Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
File: KdlQvBhFV79QTPK3yUp9zsCHbWY.mft (raw, json)
Hash identifier: bhUHaukbh5RPEDZPnJdUjya6eS6jnrbDDX6dZHvJYU8=
Subject key identifier: 34:E0:D6:89:57:31:75:AE:8D:CC:F7:29:8C:7E:C6:3F:BB:61:07:25
Authority key identifier: 29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
Certificate issuer: /CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Certificate serial: 0199239EDE5A9D23DF7628EFD4093E550325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
Manifest number: 1671
Signing time: Sun 07 Sep 2025 10:00:38 +0000
Manifest this update: Sun 07 Sep 2025 10:00:38 +0000
Manifest next update: Mon 08 Sep 2025 10:00:38 +0000
Files and hashes: 1: KdlQvBhFV79QTPK3yUp9zsCHbWY.crl (hash: AfxOhtWABIfHwQYjf9wQXX80jtgUQATdoYlQExjbKEE=)
2: zbr28h6G65Bn1Q6ZX_BmInmSKTE.roa (hash: ETLOFsK2osYgbAep7Hus0i1EKEQGmJzxLIzfnOkM508=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:de:5a:9d:23:df:76:28:ef:d4:09:3e:55:03:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Validity
Not Before: Sep 7 10:00:38 2025 GMT
Not After : Sep 8 10:00:38 2025 GMT
Subject: CN=34e0d689573175ae8dccf7298c7ec63fbb610725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f9:82:8b:5e:07:2a:89:9c:d1:1a:88:13:de:
e8:4a:f1:cc:6b:6b:54:43:de:69:46:30:9f:18:75:
f8:5d:35:e0:56:8a:19:25:30:d7:73:6a:24:67:5e:
fa:86:a1:35:43:f2:9d:a4:0f:a8:48:68:62:17:40:
82:59:4f:47:0d:34:89:24:74:a7:7f:f2:9e:6a:cd:
6a:50:96:03:c3:56:48:38:80:5b:3e:9a:85:6d:35:
7c:da:1c:72:ca:1c:c7:66:21:f2:a9:70:65:4b:b3:
cf:86:89:ae:bc:2f:7f:77:b2:01:b6:83:fe:ca:28:
8c:7e:61:9e:90:90:ab:72:d2:3a:ed:a4:9f:94:e5:
88:7a:a2:8b:4f:27:7c:83:00:cf:d1:fc:3c:c8:dc:
e7:09:b8:4d:0d:29:5f:12:64:76:00:a7:18:43:a4:
09:5d:0a:ea:3e:4f:b7:de:97:a7:1a:1d:60:50:c1:
30:ec:ba:88:6f:37:b0:aa:dc:ad:ef:7a:73:0a:de:
a2:b4:43:ba:9f:9a:e4:06:b0:c1:fd:7a:be:bc:d4:
2f:9c:a2:36:30:09:69:3f:3a:3c:e2:d5:21:37:6a:
ac:9c:1e:e8:19:98:89:03:81:bf:ea:97:e2:47:34:
1a:41:75:66:bf:ca:0e:06:4f:b4:13:08:dc:2d:7a:
1c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E0:D6:89:57:31:75:AE:8D:CC:F7:29:8C:7E:C6:3F:BB:61:07:25
X509v3 Authority Key Identifier:
keyid:29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:f0:01:7e:6d:1b:eb:2f:35:14:39:ba:1f:9a:e9:bf:e6:a7:
d5:61:51:4b:0a:ba:73:36:14:90:ac:d6:1b:39:ba:29:24:19:
a1:d7:9b:15:2a:fd:76:63:25:64:dd:da:ef:b7:20:24:05:36:
65:33:18:4a:49:83:d4:93:f2:da:b7:b4:cd:2b:96:4b:60:a3:
80:94:f9:fb:60:1f:2e:09:11:8e:c5:e7:ac:20:9a:f5:56:a5:
d5:eb:0c:44:15:67:1d:2e:f5:72:c2:8b:5a:d8:35:39:e0:a6:
06:a2:6d:fb:d7:c5:d9:03:68:a8:06:54:2c:14:9b:53:25:e0:
64:79:8c:29:f4:d3:2c:d4:43:fe:06:95:cd:b2:90:9d:04:1b:
46:62:58:63:56:31:80:29:d9:08:bb:ff:1a:80:b3:26:75:68:
40:ab:00:27:58:59:c1:ff:5b:96:b4:b1:c7:f4:bc:be:bc:23:
6f:36:95:54:56:52:b7:c0:30:d9:bd:aa:80:63:0b:0a:ae:0b:
f8:1b:83:e0:f3:4d:79:98:91:51:50:38:35:63:bb:7d:9f:2c:
76:01:09:1e:ac:75:82:e5:71:ee:00:35:e3:9b:33:b0:d5:6a:
19:90:80:2f:54:4b:2d:8e:e1:64:48:63:5e:de:5c:a3:8a:62:
b2:e0:62:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:36:17 2025 by rpki-client