Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
File: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft (raw, json)
Hash identifier: tR4tj0Hb6ufCIoftRNdB88NCN1cwHR+JoRN/UQaV9Ek=
Subject key identifier: A5:F9:20:92:9F:54:2C:DB:3D:72:88:D6:DB:2F:96:A2:5A:66:C0:21
Authority key identifier: 91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
Certificate issuer: /CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Certificate serial: 0199228CC12BA5A1456B9E900C3CAAF1E60D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
Manifest number: 0199
Signing time: Sun 07 Sep 2025 05:01:13 +0000
Manifest this update: Sun 07 Sep 2025 05:01:13 +0000
Manifest next update: Mon 08 Sep 2025 05:01:13 +0000
Files and hashes: 1: N05LSOD5G7OCVr2R2Lk3Qm3IMnc.roa (hash: 2FUijApprdSPC+yt20CbCF23SFHyPUM/peKf0m3x+RA=)
2: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl (hash: iD6FBywEI+FhwPQpRY02g8RpUUX7/3g7uVPgbfWA8XM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:c1:2b:a5:a1:45:6b:9e:90:0c:3c:aa:f1:e6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Validity
Not Before: Sep 7 05:01:13 2025 GMT
Not After : Sep 8 05:01:13 2025 GMT
Subject: CN=a5f920929f542cdb3d7288d6db2f96a25a66c021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:89:33:46:02:34:e0:e3:28:47:ca:83:e4:28:
9e:b6:a6:17:ef:68:55:59:ad:b4:70:1d:1c:58:e8:
05:ff:31:cc:89:43:4f:bf:71:9b:0d:8e:c2:3b:1a:
a5:af:73:16:7f:00:f0:f0:07:75:ac:83:10:9b:a8:
66:ba:11:34:ac:a2:e1:aa:92:ed:62:6a:3e:e5:bf:
d3:db:9b:4d:13:0b:25:a5:d0:39:cc:a3:83:2e:f6:
f6:dd:8a:80:b0:18:fc:9f:d6:0e:4c:ed:9a:86:20:
ff:f9:0b:ef:b6:87:8e:78:b9:7e:63:02:41:0b:41:
50:42:22:af:91:45:9f:ca:e7:eb:5a:70:8c:18:d7:
53:ee:13:6d:b4:45:9e:72:8c:c1:91:a1:58:8f:2d:
eb:c9:6a:19:b6:bd:ca:39:79:f3:b1:9e:d4:f3:31:
6b:12:99:9c:33:b8:0c:3c:e0:df:d4:f7:7f:4e:ec:
72:a5:67:24:fb:30:6c:66:df:61:a5:ec:39:2d:30:
7e:25:d8:95:17:f0:72:e6:2d:9d:a3:a5:11:cd:ee:
83:9b:55:d8:04:22:1d:2f:77:ae:c8:01:3f:b6:07:
fd:8f:3d:25:86:5e:5d:74:79:a3:56:b8:a7:76:a1:
0e:d2:7e:9d:44:eb:bc:9e:6b:54:bf:6a:2b:ea:bc:
00:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F9:20:92:9F:54:2C:DB:3D:72:88:D6:DB:2F:96:A2:5A:66:C0:21
X509v3 Authority Key Identifier:
keyid:91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:fa:2b:23:89:37:fd:b2:98:ce:d7:43:4b:7a:5b:22:ce:37:
ab:99:75:66:f4:d3:28:45:b6:fe:39:1e:ba:64:6e:7c:c4:da:
73:c9:c1:40:76:f2:d7:bb:1b:6a:ad:04:eb:82:f1:1d:95:b5:
c6:ba:9f:c8:d3:79:fc:f5:23:59:7a:fc:55:e1:57:3f:72:c6:
0d:70:64:07:b8:70:f7:0b:99:3d:e6:84:9e:f1:0d:b6:e5:a2:
80:2c:75:cd:4f:de:c3:c4:a8:f8:1f:99:96:ad:08:85:3e:ba:
26:02:87:6c:e2:5c:f4:81:cf:6c:e1:2b:38:39:64:c7:a3:b0:
d1:16:c4:6b:43:58:d7:ff:26:6d:5f:eb:a9:83:2a:04:38:99:
3e:a8:3a:b4:6a:9d:27:39:7c:9c:a1:76:92:d5:c6:f8:d6:35:
d9:00:c9:3b:bf:2b:19:9e:ab:8e:11:aa:46:d0:cf:b3:62:ed:
56:15:d0:34:1c:db:60:1b:fe:9d:15:8a:6c:ca:9d:e0:ee:ce:
d8:d3:ca:91:1c:de:ad:04:14:d9:06:18:1e:91:c1:31:47:f1:
db:c5:c2:88:2e:25:2f:fb:9d:3d:ab:df:3b:74:73:28:4b:35:
d3:52:51:ab:e9:ea:f2:35:eb:fb:43:40:6b:1a:d4:c8:2c:ac:
2f:08:8f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:39 2025 by rpki-client