Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
File: KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft (raw, json)
Hash identifier: 7GaAq5ixzVuOGIm+uQgTSN+L0LupKsFZKfw2kCBk3fE=
Subject key identifier: 5B:7C:9C:7F:3A:F0:B9:DD:27:03:3F:18:26:A0:FE:DE:B3:33:A8:2C
Authority key identifier: 29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
Certificate issuer: /CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Certificate serial: 019921B1FB0333B8A167D2DC43D727A6B3DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
Manifest number: 08FF
Signing time: Sun 07 Sep 2025 01:02:16 +0000
Manifest this update: Sun 07 Sep 2025 01:02:16 +0000
Manifest next update: Mon 08 Sep 2025 01:02:16 +0000
Files and hashes: 1: IrS-qV3W0Ik-KE138sR-ycmjsj0.roa (hash: ZrhZqy7V3sNpl24EYUX1sc+YyDytYvN7JDm/U17ihTc=)
2: KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl (hash: B7koYGIaiPYk03HG1klvALfEmr/dAZkv5ict8GWfpo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:fb:03:33:b8:a1:67:d2:dc:43:d7:27:a6:b3:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Validity
Not Before: Sep 7 01:02:16 2025 GMT
Not After : Sep 8 01:02:16 2025 GMT
Subject: CN=5b7c9c7f3af0b9dd27033f1826a0fedeb333a82c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9a:f4:38:d8:ba:e0:6d:2e:f6:e6:28:35:e6:
c0:9d:da:78:52:1f:bf:ed:b1:0a:3b:17:d0:44:01:
20:03:d9:19:f5:f5:22:db:b4:3c:1a:da:6e:81:0e:
41:d9:e6:b5:35:ab:25:11:a8:9e:db:6a:4d:b0:df:
a4:88:ae:01:e3:bf:71:b2:33:2f:c8:11:c3:62:c2:
c2:29:8b:de:6c:39:4a:23:27:32:34:45:5d:e4:83:
71:1e:06:02:76:a2:2d:40:b0:13:24:84:78:a4:3c:
8d:3a:98:99:92:c1:5e:10:02:fd:05:e0:b0:8b:51:
df:9e:fd:3c:11:13:54:b5:7d:c9:0c:57:96:85:d0:
1a:b4:16:b8:26:b3:a8:46:a0:02:9e:28:49:4b:1f:
b5:26:32:75:64:aa:08:b3:e8:95:c4:87:89:a8:2f:
31:57:b8:10:8c:1f:19:fe:7e:b2:c9:26:47:df:ff:
45:80:34:09:5d:90:62:cf:73:fd:85:41:3a:69:e5:
54:1f:1e:10:1a:40:86:ae:df:57:8d:df:d7:ef:95:
11:47:a3:b2:b3:e7:28:95:53:a3:93:5f:d2:f6:50:
27:f9:df:1e:57:a3:a6:e4:de:20:0c:39:8a:c9:df:
c6:57:84:9e:b3:f0:74:9b:95:03:55:5b:05:c5:6a:
d1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7C:9C:7F:3A:F0:B9:DD:27:03:3F:18:26:A0:FE:DE:B3:33:A8:2C
X509v3 Authority Key Identifier:
keyid:29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:6b:6b:83:22:65:1d:6b:b8:ae:ac:85:4c:a5:8c:a6:a0:f9:
1d:c8:ac:61:0e:fe:54:16:95:c7:50:f5:26:41:96:4a:7d:75:
d5:dd:a9:b5:ef:1a:a0:a9:46:22:e5:98:37:6e:e5:a5:b6:5e:
aa:ea:91:0e:d7:1f:40:e9:4f:08:0e:8b:83:71:79:33:03:48:
03:23:37:1d:46:a5:b6:1e:40:3f:23:19:b7:cd:d5:84:2c:2e:
71:32:3d:7d:82:2e:41:13:35:ce:9e:64:b8:dd:50:ff:4a:bb:
43:f1:84:9d:b9:fd:51:20:66:30:b2:ff:43:0c:4e:06:1a:80:
ae:7f:3b:d8:35:a8:b8:52:92:c5:ee:c4:56:99:c6:69:c3:e8:
0a:0d:f3:07:2d:29:34:5a:18:01:f0:99:42:35:5b:6f:42:d2:
57:40:58:21:eb:fe:ce:9f:ad:89:dd:bb:2f:7a:6e:01:3a:63:
8f:6d:66:f0:bb:4a:05:5d:24:34:0e:65:47:72:94:a6:97:bc:
8f:76:69:91:07:b5:6e:57:43:8d:fb:de:f5:4e:00:5e:81:e4:
0f:55:89:b4:eb:6d:9a:78:9b:18:9f:6a:14:85:f6:e8:d2:ac:
53:a2:55:0f:fa:b4:f9:46:c5:a3:c7:00:1b:c5:83:60:ca:22:
0d:f1:c6:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:08:20 2025 by rpki-client