Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
File: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft (raw, json)
Hash identifier: MuFP21GTWM/V0k0GJj7LmfCFrYv+t/XFL4RyVMAuBkY=
Subject key identifier: 38:39:19:AC:BA:72:F2:42:71:88:9B:5E:CD:C3:19:4B:8D:9C:B6:C4
Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Certificate serial: 01993010D7A3F4C93A55A192FC1FA7B1DA32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
Manifest number: 10C2
Signing time: Tue 09 Sep 2025 20:00:34 +0000
Manifest this update: Tue 09 Sep 2025 20:00:34 +0000
Manifest next update: Wed 10 Sep 2025 20:00:34 +0000
Files and hashes: 1: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl (hash: vQsuUJOqgo8Am3e9PJeqEJqzvOU2CinKfqxvEexpyNo=)
2: rYNJq30hG9TfQKEAUAnbb-JlarU.roa (hash: bobhiWtsSX2sPVTtreNAJF6ae9i50YxHtcGAHPsK84U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 20:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:10:d7:a3:f4:c9:3a:55:a1:92:fc:1f:a7:b1:da:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Validity
Not Before: Sep 9 20:00:34 2025 GMT
Not After : Sep 10 20:00:34 2025 GMT
Subject: CN=383919acba72f24271889b5ecdc3194b8d9cb6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cc:83:05:3a:51:ec:17:55:39:65:7f:ea:0e:
87:5b:5a:93:e6:db:c5:c2:61:31:de:8d:8c:bf:a1:
95:59:c4:41:60:b5:29:7a:a8:58:88:c0:33:02:06:
42:a5:17:9e:fb:7a:de:f1:a4:17:71:ce:ad:71:4f:
f6:f9:15:10:d9:06:7e:30:98:d8:ba:07:26:31:7d:
b0:d9:07:72:f9:f4:9d:07:2a:24:60:7c:33:41:59:
31:61:0c:0b:35:bf:70:f5:8d:87:08:c1:1c:54:be:
b1:32:4e:ef:67:84:5d:69:1d:41:79:ee:b0:57:57:
fb:23:af:ef:18:40:84:b0:61:77:1b:5f:9c:9a:f2:
55:cc:23:8b:e9:1f:0d:e2:24:e1:a5:65:91:f4:3f:
b3:88:4a:8c:3e:50:68:26:22:a9:70:30:1f:cf:3b:
fd:7a:92:eb:fe:3b:a6:07:6f:f3:4f:64:6b:fa:5a:
53:ac:ff:c8:f3:6e:2f:10:38:7e:c2:e3:25:fc:d4:
61:b4:68:88:3c:7d:26:40:4a:b8:c6:d7:b8:20:57:
e7:d9:f2:15:d5:2d:a4:af:c1:b5:e6:8f:2f:f0:f6:
8d:b5:d7:5c:e0:4a:9b:05:c9:84:db:6b:c0:ec:8c:
5a:12:e8:36:0a:35:c7:74:11:22:44:c6:1b:8a:d4:
e7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:39:19:AC:BA:72:F2:42:71:88:9B:5E:CD:C3:19:4B:8D:9C:B6:C4
X509v3 Authority Key Identifier:
keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:e2:fc:07:6d:f9:24:17:8f:7e:68:47:0d:c7:bd:fa:60:31:
a6:09:a8:31:61:d3:c0:af:72:e3:9f:03:27:07:53:a3:c6:a6:
8e:30:06:44:dc:66:04:65:8b:2f:cb:c5:45:f4:e0:61:80:d8:
87:33:c9:b3:41:df:32:c0:75:8e:2d:1d:68:ae:75:ef:fc:44:
44:d6:a4:5f:84:58:d5:19:9c:25:3b:da:78:33:dd:c2:36:ad:
51:62:e9:f6:90:61:85:59:fb:f0:40:6c:91:37:d5:71:cd:0a:
73:6b:53:76:d5:4f:fc:15:a8:1c:35:e0:15:7e:20:cb:02:98:
02:84:e6:04:d7:eb:62:13:a8:fa:12:83:e7:95:78:c8:d5:5a:
ac:4b:46:bb:79:25:c4:63:5f:b0:88:e9:41:18:da:6b:c6:12:
2a:db:6a:80:c3:2f:23:a1:53:6e:4a:d0:20:9e:01:e4:55:46:
83:8b:d7:0e:6c:e9:a5:d8:bb:f0:25:cb:22:77:74:89:b6:83:
16:47:2a:6f:d5:5a:30:29:8b:f5:2d:7d:e1:d1:ab:2b:3e:b9:
ed:43:9e:c8:3a:2e:3f:e4:3f:9d:5f:a2:46:fd:e7:b7:ff:07:
3d:3e:4e:4a:55:ff:7e:2f:c4:91:f7:8b:ef:15:aa:f0:73:d2:
83:91:aa:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:36:49 2025 by rpki-client