Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: gaRvZoJLmIBOE/IB4rsd1xmPcA4TrC7Dg2ShU6sIQAw=
Subject key identifier: 9E:DF:5D:92:2F:75:C5:3B:2D:1A:78:42:65:56:D2:18:47:6C:FE:C2
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 0199270DF2687F96B547C3A720EC69864A9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 0267
Signing time: Mon 08 Sep 2025 02:00:49 +0000
Manifest this update: Mon 08 Sep 2025 02:00:49 +0000
Manifest next update: Tue 09 Sep 2025 02:00:49 +0000
Files and hashes: 1: 7RtSvYvJ-s26z4jJmihBpc9PPTg.roa (hash: +WPL+eLMOyDQbtRDqabesCoaqYzO2nUYgvkky6oLihM=)
2: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: m09OwMBy4el/Grdej1uojTdMInk4Yplkd81nSSujakU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 01:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:27:0d:f2:68:7f:96:b5:47:c3:a7:20:ec:69:86:4a:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Sep 8 02:00:49 2025 GMT
Not After : Sep 9 02:00:49 2025 GMT
Subject: CN=9edf5d922f75c53b2d1a78426556d218476cfec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8b:18:9e:a3:f8:e6:fb:8a:18:4c:54:c4:94:
9b:4a:0e:f4:d1:f3:97:52:f3:35:32:d0:e7:2b:61:
98:7d:88:b4:ac:24:48:a0:da:75:85:2b:e4:32:5b:
5e:fb:5a:45:78:30:ef:64:8b:21:bd:54:e4:2d:86:
6d:a8:81:57:4b:90:ee:32:6a:c7:4b:2f:4a:d2:cc:
88:5e:57:68:c5:d7:99:dd:30:e2:1f:ba:2e:37:ec:
eb:98:7e:b9:5d:5e:f7:f3:6f:b2:49:fd:f6:4f:bc:
99:35:ef:54:b5:77:8f:d1:16:81:20:fc:c2:c4:73:
54:cb:23:61:bf:20:7c:e4:9f:57:9c:29:e1:25:5c:
08:02:4b:b5:21:c7:89:c1:05:64:b3:7a:df:a8:c4:
fe:6a:4a:1d:92:e7:d6:46:a1:41:0d:1d:91:f3:41:
73:12:23:02:dd:f5:0e:4c:3c:c1:e1:7b:f2:38:8e:
d2:04:5b:13:73:25:47:4b:b5:19:98:d9:3a:3c:cf:
7d:65:22:9e:52:0b:d3:a8:89:61:b0:3f:13:95:b9:
60:89:6b:82:72:63:24:80:56:37:c1:f0:88:8b:da:
c4:58:4d:a0:42:c0:a6:bb:ed:99:cf:57:e4:85:d3:
aa:57:e8:de:5e:0b:64:f9:3e:f3:3c:58:d4:27:59:
99:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:DF:5D:92:2F:75:C5:3B:2D:1A:78:42:65:56:D2:18:47:6C:FE:C2
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:0a:e3:40:3b:d0:91:2d:15:ab:b1:a6:b5:6b:64:39:bf:39:
de:5c:d1:fe:89:e2:68:b9:2d:f6:4a:9f:40:96:a1:61:62:d8:
c2:93:e5:84:f2:e6:0b:fa:fd:f3:53:49:89:7c:e1:7f:0e:79:
8d:d1:e5:05:79:58:a5:bc:a9:6d:a7:c2:74:c6:86:eb:ba:59:
0f:79:56:fd:fb:32:40:44:b7:b7:ed:e6:91:8c:4d:38:6a:88:
bd:dc:94:9b:cd:1d:31:aa:b3:33:47:d1:14:e3:4d:dc:ed:ff:
4f:33:46:78:74:8d:66:53:cc:df:b0:75:9a:7c:ff:e4:b6:da:
80:fb:ae:5e:fb:e4:ea:ab:07:e0:5f:bb:44:b2:54:c7:98:2f:
06:01:ba:7d:48:ef:25:1b:ec:13:31:c5:b6:ce:e1:3b:cf:49:
02:e6:63:fb:74:c6:2a:8f:a6:5a:ee:4e:cc:30:1f:e9:83:cf:
30:3b:e8:b9:d9:3b:6a:49:c7:d7:3b:b2:3e:81:fe:0a:3f:26:
16:dc:05:a1:19:d1:cf:9e:0a:47:98:e4:5f:37:15:ed:38:c3:
03:0b:ed:85:55:30:4d:2e:50:94:56:97:16:c6:13:4f:dd:2b:
87:d2:c6:7f:a2:62:ed:12:bd:a6:c1:4e:51:06:21:44:8a:3c:
87:5b:9d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:35:31 2025 by rpki-client