Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
File: kYMWq06hPrtUVgwaZwQtR-lm2CM.mft (raw, json)
Hash identifier: 5St+4dQ2f88xtrwBWfOt+DACcopkNFLeY+QNe5nLOcY=
Subject key identifier: 6C:B3:94:49:2C:B8:AD:ED:07:1B:58:FE:B4:D7:B4:C0:AE:AF:75:1E
Authority key identifier: 91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
Certificate issuer: /CN=918316ab4ea13ebb54560c1a67042d47e966d823
Certificate serial: 019921B1C5DADD439DE387F56F7563B338F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 01:02:02 +0000
Manifest this update: Sun 07 Sep 2025 01:02:02 +0000
Manifest next update: Mon 08 Sep 2025 01:02:02 +0000
Files and hashes: 1: 1pItkF34I0T0XrYWSJRD7pj_ja0.roa (hash: xX/gcWJfZ1minzry/xWMxIOizMCvErT51ZVCYZljegM=)
2: kYMWq06hPrtUVgwaZwQtR-lm2CM.crl (hash: FKelRmpHQjfIHGDbEhHXLa7/jobHpSdPinffc7XX9aU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:c5:da:dd:43:9d:e3:87:f5:6f:75:63:b3:38:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918316ab4ea13ebb54560c1a67042d47e966d823
Validity
Not Before: Sep 7 01:02:02 2025 GMT
Not After : Sep 8 01:02:02 2025 GMT
Subject: CN=6cb394492cb8aded071b58feb4d7b4c0aeaf751e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:81:33:79:6d:54:a0:a3:97:81:9a:7b:bf:67:
bf:a7:93:a2:75:bd:45:1b:a1:04:89:51:3d:28:7a:
99:3a:95:e1:28:93:64:39:a9:4d:86:0b:a4:1a:84:
4e:fe:3c:51:77:40:72:f3:36:60:9b:2c:eb:31:19:
40:e0:2f:a4:51:c8:02:fb:bf:24:07:60:d3:b6:46:
e8:e7:c5:ad:99:85:31:84:4b:00:fa:c3:31:a4:0f:
d9:36:5e:5e:7a:68:83:06:d3:bb:39:e2:7b:fd:4e:
ff:0f:7f:17:5a:52:24:af:d1:47:40:df:44:c4:be:
b2:7d:d9:43:54:49:58:e3:c3:90:48:cc:e1:e8:1c:
5b:ea:84:2d:7d:19:64:ee:da:15:d8:b4:c0:8c:20:
51:92:db:81:f2:45:fc:02:a3:a4:ac:ce:7e:91:af:
27:ca:c2:41:15:49:5c:c4:8b:e4:b7:5c:6a:d0:77:
b3:82:d4:25:07:f4:11:c1:a6:43:b0:4a:6e:86:0f:
97:90:3f:fd:88:30:e6:48:9c:71:10:90:c0:70:64:
04:29:79:51:f1:77:b9:77:27:9a:bb:09:0e:92:4e:
9e:7b:03:85:02:a2:d5:03:3f:80:2d:63:7f:04:11:
21:50:14:de:23:88:ce:e3:b5:4a:fe:9f:d5:66:8c:
69:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B3:94:49:2C:B8:AD:ED:07:1B:58:FE:B4:D7:B4:C0:AE:AF:75:1E
X509v3 Authority Key Identifier:
keyid:91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:54:c8:67:05:ec:dc:99:fb:b1:d0:05:52:8f:fa:bd:b8:39:
db:bb:56:fb:ae:87:6c:20:fb:0c:ed:5f:12:2f:ce:c3:c2:1c:
be:25:23:e2:fb:fd:20:3e:e2:7b:5b:b7:a4:1a:ca:59:10:73:
a9:90:a1:d7:c2:3e:23:48:b0:61:fa:da:13:0e:40:d7:be:e6:
84:3b:35:e2:04:c4:95:99:f6:52:b0:6e:76:11:82:a2:f5:aa:
e2:4b:db:88:f0:3c:a2:ab:b4:98:f0:47:dd:61:b9:73:ec:eb:
8e:19:8f:9b:bf:26:4c:45:f2:66:28:35:72:25:13:65:80:69:
3e:58:1b:ae:f0:ba:06:9a:8e:dc:9a:60:ca:2f:8d:3a:98:5d:
ea:6c:94:e6:37:13:1c:e5:cc:43:b5:19:33:55:63:30:26:4a:
e2:b3:e1:74:80:02:84:76:c6:7e:bd:1a:ef:b9:af:80:17:ca:
d6:7d:71:02:ab:8e:a6:3a:8a:e8:0e:ff:97:9d:fb:80:53:02:
72:bf:ed:53:0d:c5:f3:c7:0a:5b:63:57:b7:c6:17:c2:3d:e3:
59:b8:22:f0:83:79:7f:15:63:a6:d0:dd:ad:c1:40:39:27:c3:
e0:4c:e5:1b:bb:59:db:7a:33:bc:8e:f2:86:77:7d:9e:9c:19:
5d:34:0c:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:29:25 2025 by rpki-client