Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json)
Hash identifier: sQ9o59p5XlAy7D2zJlt4irvl8f6Kz1dJpNpRzoIehjQ=
Subject key identifier: BB:19:71:51:CF:21:C4:9F:F1:E8:54:82:82:B2:A8:A8:E6:63:8F:9F
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 019933EE6539DCBF69AA44424A8B6204A2BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
Manifest number: 13BA
Signing time: Wed 10 Sep 2025 14:01:25 +0000
Manifest this update: Wed 10 Sep 2025 14:01:25 +0000
Manifest next update: Thu 11 Sep 2025 14:01:25 +0000
Files and hashes: 1: 5r4roNSh8TWW8XLP5gLpTUYEtC8.roa (hash: AktxI+V17na/V+Hz9k9ha+hVm279Tijdqa0CvwmI/7Q=)
2: Gxhnb8KOTrVvxDF8yuKOv2GjqtU.roa (hash: QO/QE2IRS/pPOvcN+3PpcsYmJwErYvPF742Zst4rEP8=)
3: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: QikWa2VGr+m4amhTp9S8bMRWhSKOC676GlDcAabQ52s=)
4: TtvNTrhsW3wjOkk9eOHVRXZxsEg.roa (hash: gPmUeUcfbob5JNxYnTxCOkrudyCPlteleGt+PSj2/00=)
5: ekdDszvqGt_eJ_hGO_xIWYzbzAA.roa (hash: zqr+o3bWODGGGIrhIMHHh91Y/JEASXYkOBODwzmfRz8=)
6: iIQaeGWo37d4w_fiU_R29carNk8.roa (hash: FbNS7L7XPQULlvHXJ6Yq35UuABtJRjSmhRiCGjDk29Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 14:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:ee:65:39:dc:bf:69:aa:44:42:4a:8b:62:04:a2:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Sep 10 14:01:25 2025 GMT
Not After : Sep 11 14:01:25 2025 GMT
Subject: CN=bb197151cf21c49ff1e8548282b2a8a8e6638f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a5:16:f9:9c:cc:32:06:49:4c:f3:b9:14:a4:
fa:ed:62:82:68:46:89:e9:cc:a0:59:10:86:d2:7a:
0f:71:8b:3a:37:5a:d7:c1:5a:ea:7c:4b:4b:93:83:
b8:4b:42:75:a9:7f:e1:a0:c1:5e:a0:e0:28:71:ef:
5a:a6:e0:ba:0d:7a:6d:30:98:a1:37:6f:fd:7c:1e:
a7:af:35:53:a4:b3:3c:45:75:ee:e7:e8:9b:53:00:
c0:65:2e:fc:c4:ae:c2:2f:3e:a6:2d:71:f7:bb:a8:
f9:e0:fa:db:35:ac:46:f5:bf:df:b4:87:d2:60:05:
f1:98:51:d2:44:cc:df:6b:62:1b:95:47:b7:24:df:
41:a0:00:64:d6:ad:6f:e3:79:eb:20:37:aa:79:ac:
0c:b6:e5:7f:15:98:4e:aa:99:ec:56:74:56:0b:12:
57:34:da:45:20:bd:0d:6b:05:76:86:02:d5:78:fd:
c1:a3:35:9b:b6:fd:03:70:1c:68:4d:33:bb:10:46:
b0:1d:02:fe:25:98:38:24:2a:5d:ae:68:a2:7e:8b:
c5:fa:5d:c6:c4:58:4c:4c:33:ee:0d:ed:77:53:e1:
ec:2f:52:f5:b8:f9:1d:39:e5:d8:51:06:83:d9:29:
50:03:24:79:83:d2:58:1c:dd:39:7a:86:47:01:9a:
e9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:19:71:51:CF:21:C4:9F:F1:E8:54:82:82:B2:A8:A8:E6:63:8F:9F
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:bb:c0:c0:ff:4a:58:0f:d4:83:48:f2:d5:c9:00:a1:16:71:
30:59:7a:58:2e:71:0a:11:0c:5b:73:11:2b:7e:11:7b:81:a6:
34:b8:03:5a:53:27:dd:4c:58:5d:2f:dc:27:5c:44:b8:5d:fb:
68:05:a2:f5:51:55:de:49:e3:1b:5b:5c:d4:1a:9f:3d:12:58:
1d:a3:72:5e:78:d9:fa:b9:eb:03:a7:75:7f:dd:72:f4:78:03:
d4:14:c0:8e:39:b8:9a:17:9e:1f:75:ad:cd:23:3c:a6:4d:2e:
55:e6:31:69:d3:00:ad:d2:f4:03:5f:6e:90:6d:7c:16:83:8d:
75:02:87:3c:ce:85:d6:88:c4:7f:ef:f1:c4:5c:14:29:c7:35:
ba:8d:7e:7a:e2:94:df:d2:04:05:55:a3:7d:2e:e4:99:ee:df:
53:f9:cb:02:8a:39:0e:93:ad:7e:e0:51:05:ce:4f:c6:98:f9:
1c:a9:78:69:66:49:13:55:cf:1b:a9:92:d6:3e:08:bd:65:57:
4a:3c:69:93:77:05:92:1e:a7:89:f4:a4:9f:0c:1a:9a:1f:20:
c7:a5:99:2f:17:ad:6d:5a:c6:19:bd:98:fd:69:4e:21:d0:c9:
64:d7:69:58:9c:8e:db:79:cb:c3:50:76:16:98:9a:9b:ae:1f:
17:69:9f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 21:45:13 2025 by rpki-client