Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft
File: kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft (raw, json)
Hash identifier: r3qTGBHoR5xmDLjdtVJLZci2PMUrQgWS5iFFtRk8xOY=
Subject key identifier: 29:9E:D1:79:7D:42:A1:5C:A6:3F:03:A4:B8:5B:E6:74:76:5B:2E:8B
Authority key identifier: 90:D4:26:20:9B:D8:C4:05:CB:EF:EE:57:41:B1:A5:25:48:01:2B:AB
Certificate issuer: /CN=90d426209bd8c405cbefee5741b1a52548012bab
Certificate serial: 0199228CEE94E78B9BF020EDFC2F3E79D209
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNQmIJvYxAXL7-5XQbGlJUgBK6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft
Manifest number: 1679
Signing time: Sun 07 Sep 2025 05:01:25 +0000
Manifest this update: Sun 07 Sep 2025 05:01:25 +0000
Manifest next update: Mon 08 Sep 2025 05:01:25 +0000
Files and hashes: 1: 7jOhIlGMYtpzhKm6UF5jgqFBiMc.roa (hash: C4mpTuEk6wGFVxeEj+/or69TPysG1QX13HP+3u1HlsQ=)
2: RsHjDR2OTT48ECIrfV-t2KLa3VY.roa (hash: MiP+2WgYd2OzzgUSXRhJ1Hkihb6X5kSHAkKwMaypLhA=)
3: fDz3kopcBM9QxzmTVEyXXnv306k.roa (hash: 5BoEUF/2XHrQViUE5avfp10L0ql6QUNJ3wwxARAepi4=)
4: kNQmIJvYxAXL7-5XQbGlJUgBK6s.crl (hash: Sxku2COGGZkW53JgIg9VyjDAF+6g5HMEjbqswmXOb/U=)
5: uyoeIqkVYsWycgSBqi99XOoWohc.roa (hash: XI5SEPc9hU2Gd4vosOPLL+DY7PoBl65PrChe9/PrbCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNQmIJvYxAXL7-5XQbGlJUgBK6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:ee:94:e7:8b:9b:f0:20:ed:fc:2f:3e:79:d2:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d426209bd8c405cbefee5741b1a52548012bab
Validity
Not Before: Sep 7 05:01:25 2025 GMT
Not After : Sep 8 05:01:25 2025 GMT
Subject: CN=299ed1797d42a15ca63f03a4b85be674765b2e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:36:66:98:71:a9:0c:49:49:73:1c:20:04:92:
7c:73:6b:e5:82:ea:3e:a1:b6:a7:2b:60:ff:e4:b6:
41:c6:cf:1c:a4:47:47:2a:d1:c2:45:d4:3a:42:35:
5c:38:d4:80:18:d5:62:79:ab:1a:00:b4:ac:b0:f2:
e9:4a:87:87:95:6e:13:cf:6c:02:cc:d1:4e:df:51:
f4:cd:cb:cb:b8:1f:7b:c4:45:d0:23:f1:be:bb:92:
02:56:b6:e0:63:12:bc:04:61:55:f8:42:b0:39:1d:
13:fe:7f:d8:1c:22:08:c4:50:17:62:d6:41:5b:ff:
0e:7e:91:83:a6:b6:4f:04:62:05:2a:5e:00:87:4d:
34:a3:78:98:9a:a9:40:77:a7:9a:30:12:92:98:f0:
55:0f:89:75:8c:52:62:77:83:40:ec:19:7f:85:6a:
58:98:99:18:16:cc:18:d3:3e:91:1b:a0:bc:35:52:
5c:58:07:b2:4b:47:be:44:1e:8a:29:1a:2b:8a:ca:
c9:52:95:24:15:99:bc:9d:1e:a5:af:a3:ba:fb:72:
61:74:98:3f:50:db:18:d1:0f:07:ca:b2:68:7f:2d:
48:ac:ae:6b:d3:b0:fe:27:02:74:30:79:50:96:24:
e3:bf:3e:0a:09:c3:2c:24:89:b4:a2:52:17:19:28:
80:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9E:D1:79:7D:42:A1:5C:A6:3F:03:A4:B8:5B:E6:74:76:5B:2E:8B
X509v3 Authority Key Identifier:
keyid:90:D4:26:20:9B:D8:C4:05:CB:EF:EE:57:41:B1:A5:25:48:01:2B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNQmIJvYxAXL7-5XQbGlJUgBK6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ec9616-79ad-4a36-aba4-84bd67ed0eef/1/kNQmIJvYxAXL7-5XQbGlJUgBK6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:f3:00:06:9f:76:8a:a9:41:a2:be:ff:ee:6c:11:fb:cf:2e:
11:dd:3e:e5:d2:0d:55:60:2f:e8:c9:eb:bc:03:2b:63:f9:29:
69:2f:0e:89:47:7e:45:cf:47:64:38:fc:b4:f2:f6:c1:69:7e:
cf:31:ea:e7:8c:fd:49:35:aa:94:fe:74:ed:1a:dd:50:ed:2f:
c8:28:00:35:75:79:de:4f:34:5e:98:51:fb:ee:1e:a2:d5:82:
a9:3b:8f:3b:c9:d0:2b:67:f1:09:2d:6d:13:ab:b7:7d:63:6b:
c4:55:e4:8e:97:37:56:09:33:3f:ea:6f:ce:5a:00:f2:98:51:
d3:36:9b:bc:4f:60:47:23:c4:48:6c:f9:56:13:43:e8:4a:52:
4a:ae:a5:af:b7:de:47:08:f3:93:78:0d:81:c8:64:91:1d:43:
3f:4d:a7:1d:11:02:20:9d:f0:6d:87:98:ed:46:ad:c8:c4:20:
61:33:14:68:ae:26:f9:36:0b:d6:97:72:84:a8:c3:6d:3d:18:
9b:8a:60:01:5e:47:03:59:30:9c:13:99:9f:6b:28:06:38:8d:
3c:94:58:7a:ae:56:4c:f0:53:d0:df:92:b7:43:ff:24:f2:74:
0e:6a:11:19:e3:38:fc:7d:31:a5:68:ce:b3:ba:4c:2f:1e:c7:
26:b6:ac:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:55 2025 by rpki-client