Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: S0Wp3iFjApybGc3ET8dzKt81b6gkr45lO6i8mVA+Ts8=
Subject key identifier: A8:49:46:F1:E7:C9:F5:80:39:F6:83:75:95:5B:32:AD:CB:70:13:FB
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 0199228C905DBAFAFB217A7F36E6BEA754EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 0362
Signing time: Sun 07 Sep 2025 05:01:01 +0000
Manifest this update: Sun 07 Sep 2025 05:01:01 +0000
Manifest next update: Mon 08 Sep 2025 05:01:01 +0000
Files and hashes: 1: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: i9r0ufBTjGO1r7YpyAJcq/GO2m9tKgOAkxLqCsCacFs=)
2: ffvaic9mo-Ox_7Jsdhd4jhWeyvM.roa (hash: nAU1XWM3o+xHaVb0+VtmU8Q3s90CIRxbMQo+s7S+UMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:90:5d:ba:fa:fb:21:7a:7f:36:e6:be:a7:54:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Sep 7 05:01:01 2025 GMT
Not After : Sep 8 05:01:01 2025 GMT
Subject: CN=a84946f1e7c9f58039f68375955b32adcb7013fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:72:7f:ae:fb:bf:c7:6c:14:f3:68:d9:57:b1:
7c:2a:04:61:73:7a:ef:2e:29:f0:a4:82:ce:2c:be:
50:79:eb:e5:91:f7:cb:a9:9b:e8:46:41:df:29:d3:
22:a4:b8:e3:3f:8c:70:c5:d2:a5:99:27:a6:5a:53:
a1:e5:95:09:2b:9b:90:57:22:4f:d9:40:60:5b:a2:
05:27:a8:9b:15:b4:00:80:65:c6:25:23:27:a6:c0:
40:a2:51:72:1f:39:fb:2b:83:66:51:2a:cb:b3:7f:
89:84:03:18:fc:af:c4:05:30:2f:ec:8b:9a:9c:bc:
0c:45:ed:a9:75:b1:fc:64:af:46:b1:5b:5d:48:ec:
b1:d2:75:b0:51:a3:f9:4d:d6:ac:be:92:7b:23:2b:
ed:5d:f3:55:7d:fb:de:06:60:62:18:c0:b5:16:70:
4c:77:08:8d:02:2e:6a:0f:df:f2:1e:5b:a5:de:d5:
dc:98:62:e6:fa:04:9e:42:31:b9:33:4b:4c:91:a5:
6c:68:c2:00:dc:28:58:13:e6:57:cd:2a:c3:ee:00:
ec:f4:5c:4d:9e:13:3c:93:c8:0f:26:4e:59:be:39:
ff:5a:89:cd:e9:18:b7:ce:94:66:1a:22:48:a5:db:
41:b7:4c:37:42:74:b3:04:b8:a5:fa:63:59:85:92:
ad:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:49:46:F1:E7:C9:F5:80:39:F6:83:75:95:5B:32:AD:CB:70:13:FB
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:0e:bb:41:53:fa:bd:cb:70:19:05:8b:2c:95:56:28:11:2e:
8e:0b:21:e4:2a:0a:3e:c0:fc:2b:b7:9f:c3:14:eb:72:86:56:
67:50:29:d0:79:df:23:9b:d3:d9:88:6f:6f:95:f3:d4:cd:f7:
94:64:f4:07:b3:66:f4:e9:00:d8:ac:86:36:40:ab:67:4a:f2:
29:92:63:2c:fe:de:5f:b8:0c:81:ba:12:54:8f:2b:6c:f2:0a:
30:d3:b6:1c:9b:64:6a:05:05:ab:53:cc:6a:75:04:0d:21:2e:
7d:95:0f:ab:85:87:96:00:9f:07:de:41:70:8d:3f:db:92:75:
b9:cb:7c:7c:3f:b3:85:44:9c:36:97:d0:35:1d:8e:ac:14:47:
1e:9c:86:20:33:95:ed:90:aa:58:f4:a2:18:01:65:f5:6f:9d:
53:e0:47:90:ea:cf:ce:32:51:80:fa:3c:cb:bb:16:fa:78:a5:
97:ce:74:28:cd:99:e3:dd:a7:26:3d:95:70:9f:76:6a:ee:dc:
a8:1e:a1:66:ad:b1:45:86:85:a8:92:5f:20:63:52:99:91:44:
f6:9f:ca:9f:19:d0:cf:98:68:97:3b:e5:aa:30:ae:bc:3a:9e:
07:23:ae:1f:32:4d:5c:f5:dc:03:bf:d3:0c:5d:25:e0:e4:09:
f7:3c:6e:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:32:51 2025 by rpki-client