Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
File: KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft (raw, json)
Hash identifier: aaquQxwWSQKoDthtJvbnOVy3l8WjUyJXmvvTJ9JaIok=
Subject key identifier: 42:D0:06:4A:FC:E8:52:CB:AA:59:0D:40:EC:25:59:3F:D1:D6:1F:F4
Authority key identifier: 2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29
Certificate issuer: /CN=2aa380e230cb334361b4861e2f694124387f8529
Certificate serial: 0198CACAD191F7A0D1114B1FABDB65BE2EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
Manifest number: 1641
Signing time: Thu 21 Aug 2025 04:02:26 +0000
Manifest this update: Thu 21 Aug 2025 04:02:26 +0000
Manifest next update: Fri 22 Aug 2025 04:02:26 +0000
Files and hashes: 1: KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl (hash: sZVYyPmts3+GvQEd61MXZv47tffWWTLn7y2kOTyeOZg=)
2: SjvSMbvX_pvw3i1Pn6Bx1TTyu6U.roa (hash: kgWKItzA9z25TXtV7XlZgfoMV6KRvWKz0GsOPfm6isI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Aug 2025 04:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:ca:ca:d1:91:f7:a0:d1:11:4b:1f:ab:db:65:be:2e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa380e230cb334361b4861e2f694124387f8529
Validity
Not Before: Aug 21 04:02:26 2025 GMT
Not After : Aug 22 04:02:26 2025 GMT
Subject: CN=42d0064afce852cbaa590d40ec25593fd1d61ff4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3b:79:f3:67:f2:46:40:56:1b:68:74:bd:0d:
15:5b:83:a0:78:79:a8:cd:38:d9:ef:f8:7b:14:7d:
f9:3c:62:42:3e:8a:44:b1:35:21:5f:63:e8:43:64:
1d:24:83:4f:f0:ab:c0:7f:02:22:e6:1a:48:6a:11:
d9:3b:7a:1b:df:06:2a:f6:ca:0f:c0:e9:30:20:77:
03:95:53:7f:2e:9a:b2:3c:4c:2d:9a:fa:91:81:00:
33:15:26:6d:12:ae:b0:37:54:6a:9a:46:35:7b:98:
1d:11:87:fb:b0:54:dd:53:51:24:fa:b2:79:e4:08:
4b:92:97:2d:fb:6f:14:2e:c6:d1:bd:1b:ae:52:0c:
34:67:02:3a:a6:ab:97:22:a8:e4:a7:6e:32:80:d4:
fd:f4:d1:95:18:97:3f:33:9b:fd:4f:ff:f5:27:b9:
d6:31:12:40:76:41:b2:12:e5:ea:68:e6:27:97:42:
aa:e1:91:2a:a4:83:a3:bd:ed:24:d1:84:4f:82:24:
80:f5:2d:c0:b8:14:d3:76:0a:df:e0:b8:e0:14:76:
8f:08:8f:aa:96:29:29:76:36:ea:28:2b:18:6e:a0:
36:a3:b7:63:02:f1:33:a4:5b:97:51:6d:7d:75:80:
88:47:26:5d:5c:34:05:fa:50:a4:d2:b4:62:c7:82:
5e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D0:06:4A:FC:E8:52:CB:AA:59:0D:40:EC:25:59:3F:D1:D6:1F:F4
X509v3 Authority Key Identifier:
keyid:2A:A3:80:E2:30:CB:33:43:61:B4:86:1E:2F:69:41:24:38:7F:85:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqOA4jDLM0NhtIYeL2lBJDh_hSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f2c803-43c8-44bb-9dd0-651229830170/1/KqOA4jDLM0NhtIYeL2lBJDh_hSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:02:75:b7:62:aa:ff:1d:e8:9c:46:33:ab:07:8e:cf:0a:20:
bf:c9:51:59:2b:f6:05:1a:59:2c:3c:99:b8:62:6d:7d:a2:1f:
22:74:e2:92:0b:29:7f:c6:52:1e:20:be:74:56:9e:60:b6:f6:
35:de:75:9b:8e:17:df:86:17:db:52:91:d0:1f:1b:a7:77:e9:
c8:e5:a8:31:00:80:2a:3a:c5:8d:9c:42:04:58:80:50:44:68:
a5:3b:56:24:f7:df:f0:99:73:7a:ac:ca:e5:11:c5:bb:62:25:
84:f7:3b:8a:bf:c7:d4:24:ef:e7:4b:04:3f:ff:67:90:0a:da:
80:c6:94:e2:77:43:db:ce:5d:f3:9a:ca:14:9d:96:d3:ee:6d:
44:23:22:2e:a1:41:63:19:cb:a2:fe:39:8a:f9:b8:1e:d9:08:
6f:6d:a7:86:26:c3:a3:37:53:ca:c7:18:8c:80:9a:91:8e:04:
ef:9e:8b:25:83:d7:91:61:0c:84:8b:51:77:40:e7:4a:ea:13:
03:73:11:f7:89:3c:cd:d8:1a:ae:0a:8a:01:0d:46:7b:8c:9b:
66:61:46:fd:42:a3:63:69:95:ac:99:43:c8:45:96:e1:67:36:
27:94:c7:66:0e:42:3f:e0:e7:d1:80:df:92:9a:c9:07:fe:e5:
dd:9d:86:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 12:47:05 2025 by rpki-client