Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File: kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier: RzBEjq86AKopFy8E6RT4gDEvtquvVW/CO/ZIb5r1PoQ=
Subject key identifier: EB:18:2E:02:F7:8E:A6:7B:A7:86:CA:63:C4:3D:A6:6E:88:97:87:15
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 01993982347814E70E08F28B36B19A9068E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number: 1682
Signing time: Thu 11 Sep 2025 16:00:58 +0000
Manifest this update: Thu 11 Sep 2025 16:00:58 +0000
Manifest next update: Fri 12 Sep 2025 16:00:58 +0000
Files and hashes: 1: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: 10roYsrhqfP4g4OmxNvUx7P2fKwckA3ijZd2oED4u2Q=)
2: yaNI0_QU-og_a5wIKL7nblpP3wo.roa (hash: mocSKnatPWu2K5HO5VSBkHGD9dsGk50fbeHRajNzTSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Sep 2025 14:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:39:82:34:78:14:e7:0e:08:f2:8b:36:b1:9a:90:68:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Sep 11 16:00:58 2025 GMT
Not After : Sep 12 16:00:58 2025 GMT
Subject: CN=eb182e02f78ea67ba786ca63c43da66e88978715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:60:3a:90:d0:a0:cf:fe:49:23:20:24:d8:41:
72:67:b6:a7:09:0d:97:4e:88:5c:f5:d2:7f:31:e8:
50:ac:7f:aa:4f:4f:9d:8c:d8:1f:9c:19:81:fb:1b:
d8:17:13:63:b0:6b:67:27:0b:e8:46:c6:77:5e:77:
58:58:67:ce:55:45:85:90:b4:ed:dc:6b:da:ee:2f:
05:5c:15:09:9b:b5:68:e7:0a:d1:23:8d:44:88:24:
5a:cc:1e:bc:11:f8:91:01:fa:69:b6:78:27:fe:d5:
22:e4:58:8e:47:d9:73:8f:1b:54:fb:49:51:1f:26:
e4:15:3e:ec:62:ae:cf:d7:93:7b:71:c0:b7:32:c1:
08:47:43:58:44:78:a2:70:ab:d9:3c:79:4e:b5:cf:
18:e2:3e:45:ea:30:f8:c6:6a:a0:0d:0d:77:d6:c3:
2b:83:7c:d5:65:a4:64:51:3d:cc:40:d3:24:c5:56:
0c:2d:f7:3f:ef:22:0e:b4:d8:5e:92:f8:b6:6f:12:
90:60:e3:56:f9:2d:58:01:f0:84:d6:07:fa:46:10:
18:f9:ab:46:e5:fd:2e:6b:3c:67:e6:bf:db:ee:67:
97:9b:e3:1f:34:bd:9d:6a:e4:e3:7d:18:de:c0:e5:
8e:cd:20:b6:99:7a:69:d4:e0:f3:48:c0:6b:db:c5:
ea:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:18:2E:02:F7:8E:A6:7B:A7:86:CA:63:C4:3D:A6:6E:88:97:87:15
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:68:1e:d8:4e:02:42:ed:a1:84:be:7c:bd:73:fc:7d:34:04:
aa:cb:5d:7c:ed:11:dd:09:4f:f2:19:84:0d:94:b7:b8:43:b3:
65:4c:48:8e:d5:c3:b1:20:e2:20:93:c8:91:e4:f5:a8:4f:6d:
e8:7e:68:5b:d1:ee:94:fd:33:27:46:95:c3:f0:d6:95:69:1d:
c5:c2:cc:fc:5b:bc:13:56:b1:31:af:6d:ea:3e:03:0d:d5:1f:
87:54:2f:48:e3:29:8a:e9:cd:f4:e2:a5:66:33:00:0e:51:10:
ee:39:6e:78:c2:be:8d:87:06:ea:6e:5d:2b:69:f6:e0:fb:4d:
5d:d8:d4:4e:bf:2d:2b:1a:0e:4c:08:ad:bf:49:a4:89:2d:6c:
42:51:51:94:01:7e:96:e4:1e:47:88:12:2f:4e:a7:61:f9:94:
f5:da:82:00:1f:db:9d:ef:d0:2e:ab:17:8e:f9:92:0d:03:0f:
d8:59:5e:27:5a:33:87:20:13:32:51:61:4c:32:f6:05:a2:41:
97:16:c4:3c:be:99:85:56:9a:af:ac:18:09:3a:10:7b:63:13:
da:59:c4:90:4f:e5:5e:07:57:30:6d:8d:2f:49:b5:4f:eb:66:
6f:6c:48:4b:e3:82:5e:d2:95:53:f5:5e:8b:74:cc:61:a3:e0:
11:30:82:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 11 20:26:58 2025 by rpki-client