Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
File: kHpcTqRTtGyByxNtkrkwmxRsPkU.mft (raw, json)
Hash identifier: qxxCiHN6DPChfdxfFZrh/gkkQtZsJqvLE2GpyLtgHDQ=
Subject key identifier: 99:D3:8C:9B:80:23:AA:63:35:1A:BF:CC:81:BC:7B:B2:8F:77:4D:22
Authority key identifier: 90:7A:5C:4E:A4:53:B4:6C:81:CB:13:6D:92:B9:30:9B:14:6C:3E:45
Certificate issuer: /CN=907a5c4ea453b46c81cb136d92b9309b146c3e45
Certificate serial: 0199239F4980E51893943FABF536DEE6EFAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
Manifest number: 097D
Signing time: Sun 07 Sep 2025 10:01:05 +0000
Manifest this update: Sun 07 Sep 2025 10:01:05 +0000
Manifest next update: Mon 08 Sep 2025 10:01:05 +0000
Files and hashes: 1: kHpcTqRTtGyByxNtkrkwmxRsPkU.crl (hash: sx19ca5Paftn/EnU1B8Eus2R16Ltee8VjX7TMYnw8bA=)
2: y00kCOm4x0sTFaBDOqD5L5fES6Y.roa (hash: G4M+BrvsrjKhmQGsYy0izNdpM9hsyiGzIDC7Si8ke98=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:49:80:e5:18:93:94:3f:ab:f5:36:de:e6:ef:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=907a5c4ea453b46c81cb136d92b9309b146c3e45
Validity
Not Before: Sep 7 10:01:05 2025 GMT
Not After : Sep 8 10:01:05 2025 GMT
Subject: CN=99d38c9b8023aa63351abfcc81bc7bb28f774d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:bc:fd:c3:ff:e8:2b:5b:b1:24:82:1b:f1:19:
27:91:98:bc:54:bd:15:cb:d1:34:38:c8:a1:a4:27:
29:7e:fd:86:36:bb:45:52:f4:8e:14:5b:b6:dd:fc:
70:31:43:43:d0:3a:10:1a:cd:af:d1:24:a6:14:eb:
d7:90:1c:80:d4:b9:fe:64:91:8d:6a:d0:0e:49:89:
0d:df:01:a9:32:ff:fc:ac:51:93:bf:b6:fa:3a:3d:
76:66:1b:d1:81:b9:ad:c4:16:06:2f:a7:e5:da:c5:
5d:ae:29:9a:87:ae:02:d1:5d:7b:c1:39:c2:21:7f:
10:d5:fb:9e:39:95:21:6d:d7:6a:42:ed:c5:a6:e8:
06:4c:e7:48:f3:a1:db:67:11:6f:b8:8c:fd:b1:e6:
46:b2:31:47:9a:70:1d:82:f6:bc:cf:25:a1:33:a9:
c5:f0:8b:86:90:dc:14:c0:af:50:da:36:89:50:53:
44:c6:ea:00:de:4a:df:84:e9:b5:cc:77:8c:30:2a:
34:ed:2f:02:d5:30:f8:a9:eb:30:d9:35:7d:57:42:
5d:1c:a1:cc:39:47:51:db:b0:b8:ba:4e:d6:2e:94:
44:1b:2f:01:9b:eb:47:84:81:90:ba:d7:df:43:14:
b9:0e:b1:5f:03:f2:73:97:01:17:34:17:60:86:be:
ae:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D3:8C:9B:80:23:AA:63:35:1A:BF:CC:81:BC:7B:B2:8F:77:4D:22
X509v3 Authority Key Identifier:
keyid:90:7A:5C:4E:A4:53:B4:6C:81:CB:13:6D:92:B9:30:9B:14:6C:3E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:b1:ad:84:af:18:55:36:53:3b:a8:10:be:dc:ce:86:66:66:
7c:49:35:12:bd:47:1c:e5:18:43:1d:1e:88:4b:ce:23:ad:d6:
6e:82:c7:5d:78:12:ba:2d:a1:50:58:42:1f:86:34:84:66:67:
a0:f6:b1:4e:b0:aa:19:0e:31:f7:24:bf:fe:fa:d3:bd:06:af:
e1:de:fe:5e:94:4f:45:dc:7b:ff:42:69:1f:63:ba:03:9a:e6:
da:48:6a:ba:39:20:52:bb:e5:70:e2:8d:3b:1a:b8:66:bd:7b:
d0:1c:21:6e:3c:5c:19:63:e5:3b:14:07:f4:f2:e6:b9:75:e9:
c3:48:32:88:a6:9e:a5:da:37:4f:d5:ed:c5:5f:40:dd:ec:28:
26:da:25:54:20:c2:d3:6f:0c:78:6d:ea:6c:4a:4e:00:d2:50:
10:2d:fe:76:94:c4:d8:d6:fc:6c:16:4b:cb:ed:74:a2:75:06:
13:03:fb:c1:f3:96:51:42:ec:63:d8:e1:63:56:28:e5:3d:1e:
7b:9b:28:e1:b2:7e:17:34:ba:fa:10:a5:32:8e:e6:91:e5:80:
a8:d2:76:d1:d3:ca:e0:d9:fc:87:24:20:70:5d:16:8b:90:34:
dc:41:33:ae:87:83:40:4a:35:fd:5d:8c:b9:b5:28:9c:bc:73:
ca:b9:02:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:25:05 2025 by rpki-client