Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
File: knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft (raw, json)
Hash identifier: zAumTcUqxLZzm8XuHwsH0pNObQKBPbpV8nJAC344jfY=
Subject key identifier: E7:ED:47:77:43:B8:AE:CE:5A:A9:F7:66:F7:F9:36:00:D8:79:E3:F5
Authority key identifier: 92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96
Certificate issuer: /CN=927b1e56ac7d07802c4567c4679435159b422096
Certificate serial: 019922C3B292C3329A3E0593A6CE045BD666
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 06:01:14 +0000
Manifest this update: Sun 07 Sep 2025 06:01:14 +0000
Manifest next update: Mon 08 Sep 2025 06:01:14 +0000
Files and hashes: 1: ZZutCOlh3Ali7o57VArVQ-r6xEQ.roa (hash: Z8oFv1O8k+i1SuyJDIP9mmTPP/Uv75FEkkBOgolEt4M=)
2: knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl (hash: Gyp8DOEWtQQU+oopomn+CzWgnh4H/m3ZVlROrOnku3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:c3:b2:92:c3:32:9a:3e:05:93:a6:ce:04:5b:d6:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927b1e56ac7d07802c4567c4679435159b422096
Validity
Not Before: Sep 7 06:01:14 2025 GMT
Not After : Sep 8 06:01:14 2025 GMT
Subject: CN=e7ed477743b8aece5aa9f766f7f93600d879e3f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4d:16:20:3b:18:bc:49:b9:66:a0:7a:5a:c3:
26:7c:3f:fd:d0:07:89:10:f7:5c:30:22:96:c7:02:
e5:48:3a:76:0e:b1:b6:3c:c0:41:64:fa:42:8f:bf:
be:49:40:a7:5f:2a:ab:da:a6:b8:b2:a0:bb:07:cc:
70:4c:b7:d7:6b:9a:3a:e6:29:59:f5:8a:a0:76:d9:
81:9c:e8:3e:94:a9:06:e3:39:c1:29:9d:cf:83:ed:
f3:b4:49:93:34:bf:a0:21:ac:2e:db:1c:24:bb:76:
02:ee:ae:27:10:f4:50:fa:c9:fd:22:3c:43:a4:08:
e9:0a:b1:01:e9:56:46:4e:25:78:c8:70:d9:a6:12:
25:dc:bc:3f:6e:db:f8:61:41:d6:ba:cc:39:d6:f1:
91:2b:31:f4:a9:ec:fa:3a:65:45:6f:56:95:f8:e6:
47:0e:41:7a:46:df:22:ed:07:35:d2:6e:9f:c5:a7:
d3:9f:fe:ed:a5:73:37:bc:59:04:84:a9:a7:11:0b:
c7:56:53:04:5c:ed:21:1b:31:06:12:f4:4d:fd:66:
ad:20:fc:2b:7b:1c:4d:2c:9c:f2:a5:2e:54:86:5a:
20:51:b8:26:ea:71:2c:f6:2c:2c:38:85:b7:4e:27:
38:4e:67:9d:54:b9:2b:e4:56:ae:c8:87:2e:8a:02:
32:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:ED:47:77:43:B8:AE:CE:5A:A9:F7:66:F7:F9:36:00:D8:79:E3:F5
X509v3 Authority Key Identifier:
keyid:92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:23:7a:75:d1:84:be:7b:75:f9:fb:fe:e6:02:35:51:fc:e5:
4e:3a:14:8b:3a:d0:c7:74:29:a0:4a:a1:fc:8a:8a:2b:94:4a:
a3:3f:c0:82:8c:6a:f1:91:be:8b:54:70:ab:40:25:ba:ff:d4:
df:21:b1:b5:8b:6d:56:55:00:1e:48:1a:62:b5:ff:b2:71:90:
80:8f:23:ea:64:f7:03:6d:a5:e6:b9:c1:34:22:75:3b:b9:bc:
d1:3b:f7:cb:64:e2:87:e7:35:2f:c5:ac:9e:1e:31:8a:d4:b3:
ad:56:19:94:d8:b8:0b:c7:1c:50:78:f2:b5:2e:b1:79:34:c0:
f2:ac:ab:bf:f4:ed:8f:c0:73:a6:51:3d:7f:7c:41:73:f9:43:
51:89:7d:24:78:55:85:74:25:cc:2c:eb:04:e7:91:87:53:81:
50:41:1c:31:f5:0e:e9:40:94:1e:38:11:1d:78:41:d9:ed:6a:
34:30:63:ff:a2:e3:bc:ac:c0:b0:11:75:08:34:a7:bd:7a:ac:
21:29:3e:b3:0e:37:2b:f7:ca:24:7f:79:42:8d:3c:68:71:95:
ca:07:e1:f6:82:e4:df:1c:dd:1a:8c:ee:cb:0e:df:17:fc:0e:
9c:ce:e7:88:93:58:da:0c:bd:46:85:e5:fc:86:c9:bd:90:e3:
25:23:f9:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:02:56 2025 by rpki-client