Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
File: klA6rxJq980DHKw84eOYwXS4LgI.mft (raw, json)
Hash identifier: xQgMgkP0945cTthJdMsxDghZFsajwhH7diKII/fsy6A=
Subject key identifier: C1:DE:7D:8E:F9:80:5C:B5:EC:81:A3:FA:EA:C3:8A:C0:4E:EF:2F:02
Authority key identifier: 92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
Certificate issuer: /CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Certificate serial: 01992330EE3AD4435AF6162DA0CFDAFE3E01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
Manifest number: 0DD5
Signing time: Sun 07 Sep 2025 08:00:33 +0000
Manifest this update: Sun 07 Sep 2025 08:00:33 +0000
Manifest next update: Mon 08 Sep 2025 08:00:33 +0000
Files and hashes: 1: LyKlqkZe1vL0FqTF3iiSvFK7hTQ.roa (hash: 2Vj99SsHB7IFNM1FIg40rxpKy12rqtdylkU9a0vtpMc=)
2: klA6rxJq980DHKw84eOYwXS4LgI.crl (hash: 4gUrgKCPzVxE1Ddn24uvLVBlnixA+/xEmKRPngUKLw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:30:ee:3a:d4:43:5a:f6:16:2d:a0:cf:da:fe:3e:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Validity
Not Before: Sep 7 08:00:33 2025 GMT
Not After : Sep 8 08:00:33 2025 GMT
Subject: CN=c1de7d8ef9805cb5ec81a3faeac38ac04eef2f02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f4:2c:d9:6c:c0:e8:72:a0:81:e6:d4:44:f5:
b6:e7:f8:c9:41:e7:ff:b2:14:c8:82:5f:36:c5:20:
1f:22:39:eb:9e:81:db:fa:61:32:9f:cb:50:43:55:
ca:60:95:d3:f2:37:60:22:2d:e0:5f:b1:89:14:a4:
53:ff:c4:8e:fe:ea:c3:5c:13:b6:af:b5:49:bd:85:
2e:77:21:29:ab:6c:e5:eb:5b:f0:f9:43:ea:5b:fe:
d3:2f:96:d3:da:41:99:91:7d:eb:91:b4:d2:8c:36:
de:e4:32:06:87:cd:b5:f3:1e:56:6c:5d:88:76:cd:
dd:6b:2c:63:46:cd:ed:72:c5:98:68:af:9c:5b:62:
b3:5b:21:a0:80:15:0f:12:7e:4a:be:ea:a3:d4:3d:
0b:07:9c:cc:cd:c2:c9:47:07:15:77:1d:32:33:26:
31:18:53:0f:9c:9e:1d:01:95:9e:7f:4a:f9:72:a4:
d3:96:b6:a5:32:ca:79:69:3c:39:e7:b2:7c:97:de:
6f:9a:88:66:05:f7:66:20:56:84:4a:0e:c5:e4:76:
1b:db:c5:a2:6e:b5:8f:1e:e9:d4:c4:84:7d:83:6f:
2b:f3:b5:48:8f:6f:77:97:95:f2:dd:81:18:7b:bc:
81:d4:b9:13:60:a3:27:7b:7d:ea:bf:a9:b6:36:42:
4e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DE:7D:8E:F9:80:5C:B5:EC:81:A3:FA:EA:C3:8A:C0:4E:EF:2F:02
X509v3 Authority Key Identifier:
keyid:92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:68:31:29:2d:79:6b:54:d1:2f:22:07:ec:72:eb:21:42:36:
7b:3a:bf:4f:c8:dc:c6:e0:a4:e5:2e:27:23:00:04:dd:93:f3:
79:cf:84:d4:a1:c8:52:7f:e5:82:a6:b0:38:35:85:36:a7:7f:
ae:f6:98:02:94:76:c1:64:ec:ef:76:ec:28:ee:6b:24:4b:57:
b0:17:5a:e6:7e:8a:d9:54:0a:71:f0:db:0a:99:26:80:a7:88:
ab:b7:74:07:86:3c:d0:14:e0:ba:22:08:cf:8d:2e:85:d6:c9:
b7:3c:67:fb:02:b0:57:e6:1a:97:50:f3:ea:96:6f:de:d8:46:
6c:d8:db:84:20:6c:46:47:1d:9f:38:57:5b:1e:fe:a8:25:49:
ab:d8:25:25:37:cb:0d:ad:b5:12:bf:9f:df:3c:75:f5:52:fb:
3e:96:05:df:04:c7:d7:bf:3f:34:7a:b4:ba:ba:a6:a9:6e:a8:
86:f0:97:d5:64:8a:99:ba:55:f0:7b:39:73:c9:76:c1:fb:fd:
01:e3:4d:3d:2c:fd:61:7c:a3:16:c3:34:26:2a:54:27:07:cc:
f9:ea:12:5f:f4:65:f7:39:51:95:2a:47:03:51:9b:00:2b:c9:
09:a1:c7:78:df:e3:28:55:98:d9:40:a8:ad:41:de:ed:7c:e2:
1f:a0:36:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:12:10 2025 by rpki-client