Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier: WGk9LWoNMfXI+3WNx4Q+Gyh7h5IK/FS1d6WIOf/eI38=
Subject key identifier: B3:43:78:EF:D8:43:67:B7:8C:EE:A6:52:AB:62:37:7D:2D:46:0C:43
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 0199337FF45E5BEBE5CB6FF8329904B1DB59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number: 0A6E
Signing time: Wed 10 Sep 2025 12:00:47 +0000
Manifest this update: Wed 10 Sep 2025 12:00:47 +0000
Manifest next update: Thu 11 Sep 2025 12:00:47 +0000
Files and hashes: 1: REM4mLJG7EnsBgBtsv162D0wKhg.roa (hash: lvlcTJIeXHpqeTqGfZTwiMwS8+bWAY5YDqELcR5epC0=)
2: Tkqht9ZvM7aeuWPx5RB29sIJQsY.roa (hash: GjW60rpkATBwTZcA2wdYPAVMSlJOCTBR0jsl1OrgYgE=)
3: XddNSlbeSdL2BDOBSBtXKwmbrLQ.roa (hash: YTwv2DMMu/UpDiaZkqxeVtYaDul2+Oka8KEh6z36NkA=)
4: b10-uyzSDsE84X1NxkfqXsdCqjM.roa (hash: 656/1JM/Gtv27/XvapYOtDJ81ebQFKIEF9n9ARvTwoo=)
5: bXzPu6L2HXchD9ZujQmLXPM_bDM.roa (hash: KqR406WMI/nRws1aNrGcGP+z2vKLl1H8bxnYaFt2+LA=)
6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: FOjr7MtZKBgyNVSGbPetzP7L53DZCzCFmm2l7w3qCZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:7f:f4:5e:5b:eb:e5:cb:6f:f8:32:99:04:b1:db:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Sep 10 12:00:47 2025 GMT
Not After : Sep 11 12:00:47 2025 GMT
Subject: CN=b34378efd84367b78ceea652ab62377d2d460c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ec:01:89:54:86:b3:0a:ff:60:9a:14:5b:38:
7e:ae:16:b3:a2:12:38:43:a1:96:d0:c2:d3:4b:c3:
e8:18:52:d2:cf:15:d6:d9:42:49:13:31:d4:f4:45:
c3:d3:e8:40:f8:a1:13:52:f9:0c:66:18:69:12:05:
a7:51:5d:36:89:5f:11:ed:f6:48:03:28:7b:31:d3:
fd:eb:49:b3:83:3e:cf:99:4f:a2:a2:32:d4:8b:61:
c1:59:89:24:92:a5:53:30:e5:a5:ac:69:10:23:5c:
8d:67:97:3a:21:02:08:e1:00:cf:cb:d9:bf:3d:a0:
54:34:43:85:e9:0e:a3:b6:88:3e:4d:3f:05:ff:24:
02:f8:25:97:6d:02:2a:d3:c6:ce:16:aa:77:b4:b7:
85:26:ee:a9:ee:80:ed:5d:a5:38:8b:f3:d0:03:55:
cb:d8:d7:4b:f9:bf:a7:f3:46:dc:3f:21:01:64:71:
26:5f:50:e8:a9:65:92:e7:93:26:87:0d:4f:b9:ed:
f4:18:22:da:9b:9b:12:61:e4:49:24:6d:80:4c:6b:
e5:fa:5e:66:5f:48:ec:05:d7:24:f6:ce:8a:28:19:
6c:f4:47:ea:6b:91:a9:b9:74:58:83:92:54:3b:2d:
72:31:16:3c:a9:53:41:1e:b2:6f:d7:94:e9:38:71:
7f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:43:78:EF:D8:43:67:B7:8C:EE:A6:52:AB:62:37:7D:2D:46:0C:43
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:b5:86:15:74:50:b7:1a:4d:a7:21:85:2a:59:9c:ee:b9:49:
9c:c4:27:25:df:85:4e:45:3f:5b:89:6d:08:9e:70:d1:6e:c0:
a8:ef:ef:d6:34:4b:f3:b3:58:37:31:6e:17:5b:fd:47:34:9f:
4d:64:d5:26:58:d5:cf:93:4d:4d:67:ad:e0:73:53:ed:fb:44:
6c:e8:66:df:d5:e6:6d:c0:be:5b:ee:7e:27:48:3a:14:70:25:
e8:70:73:e1:c1:e3:98:87:ba:0d:4b:89:37:7b:75:18:f0:d8:
3d:7e:c8:4a:6d:53:36:90:4d:3b:78:f9:b9:9a:47:f8:98:92:
12:94:a9:51:35:2e:79:b1:3c:3a:2e:e1:8e:ad:24:71:63:1d:
eb:c2:e2:8f:0c:a3:5e:ec:58:d7:1c:3a:f7:36:34:74:f8:e9:
4f:ce:57:a5:43:b0:16:1e:56:da:05:11:70:2a:bf:2b:41:59:
c9:bb:5a:ee:0e:52:f3:b8:bc:18:58:ec:bb:1b:49:c2:01:ec:
f7:d7:fc:cd:c1:ad:91:ce:ce:b1:27:b8:a5:55:0a:31:b0:01:
ef:d1:7b:55:5c:62:b9:f1:b9:2f:6b:22:0e:21:de:dc:42:ec:
83:ac:c1:13:b1:11:5e:b3:2e:3f:00:d5:30:e8:98:d3:81:44:
2e:9e:e0:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 13:41:02 2025 by rpki-client