Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: 1NlBskRHTyT46nTHW6SG12yp7nShZANsZ0hxVv+UoMk=
Subject key identifier: EA:F4:7F:06:39:E3:2B:39:91:0F:42:E6:BC:81:77:E5:25:23:0B:03
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019921B1D5AF9B61CE123B9F2AE81837702C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 167B
Signing time: Sun 07 Sep 2025 01:02:06 +0000
Manifest this update: Sun 07 Sep 2025 01:02:06 +0000
Manifest next update: Mon 08 Sep 2025 01:02:06 +0000
Files and hashes: 1: Lx4QL8l0KgaffC4QXEWzVHcEawc.roa (hash: DxG2rV8lArm7XTxrRaRlBv42lE1FblGks/y6Gbm7tWY=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: fXZhlXZn1RGCCppYBZbp1uMGVOqQN6jjx68d6YlMOH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:d5:af:9b:61:ce:12:3b:9f:2a:e8:18:37:70:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Sep 7 01:02:06 2025 GMT
Not After : Sep 8 01:02:06 2025 GMT
Subject: CN=eaf47f0639e32b39910f42e6bc8177e525230b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0f:1c:5c:e4:3e:9b:9f:a9:7d:23:e7:e5:06:
f5:24:1b:d4:ab:77:c0:b5:f8:e3:1d:eb:e5:da:ab:
8b:6a:1b:91:5a:19:af:f5:6e:f4:d1:77:ff:20:39:
b6:8c:d3:f0:c2:22:dc:86:98:58:a3:e4:ce:c5:7a:
b1:0a:52:35:e0:6f:a2:a1:c9:27:df:dc:29:af:f1:
cb:f7:33:69:77:1e:48:82:10:93:51:db:02:39:c4:
d5:fe:dc:ff:7c:74:58:ad:eb:e2:2b:57:da:91:f9:
9f:fa:4d:58:f8:85:4c:e1:fa:7e:7c:c7:74:72:fa:
e3:c7:e7:4d:6a:ce:e6:bd:7a:3b:97:95:e9:35:8a:
18:85:f2:b8:5b:89:3d:0d:22:41:99:86:a9:8a:df:
ed:9b:c8:c4:a2:0a:ff:88:fe:c3:3c:19:25:40:37:
bf:c7:40:e7:67:49:61:52:84:d3:1e:82:7e:d3:2f:
cb:6a:68:b6:b8:98:e0:8c:8a:9b:d7:c7:7c:ca:f1:
92:53:cd:b4:c2:ac:d5:dc:cd:db:34:4d:c7:49:a6:
45:aa:af:c6:af:5a:e4:f6:66:a5:98:d8:23:41:95:
0b:a6:d0:4d:81:e3:e6:92:66:4c:c1:4c:ba:c5:f2:
d7:e6:bc:e7:15:64:88:b5:42:ac:ad:62:00:19:48:
2f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:F4:7F:06:39:E3:2B:39:91:0F:42:E6:BC:81:77:E5:25:23:0B:03
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:03:d3:0d:19:f1:2b:91:9a:7c:a0:b6:70:5c:88:e6:70:1d:
b0:fd:02:8d:95:65:e8:f4:9a:b2:4e:77:22:b0:cb:0f:cc:17:
d3:17:5c:a5:15:e8:5a:33:30:95:9c:fd:cd:b2:42:c1:3e:07:
d2:5d:c0:16:3d:34:ae:2f:13:85:52:c8:d7:75:3e:37:21:c2:
60:e9:a7:32:65:e9:da:d9:24:32:fe:05:01:78:18:9f:f0:a8:
2b:6f:cb:bc:69:fd:4e:b4:c9:2a:b6:94:9f:f8:8a:85:17:d4:
56:48:f0:88:63:8f:6c:e4:86:4d:63:a1:5d:2d:f6:b1:b5:17:
f4:95:ed:83:e6:19:b8:e9:e7:ae:83:83:b5:f3:0c:83:88:61:
48:58:15:fb:9a:97:93:40:5f:f5:b5:89:ac:8e:bb:a0:f9:d9:
d7:1a:37:a6:8f:21:92:35:29:22:a8:44:ee:cd:5f:63:6e:9c:
8f:41:3c:76:30:3c:da:ae:b6:e4:52:0f:a2:db:0d:1c:10:0c:
99:13:4a:84:bc:1f:1a:8c:f5:16:45:be:60:ad:9d:c4:12:49:
66:99:5e:e0:ca:c5:0e:ab:3e:2d:48:ed:7c:b2:05:af:3b:71:
d5:25:45:9b:34:56:25:65:e8:57:c9:5a:96:b3:ec:bf:d8:ea:
c8:e6:94:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:18 2025 by rpki-client