Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
File: KaA5l7KPWbCAMciYQH3V5RN93bE.mft (raw, json)
Hash identifier: qnOcOW2ARw1tp3wHJhzLPMXFFwFeJ6flTpgk9+vgYeU=
Subject key identifier: 21:EB:4E:94:83:A8:F6:8C:C9:29:A3:A6:71:30:FF:9D:53:F8:5C:69
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 01991CC1ADE5DAA09A9D97DE03E6209731F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
Manifest number: 135A
Signing time: Sat 06 Sep 2025 02:01:18 +0000
Manifest this update: Sat 06 Sep 2025 02:01:18 +0000
Manifest next update: Sun 07 Sep 2025 02:01:18 +0000
Files and hashes: 1: KaA5l7KPWbCAMciYQH3V5RN93bE.crl (hash: QeEmxWZvBfwAK3Ej4fMc/bjvTX61MfFA/jix2nca988=)
2: TFGcxJc1hz5sSLNvCaBuhb3JcFY.roa (hash: IVGRn6jYdKaVvVkrmcrSKzMRsOoEhE2vOI0riR6WQTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 02:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1c:c1:ad:e5:da:a0:9a:9d:97:de:03:e6:20:97:31:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Sep 6 02:01:18 2025 GMT
Not After : Sep 7 02:01:18 2025 GMT
Subject: CN=21eb4e9483a8f68cc929a3a67130ff9d53f85c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6b:d8:98:42:8e:34:74:10:b4:d4:e6:3c:d8:
e1:ac:cc:b2:bb:98:56:7d:60:b8:8f:5f:9a:8c:2e:
c3:98:aa:11:ca:b1:a3:57:72:92:17:e2:31:55:32:
8a:93:05:df:ba:96:c7:46:8d:6b:b2:75:cc:6a:49:
02:6f:2d:eb:20:dd:cd:80:e6:67:db:76:ed:e5:98:
a8:6d:47:8a:0d:d6:94:c2:a0:c2:9e:85:aa:19:f8:
8e:c9:63:3e:9d:bb:af:60:5e:9f:31:62:66:93:2b:
29:ab:4a:4a:71:e3:e6:f0:5d:9f:44:ae:33:8f:53:
a3:ec:69:68:ff:68:48:3d:83:b7:91:0f:6e:26:39:
72:bd:c0:f2:5d:1d:67:46:40:f5:e0:91:26:6b:7b:
63:25:b8:24:57:f6:bf:2e:e1:61:37:db:74:e8:8e:
0c:d1:37:d3:93:f3:a9:20:f6:3c:6d:16:9e:b2:7e:
4b:1e:8d:f7:ae:cb:87:6a:57:1a:4f:08:ba:dc:09:
de:e0:6e:f6:b6:f7:39:0e:69:a4:0d:c0:38:1b:fd:
1d:6c:51:32:17:97:86:b9:d0:f9:ca:7f:91:6b:5f:
a5:55:74:34:04:57:81:94:58:e7:f7:6f:7f:f4:3f:
12:9b:6a:18:b9:df:2e:0c:c2:f6:cd:61:ce:4e:99:
bc:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:EB:4E:94:83:A8:F6:8C:C9:29:A3:A6:71:30:FF:9D:53:F8:5C:69
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ea:61:99:56:64:9f:d6:2d:fa:c0:9a:1e:87:de:9e:f1:82:
cf:43:c6:33:c0:dd:ab:95:ac:d8:6c:40:41:42:10:5a:d4:de:
98:37:9c:b1:ae:c8:ef:45:c2:80:cb:54:ba:23:d4:5a:c1:5c:
48:7e:cb:db:b7:f3:f0:47:d5:1f:83:e1:df:a3:f3:27:f8:41:
d1:d0:45:0e:8d:77:49:11:14:81:7e:8c:6d:af:bd:01:e7:0b:
63:ad:98:1f:eb:1f:91:56:d0:76:48:70:26:d7:7f:bf:34:10:
c8:26:ed:30:5e:e6:b8:9f:90:75:e8:12:fa:8b:e4:81:11:02:
cf:33:88:a8:c7:14:3a:e5:1d:25:8e:fc:e6:eb:49:3f:b6:d2:
9d:2c:c6:c4:36:cb:ed:6a:81:6d:cb:fc:7b:a7:cc:dd:2c:4b:
f4:d9:22:58:1f:71:b7:3f:93:90:35:9c:87:b4:50:28:1f:0c:
5e:a4:53:05:83:49:d0:63:b6:a3:23:ee:3c:33:f4:1d:00:14:
66:fa:97:17:70:9a:e8:11:25:1e:03:f3:5e:fb:97:4b:c2:35:
fc:f4:c8:6b:d6:02:cf:a3:89:8f:3a:7a:37:12:3e:73:df:55:
21:73:1c:80:eb:4f:71:75:61:72:0e:aa:6b:ef:65:90:f7:ad:
d1:97:ba:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 11:46:54 2025 by rpki-client