Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
File: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft (raw, json)
Hash identifier: /T6Fyj0TbEXhtaRN6fd3rL3uNFWBqV+jMNuxf95ufsA=
Subject key identifier: C6:2B:45:35:1D:98:AD:05:65:EE:9A:60:27:C8:E6:32:91:41:53:B4
Authority key identifier: 91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
Certificate issuer: /CN=91d338370e10627a4cd631e3fde186e194898c81
Certificate serial: 0198D65FED18C6F4A4557C82DF07540BE438
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
Manifest number: 0C35
Signing time: Sat 23 Aug 2025 10:01:07 +0000
Manifest this update: Sat 23 Aug 2025 10:01:07 +0000
Manifest next update: Sun 24 Aug 2025 10:01:07 +0000
Files and hashes: 1: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl (hash: FyLoJs1SDd3/infvYz41hLSvXDnCgHJw2z3uReHYnd0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:ed:18:c6:f4:a4:55:7c:82:df:07:54:0b:e4:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d338370e10627a4cd631e3fde186e194898c81
Validity
Not Before: Aug 23 10:01:07 2025 GMT
Not After : Aug 24 10:01:07 2025 GMT
Subject: CN=c62b45351d98ad0565ee9a6027c8e632914153b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:18:21:ed:e7:aa:f7:81:9a:2f:fe:83:53:22:
cd:e0:ea:62:ea:59:20:d2:58:09:64:63:ba:c6:36:
07:a4:10:1a:4a:e2:6b:b7:b2:3d:53:b5:6a:e7:a1:
62:e4:70:df:9e:46:6e:4d:dd:aa:a8:e2:0b:be:9a:
62:f2:25:df:f4:d2:6d:bb:f8:ad:83:dc:e4:eb:e3:
b3:50:85:41:2d:0a:12:45:06:6d:01:be:8a:9e:9c:
14:48:e6:58:c9:81:a3:d2:b2:ed:42:a1:8c:26:50:
7d:fa:81:3e:73:35:37:5d:29:3a:5b:84:a8:58:c3:
bf:c0:9d:f7:ec:9e:41:c5:f5:70:6e:10:75:ff:dd:
b6:e0:97:c2:6b:57:bc:07:f7:bf:d9:2f:be:7a:30:
21:a4:13:79:54:82:40:5b:ea:0f:bb:b8:b5:17:b4:
ee:bb:18:97:b6:02:bd:56:73:41:9f:9e:c2:bf:52:
b3:72:3d:6e:11:b9:15:e6:ea:97:0c:a5:23:5b:f0:
f8:5c:17:cd:b0:03:ad:18:12:7e:03:b9:75:28:2e:
01:58:a8:45:e5:6e:98:1e:5f:8d:e0:18:55:67:e4:
51:4a:df:14:bd:70:5a:ad:af:de:e6:6f:16:a2:2a:
ae:03:41:40:b8:cf:ab:08:70:a2:27:67:1b:ed:e3:
60:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2B:45:35:1D:98:AD:05:65:EE:9A:60:27:C8:E6:32:91:41:53:B4
X509v3 Authority Key Identifier:
keyid:91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:a5:f5:26:6a:6b:0e:e0:00:da:f0:4d:5f:39:92:63:34:4b:
05:fb:6e:c6:76:d6:a8:84:cf:2b:0c:d9:bc:6c:34:18:42:91:
73:21:10:23:2a:35:da:b1:a1:f9:b3:5a:c0:99:33:4e:71:a0:
4c:88:d4:fb:14:75:ae:84:d0:bc:5b:84:9c:57:0a:ab:42:aa:
a1:bb:79:ff:40:36:b3:26:a6:44:a1:c8:d3:40:11:e5:6a:1d:
35:1e:e5:29:ae:50:e3:69:c8:e2:3b:70:04:d2:f7:e8:a4:2a:
20:a1:f0:96:52:25:71:20:ba:bd:79:c1:c9:c9:d8:48:e1:26:
93:67:a4:15:41:c7:5e:49:5e:ed:d8:89:d4:af:bf:7c:d0:d6:
a5:f2:35:6a:c9:8c:0c:bc:23:9f:a1:15:3a:77:52:86:8a:ce:
b1:55:07:e9:01:b3:88:a9:e5:ee:58:ae:ad:b2:c6:c3:1d:8f:
bf:5b:79:ad:d2:0a:1b:71:c0:e3:4e:26:44:03:76:a2:b9:2e:
4c:98:56:16:46:d4:64:dd:6e:aa:a8:36:f1:7f:92:59:dd:6b:
ce:90:af:f9:16:88:c7:d3:16:17:c0:28:fd:8d:e4:34:e3:87:
f2:9c:54:08:5f:c0:c6:60:c5:7f:0c:3d:7f:88:30:a6:eb:ce:
a5:56:8b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:43:27 2025 by rpki-client