Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
File: kmhshS82--n8i-d8QJtSJqbuVNU.mft (raw, json)
Hash identifier: d+oXTPZtpFuX4IitZxLY3fS8KwRh3LEimRoq1xKyiZw=
Subject key identifier: BB:C1:5F:FE:26:58:30:B2:84:FB:D9:1B:AD:40:92:52:F4:EA:B5:5F
Authority key identifier: 92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
Certificate issuer: /CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Certificate serial: 019922558D8A70A2ECE119ACC2AD613788ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
Manifest number: 1674
Signing time: Sun 07 Sep 2025 04:00:56 +0000
Manifest this update: Sun 07 Sep 2025 04:00:56 +0000
Manifest next update: Mon 08 Sep 2025 04:00:56 +0000
Files and hashes: 1: IvJ7HvT-6tCK5GKbaPNyk54ml9M.roa (hash: 7zWh/VLAgd5GsVxZJpmQ4YamOZV0jGAf5fVHM29zO30=)
2: kmhshS82--n8i-d8QJtSJqbuVNU.crl (hash: X9HOYeodvqMzN1ziy1E+lmSaiDgESlidm9Q8aL+KZc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:8d:8a:70:a2:ec:e1:19:ac:c2:ad:61:37:88:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Validity
Not Before: Sep 7 04:00:56 2025 GMT
Not After : Sep 8 04:00:56 2025 GMT
Subject: CN=bbc15ffe265830b284fbd91bad409252f4eab55f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:20:32:69:fb:56:45:92:bb:6f:2e:f0:7e:f9:
26:46:aa:47:78:3c:e4:e9:f2:57:21:05:7e:ca:d8:
03:bb:2e:c2:7b:fa:32:72:03:1d:13:39:51:0a:ec:
15:b4:10:2f:72:3b:c6:67:59:60:ac:60:c1:d8:fe:
2b:8b:23:16:b3:ec:73:0e:62:f7:1c:5f:36:b2:b3:
ec:83:db:a7:b6:fc:7b:78:2b:f9:69:0b:a4:e8:2e:
aa:2d:1e:16:5f:ae:95:4e:ed:7e:0a:c5:92:eb:a0:
3a:ff:d3:2c:de:3f:dc:9c:ad:0d:a8:c9:58:be:e7:
ae:6c:ba:09:ff:1d:94:ff:1a:48:da:b7:b5:44:6d:
a0:83:c8:2f:8b:ec:e5:ef:25:9e:ab:5b:2a:48:70:
0d:4c:61:6c:3e:91:4b:7e:c3:b6:42:ac:1a:49:dd:
a7:af:90:ae:0a:74:09:e9:01:a4:bb:10:ad:1b:64:
08:8b:78:55:2d:e4:b9:c5:f8:49:5f:2e:fa:c1:12:
37:41:a5:a0:bb:ef:0a:b6:bc:01:cb:77:7f:ff:8e:
34:62:80:46:0e:44:80:9b:e2:fe:35:78:9b:5a:61:
03:dc:9f:5c:48:54:f0:d3:9f:ad:b8:c5:45:bc:95:
5e:0b:7e:c5:b4:97:26:e7:01:43:53:ce:a5:79:ce:
ec:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C1:5F:FE:26:58:30:B2:84:FB:D9:1B:AD:40:92:52:F4:EA:B5:5F
X509v3 Authority Key Identifier:
keyid:92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a9:01:3f:6f:5e:84:68:40:34:56:1b:94:43:31:c4:ab:a7:
26:80:a6:ad:b7:c2:83:02:d6:4c:13:5b:5b:62:c2:a4:ad:32:
63:ec:c2:06:cd:ac:83:dd:c9:34:f8:75:fd:b4:39:03:c7:6f:
2e:31:bb:83:0b:c1:4d:f2:fc:db:5b:d3:27:40:8a:aa:57:66:
6f:b3:6a:e5:4e:8d:f0:88:1f:82:40:b6:78:b6:c5:65:63:95:
af:7b:04:96:1f:71:e2:89:30:a4:04:d2:cc:90:ca:95:fa:2a:
47:04:09:8d:a5:e1:a4:10:e1:9d:de:fe:13:95:d2:44:58:85:
f9:b0:44:a3:59:13:40:e7:f9:ff:a2:20:35:3e:b2:37:94:b6:
e8:5e:98:cf:81:1f:c6:18:0a:25:95:d3:18:b5:0d:da:97:e1:
9d:6e:e3:fc:18:70:7f:df:39:44:6b:65:d9:d3:4a:15:14:38:
58:64:9c:58:63:69:e5:4a:a6:5d:65:78:47:67:8b:09:cb:8c:
5f:21:e0:d7:6b:72:8f:a2:53:2b:e6:19:0a:ae:5c:79:a7:6a:
9f:b6:55:27:ff:c7:78:b4:46:d8:61:d5:55:1f:c0:06:2f:42:
7c:fd:58:f7:b2:36:04:9c:db:e0:94:2d:88:b4:79:5f:e2:9e:
7b:ea:6b:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:52:41 2025 by rpki-client