Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
File: KMaADXS8QQW0DnfqCFugJtvuw18.mft (raw, json)
Hash identifier: aKOSBEsvWiYcDtN4Z0FJ7XCsk8oOUOkcSDJqkF7enfQ=
Subject key identifier: 9B:DC:E0:D4:D1:FE:4E:7D:FA:4B:D5:88:0B:7D:5F:10:A1:B1:63:65
Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
Certificate issuer: /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Certificate serial: 01995CE9C9A46B36EB99ADA3E7C7E27C77CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
Manifest number: 10CF
Signing time: Thu 18 Sep 2025 13:00:49 +0000
Manifest this update: Thu 18 Sep 2025 13:00:49 +0000
Manifest next update: Fri 19 Sep 2025 13:00:49 +0000
Files and hashes: 1: KMaADXS8QQW0DnfqCFugJtvuw18.crl (hash: UOnkfWxBDb7LTeTTEmZHTp65m3i2/uNdGih0t+xgnL0=)
2: SgVaw9dGiBaOyFrQoF1dUXR7CDI.roa (hash: OI5adqW3SJrMIQGjIhmdYoxARRioxuyzaVULjGuGLRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Sep 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:5c:e9:c9:a4:6b:36:eb:99:ad:a3:e7:c7:e2:7c:77:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Validity
Not Before: Sep 18 13:00:49 2025 GMT
Not After : Sep 19 13:00:49 2025 GMT
Subject: CN=9bdce0d4d1fe4e7dfa4bd5880b7d5f10a1b16365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:85:b0:e0:43:76:f0:fe:5f:3c:06:8d:8a:23:
3a:29:03:a2:dd:e2:2a:93:66:60:38:64:3a:c4:e4:
37:c9:5e:0a:b5:f8:1a:1b:00:58:7c:b6:f2:bc:7f:
e7:c4:4a:3b:78:d4:e3:08:98:57:a0:ff:fd:4e:36:
f3:ca:9c:58:e7:2f:15:63:9c:a2:63:a0:83:ac:60:
fc:45:9d:75:99:c0:91:44:9d:83:29:d1:0e:d1:64:
bf:69:81:d2:ee:7d:ae:38:54:96:55:e8:b5:ff:1e:
38:90:b7:cb:32:31:6f:15:a8:e0:83:0f:ce:88:ba:
b1:dc:66:3c:9e:1b:ea:c3:10:1a:83:09:4c:dd:83:
97:b6:af:6f:c5:5a:05:fe:f6:9c:e5:6e:e7:0a:c2:
2a:be:56:03:37:94:ed:55:76:68:83:b5:5b:d3:60:
d8:17:9a:9e:88:11:54:a7:a5:cb:3e:12:94:ae:72:
21:28:4e:f6:e6:1c:c9:97:36:f7:b0:42:ff:ca:bc:
f8:0c:c9:90:14:1f:bc:a9:24:c3:4f:6b:c6:91:18:
04:98:c4:83:f9:80:c0:b3:44:27:f4:ba:75:67:7a:
84:11:a0:ff:84:07:7e:82:71:f6:07:cc:ba:ac:ec:
11:20:50:e5:be:51:86:bb:5e:bc:1f:74:60:89:d2:
3e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:DC:E0:D4:D1:FE:4E:7D:FA:4B:D5:88:0B:7D:5F:10:A1:B1:63:65
X509v3 Authority Key Identifier:
keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:e8:ca:b8:41:35:55:43:0b:82:d9:58:b6:3d:87:dc:ab:bc:
ee:ac:2c:7b:8e:26:40:4e:b7:21:d6:77:78:be:b7:fb:b6:3f:
10:01:96:79:e5:10:cc:7a:ff:b9:0a:86:7d:c9:65:30:98:e6:
12:2a:9f:37:03:a0:db:f8:65:ab:c2:88:ac:36:95:42:8a:ab:
ad:67:2e:b7:73:5a:0d:02:b6:61:a7:f3:a7:67:74:18:38:2c:
bc:60:0f:b4:08:75:08:70:bc:b7:9a:50:1d:31:95:a8:99:9c:
4c:a0:90:e8:5b:d7:6b:e1:85:a0:dd:5d:8d:d0:dc:bb:8f:20:
86:db:ae:c5:19:88:a0:78:8a:36:06:ce:77:76:dc:60:fd:e0:
a7:e1:4f:86:0b:fd:33:1d:f3:bd:44:33:4f:bf:a0:ca:28:e7:
47:0b:1a:c9:e0:8a:82:2a:00:a8:50:23:16:28:f8:70:99:99:
f8:57:34:b8:95:79:bf:bf:6b:82:bc:f5:65:17:99:8e:e8:83:
ee:bb:9b:a0:4b:ba:5a:8f:ad:fc:9d:46:62:39:7d:65:f8:1f:
a0:35:a9:48:95:18:12:d6:67:1f:14:9e:57:9f:65:2b:75:e7:
3f:71:fa:28:0b:73:c9:d9:8e:52:e9:49:49:8d:23:f0:46:c5:
c1:a6:fb:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 16:31:31 2025 by rpki-client