Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
File: JKtnE2v5kKqL6IV6aNLDmezWKZo.mft (raw, json)
Hash identifier: Kl8nchM21+zDqbplaKzxTH0SfoCBeOhwla+Lv9iNwGQ=
Subject key identifier: 91:26:C2:00:F3:64:5E:6C:78:4D:6A:72:D0:EA:64:04:13:3E:FE:4E
Authority key identifier: 24:AB:67:13:6B:F9:90:AA:8B:E8:85:7A:68:D2:C3:99:EC:D6:29:9A
Certificate issuer: /CN=24ab67136bf990aa8be8857a68d2c399ecd6299a
Certificate serial: 0198D4E0A6756405932765FBAEB65820CD6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKtnE2v5kKqL6IV6aNLDmezWKZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
Manifest number: 15D8
Signing time: Sat 23 Aug 2025 03:02:29 +0000
Manifest this update: Sat 23 Aug 2025 03:02:29 +0000
Manifest next update: Sun 24 Aug 2025 03:02:29 +0000
Files and hashes: 1: JKtnE2v5kKqL6IV6aNLDmezWKZo.crl (hash: a0P28J4WkImvRnJOclF9rc5M7gVTzYNss/ZstgituB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/JKtnE2v5kKqL6IV6aNLDmezWKZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:a6:75:64:05:93:27:65:fb:ae:b6:58:20:cd:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24ab67136bf990aa8be8857a68d2c399ecd6299a
Validity
Not Before: Aug 23 03:02:29 2025 GMT
Not After : Aug 24 03:02:29 2025 GMT
Subject: CN=9126c200f3645e6c784d6a72d0ea6404133efe4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b3:c0:3c:85:b8:0d:ce:0b:29:11:17:26:93:
2c:0c:c9:a0:5f:e1:4d:88:7a:b6:ca:6c:c0:9a:54:
f2:ff:e2:61:16:6a:12:7a:ea:6a:ef:0d:5b:dc:ba:
21:c1:55:8e:82:5f:45:6e:19:24:98:ea:35:97:91:
6d:d0:d9:8a:16:d3:0c:33:43:25:de:9e:68:6e:57:
3a:ec:9c:06:f3:7e:1a:6a:aa:3b:e3:36:77:d5:04:
9a:1f:88:f0:b2:82:0b:4f:bd:7c:c8:7b:36:b0:20:
1d:4c:e0:0e:fe:46:1f:4a:a1:93:9c:4d:38:9d:90:
10:5e:a1:ce:e0:54:b9:5c:94:06:f4:be:ae:d5:27:
88:06:db:b9:3c:af:b7:af:cf:50:c2:de:13:28:1f:
5b:71:8e:9a:e4:cc:37:1a:e9:8a:2e:58:78:ff:6f:
7f:4d:63:49:32:f3:08:bb:78:1b:a2:84:87:fc:ac:
39:cb:16:1b:b6:20:31:60:b0:c9:87:23:82:79:ad:
59:f7:ce:c0:6b:2a:d8:2b:2f:79:f8:bb:5a:e9:d6:
12:2a:0c:c2:ad:13:80:18:10:dc:5c:1b:36:e6:1d:
72:f6:eb:6a:ee:de:cf:1c:5e:57:bb:b8:cd:7b:5a:
dc:5b:f1:05:e1:45:e9:b4:67:37:16:00:a5:fb:a0:
60:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:26:C2:00:F3:64:5E:6C:78:4D:6A:72:D0:EA:64:04:13:3E:FE:4E
X509v3 Authority Key Identifier:
keyid:24:AB:67:13:6B:F9:90:AA:8B:E8:85:7A:68:D2:C3:99:EC:D6:29:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKtnE2v5kKqL6IV6aNLDmezWKZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/088521-2398-457b-b1e3-dd3360393391/1/JKtnE2v5kKqL6IV6aNLDmezWKZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:48:78:a5:f1:d4:b8:b9:5d:3b:59:88:04:ae:1f:bb:7c:fc:
5c:67:5c:37:56:47:7b:41:16:b2:6e:f3:94:74:ec:c5:53:fa:
fd:59:d0:ea:56:e3:3f:23:d3:fc:fd:1e:46:f1:a5:9f:77:16:
36:5c:2c:bc:28:4d:66:90:e0:4f:a0:4a:50:6c:c4:cd:06:61:
f1:d0:bc:74:20:c9:c1:05:72:bb:b9:7b:84:08:c1:15:97:65:
42:f6:ee:27:28:83:75:77:48:e0:8f:5f:4f:52:0e:59:1c:14:
a3:a9:56:b3:ec:29:e4:82:60:7c:e6:03:66:3e:ae:64:d7:f5:
11:1b:5a:3f:8e:b3:3a:ea:ed:68:db:e3:98:b9:ab:e8:5f:c9:
aa:39:47:71:50:99:52:64:c7:58:0d:a5:c4:00:1a:78:6a:dc:
07:16:31:e7:bc:c3:d8:ad:bd:14:05:77:88:90:f2:0c:d2:5d:
11:1b:9f:84:35:7d:90:d9:70:62:1f:19:2a:44:54:19:01:45:
74:8b:ea:31:a0:71:3b:e3:86:70:31:fd:02:40:24:fe:fa:98:
8c:ff:ee:48:28:da:ac:ef:37:0a:1d:c5:47:e5:3a:a1:94:85:
cb:a3:1d:86:9a:92:cd:26:66:44:cb:3c:aa:79:c5:60:04:eb:
12:28:5f:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4KZ1ZAWTJ2X7rrZYIM1vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0YWI2NzEzNmJmOTkwYWE4YmU4ODU3YTY4ZDJjMzk5ZWNk
NjI5OWEwHhcNMjUwODIzMDMwMjI5WhcNMjUwODI0MDMwMjI5WjAzMTEwLwYDVQQD
Eyg5MTI2YzIwMGYzNjQ1ZTZjNzg0ZDZhNzJkMGVhNjQwNDEzM2VmZTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLPAPIW4Dc4LKREXJpMsDMmgX+FN
iHq2ymzAmlTy/+JhFmoSeupq7w1b3LohwVWOgl9FbhkkmOo1l5Ft0NmKFtMMM0Ml
3p5oblc67JwG834aaqo74zZ31QSaH4jwsoILT718yHs2sCAdTOAO/kYfSqGTnE04
nZAQXqHO4FS5XJQG9L6u1SeIBtu5PK+3r89Qwt4TKB9bcY6a5Mw3GumKLlh4/29/
TWNJMvMIu3gbooSH/Kw5yxYbtiAxYLDJhyOCea1Z987AayrYKy95+Lta6dYSKgzC
rROAGBDcXBs25h1y9utq7t7PHF5Xu7jNe1rcW/EF4UXptGc3FgCl+6BglwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJEmwgDzZF5seE1qctDqZAQTPv5OMB8GA1UdIwQY
MBaAFCSrZxNr+ZCqi+iFemjSw5ns1imaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkt0bkUydjVrS3FMNklWNmFOTERtZXpXS1pvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8wODg1MjEtMjM5OC00NTdiLWIxZTMt
ZGQzMzYwMzkzMzkxLzEvSkt0bkUydjVrS3FMNklWNmFOTERtZXpXS1pvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8wODg1MjEtMjM5OC00NTdiLWIxZTMtZGQzMzYwMzkzMzkx
LzEvSkt0bkUydjVrS3FMNklWNmFOTERtZXpXS1pvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAekh4pfHU
uLldO1mIBK4fu3z8XGdcN1ZHe0EWsm7zlHTsxVP6/VnQ6lbjPyPT/P0eRvGln3cW
NlwsvChNZpDgT6BKUGzEzQZh8dC8dCDJwQVyu7l7hAjBFZdlQvbuJyiDdXdI4I9f
T1IOWRwUo6lWs+wp5IJgfOYDZj6uZNf1ERtaP46zOurtaNvjmLmr6F/JqjlHcVCZ
UmTHWA2lxAAaeGrcBxYx57zD2K29FAV3iJDyDNJdERufhDV9kNlwYh8ZKkRUGQFF
dIvqMaBxO+OGcDH9AkAk/vqYjP/uSCjarO83Ch3FR+U6oZSFy6MdhpqSzSZmRMs8
qnnFYATrEihfhw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:40:58 2025 by rpki-client