Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
File: KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft (raw, json)
Hash identifier: HeF1h+dtaqpMztM47fZIl37DDSMtk/hiIZ3wLLKdTZw=
Subject key identifier: 0C:52:2C:96:EC:6B:BE:5A:F0:E6:F2:85:15:85:6D:AF:AB:1F:CD:64
Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411
Certificate serial: 019921E74F90C4EA9810900E790D9CD84EBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 02:00:31 +0000
Manifest this update: Sun 07 Sep 2025 02:00:31 +0000
Manifest next update: Mon 08 Sep 2025 02:00:31 +0000
Files and hashes: 1: KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl (hash: 2Xy1HAQT3gA852PUs0Zlurl3lS1TYz3GXboYz4/0oqM=)
2: rzOkydR3EHFZXD3XEkRebB02-_4.roa (hash: df7jTqxQL8Sw059sbRTkyG9ltt5KtHFaW+BfP29wPTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:4f:90:c4:ea:98:10:90:0e:79:0d:9c:d8:4e:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411
Validity
Not Before: Sep 7 02:00:31 2025 GMT
Not After : Sep 8 02:00:31 2025 GMT
Subject: CN=0c522c96ec6bbe5af0e6f28515856dafab1fcd64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:46:68:12:ca:fe:76:f7:82:8e:46:9d:26:92:
cd:3c:29:9e:25:61:2d:7a:ee:3b:94:93:a0:15:9c:
aa:e2:a4:65:27:71:33:f3:4b:e4:4d:b8:2c:6e:e5:
97:1d:6f:f2:96:ea:ff:57:52:93:15:73:62:12:3f:
54:60:66:54:73:a1:17:23:5f:4b:d6:e1:b4:07:10:
46:c7:7f:33:fb:46:b7:0a:cd:e7:7e:3b:35:86:cc:
77:8a:67:8c:a2:bc:a6:e6:ea:7b:41:23:d3:b3:18:
84:2c:80:6d:3c:d6:50:1b:da:e1:fa:29:7e:60:df:
1e:4d:83:60:5c:fc:c1:e3:ea:51:6f:09:e4:e6:63:
4f:af:8a:53:5c:8c:1d:92:83:ae:94:bf:d0:ce:c3:
14:06:aa:7d:99:53:d8:2c:a8:ca:c0:32:56:e5:d4:
65:95:21:99:fb:ef:0e:1e:fd:93:5f:f4:e5:bb:4e:
bc:a0:62:dc:5e:25:8c:f0:a7:7e:27:0c:09:dc:a1:
65:dd:5d:61:e2:ca:38:3c:40:b7:86:7d:45:fe:91:
b3:43:90:96:3f:9f:1e:74:c9:99:a5:bf:9f:dd:5f:
02:4b:bb:ac:c3:1d:a0:64:a0:c9:c8:36:27:a5:8d:
45:17:d6:6a:48:27:7e:8b:e8:43:42:fe:e7:89:e7:
ee:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:52:2C:96:EC:6B:BE:5A:F0:E6:F2:85:15:85:6D:AF:AB:1F:CD:64
X509v3 Authority Key Identifier:
keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:d7:7a:67:d9:a6:1a:2c:25:1c:2d:11:1c:d5:d1:c1:77:db:
02:0e:c5:7b:1b:a2:b5:3b:fc:cc:db:ca:0c:81:52:f4:8f:d0:
a8:47:be:12:11:92:37:39:a3:79:df:bf:60:88:66:ef:be:f9:
34:f3:59:15:d3:1a:31:83:e0:22:6f:47:4c:74:bc:8d:d5:e2:
ef:59:f9:b0:72:ed:14:2a:ae:cf:e4:de:09:89:3a:dd:4a:2c:
22:a1:be:d3:3b:d5:08:c5:7b:eb:22:c1:4c:2b:d7:27:b3:77:
ba:a4:63:ea:1f:d9:8a:8a:80:50:49:d1:e8:7a:b6:08:97:24:
0f:dc:04:a5:47:ab:60:78:fa:91:5b:ff:dc:e6:6c:ac:c3:71:
a8:9c:48:bd:77:4e:b6:9a:1b:ac:5a:d6:86:48:66:eb:cd:28:
bd:db:af:e8:a5:97:e7:7b:75:1b:79:da:93:01:25:ae:08:ea:
78:ae:ca:37:71:2e:56:40:21:e6:8c:83:c3:a8:a2:95:fb:80:
29:f1:aa:79:8a:04:99:df:11:5d:55:41:4e:b5:cc:f8:f9:06:
81:53:2f:c1:de:c5:70:aa:2f:df:cd:96:d9:9c:48:dc:e5:e1:
23:23:57:d6:42:ce:4d:81:ad:32:3d:34:1a:08:76:ce:99:83:
5b:4e:c9:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:27 2025 by rpki-client