Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
File: kaEXOnDkH0WTVHZpraIvDX9o81Q.mft (raw, json)
Hash identifier: DAxmP7+xKYqqCBqyGJp3pkPvhxeI5qTUyDOuqiOn6KY=
Subject key identifier: FE:02:1E:20:69:DD:A5:F9:F5:79:DD:F8:BF:EB:BC:05:D6:D6:E5:C7
Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354
Certificate serial: 0199228C9F6554B06EB47E09D9FDD8B94788
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 05:01:05 +0000
Manifest this update: Sun 07 Sep 2025 05:01:05 +0000
Manifest next update: Mon 08 Sep 2025 05:01:05 +0000
Files and hashes: 1: kaEXOnDkH0WTVHZpraIvDX9o81Q.crl (hash: 59OE8N4G+0VS4IX60ArglkpoWh54IdREH+2XF1ew0ZA=)
2: xREpLh3GVdj1ODzVkMBccz2oKXk.roa (hash: xbsUY7nQRM1AibU2b9y10o7TiQNt9Xvh0b0IzmFT71c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:9f:65:54:b0:6e:b4:7e:09:d9:fd:d8:b9:47:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354
Validity
Not Before: Sep 7 05:01:05 2025 GMT
Not After : Sep 8 05:01:05 2025 GMT
Subject: CN=fe021e2069dda5f9f579ddf8bfebbc05d6d6e5c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4f:c1:97:9e:ed:3d:66:01:51:f9:5e:da:09:
0c:1b:03:a8:99:34:34:9d:95:75:61:ff:a6:82:00:
76:4e:0a:9e:49:d9:30:7b:37:24:f8:9b:7b:da:54:
bb:69:7f:15:e4:c2:2e:8d:ac:90:f1:93:7d:67:07:
49:2e:e6:06:8e:0a:e8:05:fe:17:a2:61:37:d4:2c:
71:33:e4:82:79:f5:e6:e5:12:f3:b6:a8:b8:43:b9:
13:ba:b1:65:97:f2:20:ce:50:b8:b6:8c:9c:de:36:
a4:f4:f0:19:d2:a4:df:b9:74:2b:35:db:90:c5:25:
5c:b7:c9:73:56:87:af:44:d8:04:dd:dd:98:a5:27:
f1:f2:ad:be:59:e4:14:06:ee:78:82:b4:b6:d9:f1:
7d:88:81:8b:74:bd:fa:df:2d:f9:b5:36:de:07:e1:
f9:46:66:0b:9c:01:9c:96:bc:ec:15:87:45:3a:5e:
62:4c:c0:7a:fc:cf:eb:97:0a:b1:af:72:54:7b:51:
17:df:b1:a9:04:68:ca:16:37:46:bf:ed:eb:19:93:
87:0a:84:62:98:a8:95:1f:1b:82:03:bd:82:c3:a1:
06:da:19:f0:53:d4:60:bd:70:d5:9b:c6:25:82:47:
fa:5e:dd:0f:24:5f:68:3a:28:62:9b:1e:48:5b:81:
f5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:02:1E:20:69:DD:A5:F9:F5:79:DD:F8:BF:EB:BC:05:D6:D6:E5:C7
X509v3 Authority Key Identifier:
keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:9c:3f:b9:21:86:88:db:b0:a7:7d:3e:02:19:d0:43:ed:61:
bd:6e:5b:9b:f0:bd:af:24:a3:78:eb:08:c7:d0:56:5d:2d:42:
21:69:e7:7e:9d:cd:84:d5:8b:fc:1e:a1:fb:b5:4d:fa:a3:c2:
ee:ae:95:46:1f:2b:8b:84:54:09:48:b5:77:aa:b5:47:f4:c2:
c1:7d:c1:0a:41:d2:9a:ee:ce:a7:d3:71:f4:00:7a:31:f4:e9:
29:f1:d0:02:86:94:bd:98:e7:3a:fb:ca:6d:b5:58:e6:f8:1c:
cc:e5:e6:a7:41:85:ff:3c:e7:76:c4:6a:50:37:09:48:7a:ba:
c5:c6:b1:9a:fe:d3:95:aa:51:56:43:c3:54:35:61:83:c9:1c:
f7:e6:3b:c1:e0:b1:81:0b:c3:7e:54:d0:f5:84:5a:c8:d5:63:
03:1d:d7:36:b5:ad:e5:2d:ce:fa:6a:73:aa:12:fb:5d:d8:23:
b0:13:da:e4:5a:d8:be:d7:1c:6b:62:2d:8f:80:be:4d:86:da:
17:d4:15:0d:4b:24:a0:34:c5:4b:32:ef:cb:21:0a:40:ab:f8:
e8:ca:8d:66:12:25:06:cb:3d:ab:a5:d7:c3:f7:82:bd:a8:58:
1a:00:c3:89:98:1a:88:49:ad:21:ec:54:46:19:c0:b6:f0:46:
54:f1:b4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:06:31 2025 by rpki-client