cb:9b:0d:c6:ab:
e4:e3:fe:4c:35:36:a6:ea:60:de:0e:e6:6b:76:0d:
2a:de:81:93:15:b6:be:b1:63:c1:01:f8:0e:7a:36:
5d:0a:87:78:e0:ac:a4:70:1c:97:35:e2:f5:90:4f:
a4:22:37:cf:24:8b:c5:88:a5:cd:ce:b6:07:3f:1b:
bb:9c:a3:c3:2e:3a:85:cc:bc:5d:47:a8:f2:08:01:
5d:2b:a8:93:04:4a:09:19:76:9f:f4:6f:e9:cc:33:
ab:5f:53:03:a1:fc:9e:69:64:de:86:78:1d:f2:d0:
5c:6a:21:5d:1b:94:5b:e6:98:5e:e1:98:0e:7d:e9:
7c:af:1d:41:b7:51:1f:b5:75:ec:ff:f9:30:4b:51:
26:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:08:6C:45:6E:5A:24:C5:08:AF:A2:C4:43:F9:F2:37:9A:A5:17:F8
X509v3 Authority Key Identifier:
keyid:91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:01:41:36:aa:32:23:04:af:ba:b5:a4:1d:5f:69:b5:0f:44:
ec:16:1b:96:16:d9:66:54:cc:cc:44:6e:fb:f9:90:65:fd:1f:
47:6e:38:fc:91:91:f1:53:52:37:b4:c7:21:1a:77:ba:a0:5f:
52:e8:90:b4:bc:56:75:dd:e6:9c:93:70:04:98:13:84:a4:50:
5d:50:ce:44:a4:d1:77:8d:50:88:2b:16:c4:d4:22:32:f1:49:
f6:54:f3:11:69:f4:31:50:0a:9f:4b:35:9e:4c:37:a2:5a:c7:
2d:70:c6:db:d5:eb:77:01:29:e5:8b:c1:51:0f:38:e1:04:ce:
14:08:1a:56:c0:bc:c3:a9:26:41:7d:11:71:17:b6:5e:a4:db:
90:b9:3d:78:d8:67:dd:a0:ea:3d:43:53:4c:df:1b:c9:15:57:
f0:c9:0b:f7:a5:21:30:6d:23:76:72:1f:81:cc:3a:ca:54:22:
a1:2e:ce:37:1a:c8:4d:87:72:9e:22:f0:97:5b:39:5e:bb:1c:
a8:a1:10:33:1d:16:00:9c:03:8b:99:d4:15:f5:6a:70:33:9a:
02:e9:bf:1c:0d:cc:ef:23:99:c3:bd:47:a0:25:9c:b0:45:93:
58:71:96:57:b0:5e:54:33:8a:93:be:da:6e:d0:97:6a:ce:00:
4b:27:51:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:21:05 2025 by rpki-client