Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.mft
File: kbDB4HajRpZoEluN05XzBN-i55Q.mft (raw, json)
Hash identifier: aTl3xJWuSdOp+MS3+P6Em4+qa1BOYwCduP1lszjUmNg=
Subject key identifier: 60:21:23:ED:6F:A5:7F:D4:7D:16:D8:A8:69:80:32:86:80:EF:45:83
Authority key identifier: 91:B0:C1:E0:76:A3:46:96:68:12:5B:8D:D3:95:F3:04:DF:A2:E7:94
Certificate issuer: /CN=91b0c1e076a3469668125b8dd395f304dfa2e794
Certificate serial: 0198D472FABEE01E97CFEEA66F5E52272666
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kbDB4HajRpZoEluN05XzBN-i55Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.mft
Manifest number: 45
Signing time: Sat 23 Aug 2025 01:02:41 +0000
Manifest this update: Sat 23 Aug 2025 01:02:41 +0000
Manifest next update: Sun 24 Aug 2025 01:02:41 +0000
Files and hashes: 1: kbDB4HajRpZoEluN05XzBN-i55Q.crl (hash: 1TpErNzXwejbJ7aFO60iVYKA9M/L2SUI8Mz9bmvQMvw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/kbDB4HajRpZoEluN05XzBN-i55Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:fa:be:e0:1e:97:cf:ee:a6:6f:5e:52:27:26:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91b0c1e076a3469668125b8dd395f304dfa2e794
Validity
Not Before: Aug 23 01:02:41 2025 GMT
Not After : Aug 24 01:02:41 2025 GMT
Subject: CN=602123ed6fa57fd47d16d8a86980328680ef4583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:38:e8:ff:29:6f:56:d1:2f:89:06:91:89:45:
bb:c1:13:c1:06:57:2c:ac:5c:f0:30:b4:eb:a4:bd:
57:a2:63:fc:33:66:80:da:77:30:3c:97:e6:35:b2:
01:06:e5:f5:b2:30:f0:5a:be:86:7e:c2:32:d0:3f:
be:d4:5a:35:17:9e:bc:b3:52:61:1a:a5:3f:3b:db:
8a:82:93:78:e0:79:62:ad:82:f4:f6:51:0c:65:3b:
64:69:c9:9f:57:ff:b0:df:1e:73:47:3c:63:90:76:
6c:94:de:c8:01:70:82:81:41:c1:ff:df:2f:a0:4a:
3f:81:16:f8:12:d3:3a:09:67:89:f9:00:a4:21:12:
82:4f:c4:a2:44:b5:82:62:aa:aa:12:41:f6:c0:d4:
df:e8:a7:7c:6a:e8:a0:ba:6a:ea:df:ec:c7:da:21:
3e:01:e4:e1:7e:0c:ed:27:f2:c8:80:2d:e2:a8:ea:
08:a4:25:b2:2f:9f:b1:09:8f:cc:4f:b4:f0:7c:b3:
cd:cc:0f:ba:91:d5:5b:d8:7b:92:e7:e1:40:cb:78:
88:e9:0b:d1:a0:d5:c8:d2:82:df:a8:93:25:3e:28:
b6:28:c2:ef:d1:49:f6:a0:5f:8b:05:c2:74:7d:c3:
56:76:15:cb:73:0e:aa:27:4b:18:eb:6f:d1:f5:e6:
3f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:21:23:ED:6F:A5:7F:D4:7D:16:D8:A8:69:80:32:86:80:EF:45:83
X509v3 Authority Key Identifier:
keyid:91:B0:C1:E0:76:A3:46:96:68:12:5B:8D:D3:95:F3:04:DF:A2:E7:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kbDB4HajRpZoEluN05XzBN-i55Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/75c964-354e-46a3-b39e-ed82379cfa32/1/kbDB4HajRpZoEluN05XzBN-i55Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:6e:ac:a8:37:47:9f:3e:9c:f6:6d:99:34:e9:5c:c3:3a:ed:
c2:56:bb:2c:48:ff:98:70:0f:c6:eb:39:7a:6e:32:d9:52:bb:
7c:4d:f8:d4:9a:37:65:70:35:0e:04:00:d4:de:44:ab:95:58:
13:24:27:88:6e:00:73:49:f8:a2:40:80:e2:ef:e9:3c:64:cb:
f1:5b:4f:6b:1f:18:4c:5c:70:14:27:76:0f:8c:33:a7:65:e5:
c8:0c:9d:2e:c1:20:a8:ec:fb:4c:68:b0:87:c8:cb:0f:dc:72:
5b:98:8a:18:b6:26:1c:d0:7d:f7:a8:4c:5f:3a:b2:5d:df:39:
47:c5:31:79:37:4a:84:6c:91:fb:0a:60:ea:4a:84:2e:66:d3:
bd:ac:bf:99:6f:16:c6:47:9a:14:6b:69:3f:3f:3b:47:97:fb:
61:9d:05:4d:e1:a9:8b:2b:bb:28:42:3c:58:9b:83:9e:7a:21:
28:9f:e1:6d:1d:9c:de:86:70:ff:8b:09:ce:60:2b:aa:2a:8c:
a2:38:7c:16:b1:10:f3:8e:eb:27:c4:8e:c8:41:e4:e0:49:69:
6f:a1:df:f5:73:50:04:7b:07:f7:fd:56:ca:f1:a7:47:87:a9:
78:2b:96:ab:8c:b6:a2:ab:05:0e:9e:7e:f7:e3:62:08:9e:77:
f5:42:06:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:53 2025 by rpki-client