Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
File: KvD7S5rcsuyisQbeCok5YVlszRg.mft (raw, json)
Hash identifier: sc8RjXMg8SEW4E16pzFItkzJy7TEvX+H3QqSdbydEcE=
Subject key identifier: 83:44:29:09:47:40:40:DA:13:D5:78:FD:F9:0A:E8:F5:2F:14:65:1F
Authority key identifier: 2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
Certificate issuer: /CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Certificate serial: 0199168884A99A32AEB5524094E59F9BCB5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
Manifest number: 0CED
Signing time: Thu 04 Sep 2025 21:01:09 +0000
Manifest this update: Thu 04 Sep 2025 21:01:09 +0000
Manifest next update: Fri 05 Sep 2025 21:01:09 +0000
Files and hashes: 1: KvD7S5rcsuyisQbeCok5YVlszRg.crl (hash: ZmEiIP/WwBXve57Cy8ARyvdiVXDvYrs/CFXcZMhuGa4=)
2: zXRn6qUdykmyNBlVs8F5lijyofI.roa (hash: ocGQIF9V1x5fsDLwah9aysnQL0wM33g0zDeGg9Z68IM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 21:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:88:84:a9:9a:32:ae:b5:52:40:94:e5:9f:9b:cb:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Validity
Not Before: Sep 4 21:01:09 2025 GMT
Not After : Sep 5 21:01:09 2025 GMT
Subject: CN=83442909474040da13d578fdf90ae8f52f14651f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:29:08:00:76:3d:69:35:4e:51:15:95:fb:b1:
da:a5:23:1c:9b:1d:9a:fe:5c:72:1c:a9:12:c0:7e:
ba:cf:12:3f:eb:48:1b:80:66:31:d8:b3:83:87:3d:
54:af:6c:0a:fc:5f:8c:fe:36:1b:83:2b:82:ca:7b:
42:cc:72:cc:f1:d1:c6:27:91:be:66:18:9d:20:37:
58:3f:91:d1:34:ab:35:9c:df:fe:ad:4b:13:38:d0:
d6:ba:48:30:a1:e6:c2:23:4c:bb:8c:20:fb:6d:fe:
4e:24:64:47:54:64:ea:73:d3:3c:88:08:8d:1a:e3:
9b:18:7c:69:92:7a:4f:90:2a:d8:32:03:a3:a9:ad:
ca:c0:86:c4:a9:55:cd:fa:25:46:0e:73:0c:f1:09:
10:f5:42:cc:8a:00:61:44:13:09:67:42:14:6a:d1:
66:58:45:cf:b0:f8:7b:5d:45:90:52:72:7e:05:ae:
82:b1:45:b0:54:a9:25:4e:be:cc:07:5f:c3:c6:69:
97:8c:44:d0:3e:ad:5d:02:9a:92:4f:89:ab:6c:f4:
0f:1c:60:06:05:f0:9d:91:1c:67:4c:c5:e7:3b:41:
58:34:56:e4:ec:91:1a:11:9a:7b:f2:01:11:96:61:
b1:8e:cd:dd:2b:30:c1:42:36:64:0a:dc:37:d6:fb:
a7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:44:29:09:47:40:40:DA:13:D5:78:FD:F9:0A:E8:F5:2F:14:65:1F
X509v3 Authority Key Identifier:
keyid:2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:00:1d:0e:e9:aa:c8:d3:a5:96:db:bc:c8:19:52:49:42:70:
c6:6a:59:f8:ba:fa:1b:90:be:81:59:53:80:e2:63:af:0e:66:
55:1f:cb:b8:7e:4e:08:f5:2d:f7:9d:ef:c4:44:a9:5c:16:9c:
94:e9:af:ce:32:9e:e6:41:1c:66:d4:ff:05:97:4e:5f:4c:01:
83:ca:68:85:bd:c7:5c:92:0a:c3:65:3d:20:93:58:d1:34:0f:
d4:32:cd:cd:ac:44:b4:17:4a:a1:6f:91:18:a5:71:7c:10:db:
70:29:78:0f:52:fe:c5:bd:4f:43:df:76:60:57:18:bf:5b:89:
94:a7:f1:6e:29:e2:5e:de:3f:c3:1b:ff:2b:71:55:77:3b:79:
8b:12:da:69:42:2e:34:fd:4c:1a:37:43:74:ea:d5:51:49:82:
f7:d9:ca:f2:ca:41:6c:9d:06:a6:22:11:91:0d:07:5a:fe:af:
f3:39:9e:fe:00:d2:cf:e7:03:61:44:a2:29:58:c4:e1:16:e4:
8c:71:75:cc:c8:48:86:64:a7:4a:76:a8:7a:15:18:48:4b:dc:
61:e5:df:0e:f6:54:20:0d:d5:86:5b:96:00:60:14:3a:27:ac:
6c:1c:62:9e:5b:34:72:ab:a6:b8:8d:c8:f9:11:45:cf:41:41:
3c:6a:c2:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 06:04:33 2025 by rpki-client