Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
File: RKO0P2R-HncUzRMHZMu8SBTnoUg.mft (raw, json)
Hash identifier: kxuvmvHLqc+6ItYQ6VIexzQk6cjQZ+gGqW9vP16RH8A=
Subject key identifier: 32:83:FD:07:07:E4:A5:B7:15:0D:3E:0A:5C:B7:6E:8C:01:DD:78:3F
Authority key identifier: 44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
Certificate issuer: /CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Certificate serial: 0199594424A0135EFE96B5D8D71D781F7517
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
Manifest number: 1692
Signing time: Wed 17 Sep 2025 20:01:01 +0000
Manifest this update: Wed 17 Sep 2025 20:01:01 +0000
Manifest next update: Thu 18 Sep 2025 20:01:01 +0000
Files and hashes: 1: KrEyLtzd_FGxXKe36EuPBXxaKHA.roa (hash: ADivn+VbvpgE3fUtfn8Xzz0qtLuBXCOdiCI9IztCcUQ=)
2: RKO0P2R-HncUzRMHZMu8SBTnoUg.crl (hash: nPw9h+4gJobfaTLRvjRLFKXugC/kggJet1b41DrBrhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Sep 2025 15:33:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:59:44:24:a0:13:5e:fe:96:b5:d8:d7:1d:78:1f:75:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Validity
Not Before: Sep 17 20:01:01 2025 GMT
Not After : Sep 18 20:01:01 2025 GMT
Subject: CN=3283fd0707e4a5b7150d3e0a5cb76e8c01dd783f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1a:36:c8:56:5c:fd:af:b6:f3:a3:56:4e:51:
43:1a:51:e0:06:9d:fb:6f:8b:ec:1f:23:89:6b:51:
80:59:76:3c:68:b4:7d:76:eb:e4:a6:c4:a5:a1:7a:
61:f2:f6:ad:3f:8d:36:20:d1:85:15:d1:a2:23:f6:
1f:47:33:8d:73:a7:68:55:bc:8c:cc:0e:d9:8d:66:
60:11:3b:30:1e:2d:bf:70:19:34:14:e9:de:6f:07:
33:76:13:b4:e2:58:ff:98:84:12:ba:86:3b:bd:7a:
e2:f5:f1:6f:49:be:b3:6d:c7:12:6e:a9:ef:9b:e1:
6e:a9:1f:25:df:3e:f0:b0:c6:83:3c:86:81:8a:83:
b1:c3:e4:e8:8a:5f:8a:b6:5c:7e:88:05:b1:64:d5:
a1:5d:66:c7:69:7e:f8:9c:85:33:b4:aa:65:b9:14:
18:87:90:62:7a:4b:6d:83:d2:51:79:55:9b:ae:57:
10:dc:00:37:12:f7:14:4d:34:a4:21:4f:b9:92:d7:
14:1b:f6:0a:85:f0:54:37:ec:a9:1e:97:ec:41:9d:
41:17:de:10:ce:e8:f0:4a:2e:22:b9:4f:6c:1c:21:
b9:66:94:a9:71:f5:0e:2e:26:55:49:17:fd:f8:98:
61:a8:db:62:31:96:47:17:2b:46:d1:76:d8:4a:bb:
82:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:83:FD:07:07:E4:A5:B7:15:0D:3E:0A:5C:B7:6E:8C:01:DD:78:3F
X509v3 Authority Key Identifier:
keyid:44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:38:4e:14:a3:8f:cd:b5:dd:c3:c0:d3:07:e2:86:83:cb:59:
46:05:44:26:0f:44:dc:01:a8:d0:7d:46:53:ec:a5:81:01:ae:
65:72:98:b5:f3:b9:f1:cb:cb:29:b5:dc:13:6a:e2:9f:b6:01:
c9:4d:07:88:92:a4:88:31:f2:ff:5b:0a:9e:74:cf:d1:a5:ea:
d0:45:bd:21:3e:61:78:73:8a:61:4f:99:30:44:63:1f:1d:ab:
18:32:4e:4f:da:ae:47:d5:14:3f:d1:ea:9b:d2:84:5a:16:50:
71:41:c4:2a:6e:27:6a:a3:c5:03:b7:27:28:1c:c5:09:ea:7d:
e0:e2:60:e8:9a:62:98:d7:6b:cb:6d:c4:a5:bc:50:f3:32:a2:
11:72:53:b8:16:8d:17:b2:5a:b1:a0:b2:49:15:16:ab:3c:ad:
26:82:a6:bb:4b:06:d1:75:8d:47:1b:22:62:bd:1f:60:df:bb:
87:72:38:67:4e:b0:84:27:9c:63:b8:05:82:97:cd:37:3c:fd:
f0:52:82:75:e1:a6:48:fe:d9:47:e9:e6:24:25:1a:ca:4d:05:
c8:ba:e7:e5:b9:b0:5a:2c:cb:b1:7b:e6:aa:f9:98:9f:1a:00:
33:00:df:84:03:ee:50:f6:23:80:e1:64:0c:f2:6c:92:74:3e:
cd:7a:12:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 00:31:46 2025 by rpki-client