Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: jqlyRCOLGM61bYyg7zRsrQWCgndPJPBnV8XDRQWOwqU=
Subject key identifier: A4:A8:C9:A2:81:21:0A:F0:74:43:7E:98:BD:48:3B:C5:45:48:78:72
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 01993981AC80EF08DA1DEB521BBFC21C7E0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 15FA
Signing time: Thu 11 Sep 2025 16:00:23 +0000
Manifest this update: Thu 11 Sep 2025 16:00:23 +0000
Manifest next update: Fri 12 Sep 2025 16:00:23 +0000
Files and hashes: 1: CgAYwcYqjGUwI5cuY-inYF9ViL4.roa (hash: DG9lxho2Qdp+1bj1jPdlMwaM6onKyvGHv7zkZeOCV70=)
2: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: F3eOp/XH0aV/ZQ7xpu1bxGqu3k6UKKhIi7oQ3Ga8U8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 16:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:39:81:ac:80:ef:08:da:1d:eb:52:1b:bf:c2:1c:7e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Sep 11 16:00:23 2025 GMT
Not After : Sep 12 16:00:23 2025 GMT
Subject: CN=a4a8c9a281210af074437e98bd483bc545487872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d1:60:49:a8:95:b0:f2:65:cd:44:4b:06:15:
d9:4e:36:6e:d1:1b:11:5b:d6:aa:5c:db:98:28:46:
5d:bd:3f:93:88:9e:35:26:67:c7:0d:cb:99:89:c2:
1e:22:e6:d2:71:4c:bc:d5:e8:4c:d0:96:92:72:c3:
62:39:3a:0e:cc:5e:4c:4e:f7:36:84:f9:bc:1c:c4:
fe:c3:a7:c6:57:5f:5e:2c:7a:45:ac:41:b6:9f:6a:
99:86:0c:e4:bb:05:ea:94:82:e0:18:40:a3:82:ad:
06:ba:16:8a:db:b1:ab:3e:24:f5:3c:6f:98:5f:d2:
09:b8:9d:1e:00:dc:cf:33:63:7a:e5:38:95:2b:4f:
22:5c:04:c5:2c:94:0a:3f:c2:fe:d1:72:d2:d4:fe:
c3:6e:2f:92:54:16:39:5f:26:e6:16:ad:5e:77:52:
ca:ad:2e:6a:e0:b0:1d:58:39:fc:08:df:ae:1b:94:
6e:04:7e:7a:ed:df:2c:da:e0:f5:68:2a:13:f5:62:
8c:e1:77:d1:b4:fa:af:15:a6:a0:4f:89:59:c2:ff:
f9:c7:51:2a:d0:7a:5c:aa:a7:4f:6d:f6:10:9a:38:
8f:ed:6f:05:4a:57:a1:d4:9b:14:4a:03:29:e5:b8:
36:2f:92:5a:63:10:74:56:33:01:b4:86:55:87:7c:
3b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A8:C9:A2:81:21:0A:F0:74:43:7E:98:BD:48:3B:C5:45:48:78:72
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:ba:37:25:00:f7:40:7f:ea:f7:36:18:96:03:8a:b3:24:0f:
ea:e2:c8:c6:fe:2a:3f:82:cf:27:38:29:18:40:1b:75:a4:5b:
c8:b0:09:06:24:a7:fc:25:c1:28:47:e5:80:91:08:f1:cf:0b:
08:f6:ea:01:4f:90:01:2b:13:35:3f:6d:bc:a9:72:9a:29:51:
bd:50:a4:51:91:ea:c1:99:70:bf:a0:63:70:05:30:ae:24:34:
4b:ba:b2:b4:e9:1c:94:af:43:da:cd:db:ea:79:f1:9d:2f:34:
e6:d2:e3:34:fc:25:4e:9b:cf:26:a1:ae:bf:30:e3:db:1a:1e:
e2:3e:53:22:94:6d:2b:e5:b3:00:c1:ae:ca:3c:76:04:d3:08:
cd:c8:f9:6d:e3:04:d6:85:e1:ca:9f:f5:98:61:3a:4f:6f:ad:
18:7f:da:f2:2a:5d:b2:34:25:76:ed:09:1e:fd:85:ab:c7:bb:
3d:d7:84:70:ba:61:78:99:94:60:11:dd:48:cc:ad:b6:cb:9d:
6b:9d:53:1d:8a:cb:7f:ae:6c:0c:5b:0a:69:1a:91:d7:cc:54:
97:7f:92:33:5d:67:7b:55:cd:e7:bd:18:f4:16:3a:39:7e:84:
62:4e:34:81:15:42:7c:13:0d:c7:f5:b4:a0:20:10:06:32:81:
49:66:03:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 12 00:16:31 2025 by rpki-client