Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
File: kR2gx6mUBcRrqthMudk-g0WZyOE.mft (raw, json)
Hash identifier: Z0aKsR+ukb7kf9+shuGMJ5aOBhi71+Wegjfdllt9sQ4=
Subject key identifier: 7D:B0:C4:D2:24:FC:98:4A:29:0E:C3:ED:78:81:3D:55:1F:BE:64:34
Authority key identifier: 91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1
Certificate issuer: /CN=911da0c7a99405c46baad84cb9d93e834599c8e1
Certificate serial: 019848529E2F590D29CE28F831ED5C47E35C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
Manifest number: 1602
Signing time: Sat 26 Jul 2025 20:00:30 +0000
Manifest this update: Sat 26 Jul 2025 20:00:30 +0000
Manifest next update: Sun 27 Jul 2025 20:00:30 +0000
Files and hashes: 1: EpBy5lEF1BDLVRWSQ7QWoN5zbUU.roa (hash: 1y3tSjFaZERbPwiKrhlP5/eJ5GlotVuhhvMAWtoaIrk=)
2: kR2gx6mUBcRrqthMudk-g0WZyOE.crl (hash: SgWCDJseUkDGrpVO5L5cFlZwoUA3UOFqtKOM2Qy97n0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:48:52:9e:2f:59:0d:29:ce:28:f8:31:ed:5c:47:e3:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=911da0c7a99405c46baad84cb9d93e834599c8e1
Validity
Not Before: Jul 26 20:00:30 2025 GMT
Not After : Jul 27 20:00:30 2025 GMT
Subject: CN=7db0c4d224fc984a290ec3ed78813d551fbe6434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3c:31:16:05:7e:56:e8:dc:dc:1f:c8:a2:9b:
64:cf:46:ed:31:92:d7:ff:7e:21:ae:5f:66:23:54:
e2:8d:b3:b7:a8:8e:58:8e:75:f3:ec:45:4f:a1:27:
64:e6:7d:2b:2c:9e:45:97:61:12:6e:d1:95:e6:f9:
4d:47:1c:d3:3a:53:93:17:db:3b:fd:3c:c3:11:68:
6c:22:75:8c:73:15:9b:6a:b9:cc:c4:87:55:78:b8:
6f:83:99:ee:82:41:7e:27:79:06:89:04:b9:72:cb:
a8:f1:59:c3:df:ec:8c:71:32:3d:06:42:3f:26:63:
4e:63:b5:e5:2c:08:70:a9:0a:84:40:6d:b7:b1:1e:
d6:81:b6:a2:1b:aa:1a:ab:9e:09:f0:56:89:73:6c:
c5:cc:01:8a:f7:c9:c6:ac:7d:7e:95:2d:5f:6e:7f:
e5:03:75:32:b5:fb:c0:1f:75:b3:33:a9:7f:c3:63:
a6:46:1d:1e:a2:f1:8a:18:55:4a:04:8d:ef:b9:2d:
23:dd:85:07:58:05:85:48:5e:51:9d:ae:35:da:40:
2a:1f:00:ea:5b:3d:fb:01:36:7c:a9:2e:73:a0:1d:
bd:f7:9f:e7:c5:ae:08:e7:e5:0a:64:5d:67:05:01:
d2:4b:5f:d5:4f:a4:59:5f:dc:42:47:3a:f6:04:28:
07:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B0:C4:D2:24:FC:98:4A:29:0E:C3:ED:78:81:3D:55:1F:BE:64:34
X509v3 Authority Key Identifier:
keyid:91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:9f:ef:86:8f:62:d7:35:a6:06:b8:46:a0:24:9d:1d:b1:3d:
a3:9b:ed:14:31:1d:d0:cf:57:6f:0d:25:ac:43:19:90:04:ab:
8b:58:f3:88:aa:2d:3a:9b:5e:c3:07:0a:72:a6:19:32:fb:0c:
ad:1d:d5:76:7b:7c:33:fc:66:1c:f9:27:48:aa:0b:ed:49:19:
95:59:ba:05:b0:a7:3d:4f:8c:a9:9b:58:6c:50:cd:df:46:a3:
5d:ea:15:e2:80:4b:5d:b0:32:26:0e:6e:6c:6f:d5:c2:26:9c:
e3:dc:7e:3d:a2:45:3a:93:ed:28:2e:7c:7d:a2:5f:af:41:45:
40:a3:8e:fd:8b:46:30:8c:7e:c8:7e:69:87:99:46:51:05:0e:
0b:6f:79:24:09:bd:18:a4:57:1e:68:1b:60:d0:9c:f0:96:73:
e7:5b:20:b5:93:5e:04:41:e4:72:26:a5:21:c3:3e:8c:44:01:
77:a0:64:bb:bf:e9:df:1a:96:20:dd:96:22:e7:9b:d8:f9:6d:
93:0b:60:e8:4f:61:4c:f9:c6:7b:39:af:ac:eb:3b:94:44:57:
a9:13:fe:29:4f:f2:45:f1:10:71:2c:87:38:52:4f:5a:41:a6:
e7:9f:5f:f5:02:df:c0:d5:59:3a:d4:15:e7:21:a0:d1:38:23:
6e:d9:a2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:21:04 2025 by rpki-client