Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
File: Km9uXKXbQ3eec6znzhbs4O55R5k.mft (raw, json)
Hash identifier: MCv4FwN1x8kHE9WuDbBE5feiKZc17Hbcl3NONcPKA8Y=
Subject key identifier: 88:F2:DA:C4:1B:45:43:DC:61:0C:CE:32:57:4F:9D:25:C0:77:96:12
Authority key identifier: 2A:6F:6E:5C:A5:DB:43:77:9E:73:AC:E7:CE:16:EC:E0:EE:79:47:99
Certificate issuer: /CN=2a6f6e5ca5db43779e73ace7ce16ece0ee794799
Certificate serial: 0198D69843BD01BE13F89F0665048C5F0FD4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
Manifest number: 04CC
Signing time: Sat 23 Aug 2025 11:02:39 +0000
Manifest this update: Sat 23 Aug 2025 11:02:39 +0000
Manifest next update: Sun 24 Aug 2025 11:02:39 +0000
Files and hashes: 1: Km9uXKXbQ3eec6znzhbs4O55R5k.crl (hash: Ujx9oz48Wbn0MSPDlz0iJnQO2zqEtAwkJeJo+0Z0o/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:98:43:bd:01:be:13:f8:9f:06:65:04:8c:5f:0f:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a6f6e5ca5db43779e73ace7ce16ece0ee794799
Validity
Not Before: Aug 23 11:02:39 2025 GMT
Not After : Aug 24 11:02:39 2025 GMT
Subject: CN=88f2dac41b4543dc610cce32574f9d25c0779612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5f:d1:3e:34:6e:58:ef:dd:95:6d:f2:74:5c:
a4:f2:c6:34:34:2c:cb:55:f3:f1:1e:d8:0b:d0:61:
b6:11:33:10:1a:c2:1c:a2:21:62:79:28:8b:16:5e:
66:37:7f:6d:d8:34:69:79:5e:44:1d:72:ba:74:2d:
e3:f2:14:1d:5e:99:ac:03:8b:4c:c7:40:8b:53:89:
69:0e:4b:63:2a:c3:23:2a:62:31:a8:ae:6d:67:28:
31:f2:05:ad:6c:60:8b:71:89:5a:bf:be:b6:58:41:
e3:c9:ab:ad:28:35:0e:46:23:e0:2e:c2:82:c9:f4:
57:6d:64:ad:78:01:59:a5:7d:a3:40:65:fd:f2:50:
7c:33:2a:c7:4c:6a:ad:14:eb:b3:f8:6e:ab:63:65:
f5:ab:b2:00:00:c3:7b:51:ba:96:cd:28:00:ae:62:
be:98:4d:61:f7:53:0c:bf:88:f9:c7:f8:90:fa:64:
1c:34:7a:c4:5f:e7:b1:8f:07:08:fa:c4:37:7a:79:
02:85:be:42:1d:5a:69:a3:d3:85:2c:32:16:d0:00:
7a:0e:78:a1:91:55:f7:6c:d3:7d:6f:57:8c:ba:17:
1f:87:1b:23:1b:5d:31:6f:86:a7:7f:29:2f:b2:af:
15:64:f6:48:f1:91:f7:42:74:4a:92:02:f6:ed:1f:
eb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:F2:DA:C4:1B:45:43:DC:61:0C:CE:32:57:4F:9D:25:C0:77:96:12
X509v3 Authority Key Identifier:
keyid:2A:6F:6E:5C:A5:DB:43:77:9E:73:AC:E7:CE:16:EC:E0:EE:79:47:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:1f:ab:08:c3:10:96:02:11:d9:e9:7b:b6:fe:ae:77:50:95:
a0:88:09:cc:d4:47:6a:3c:25:96:46:a8:14:2b:bb:45:d9:8b:
e2:51:6a:c1:85:4e:52:fd:f1:ec:fe:a5:c0:a1:f0:68:17:79:
36:3c:9a:9d:ad:53:15:c2:9f:e9:8b:89:9a:64:2d:aa:6c:50:
e2:71:3f:9b:03:f6:79:40:f1:a4:7f:85:b2:b4:e2:f1:eb:bd:
6d:f3:26:61:31:b7:28:13:58:fc:72:52:c9:1f:0d:bd:84:1d:
b7:3d:97:ea:2c:a4:04:55:a4:09:52:a1:e5:00:53:bf:78:7c:
c9:a2:5b:8f:09:73:f0:3e:68:1c:92:6b:38:2b:5f:1b:72:88:
fd:d1:fe:43:25:ca:1c:49:a1:c4:a1:e5:89:34:27:9c:9a:bb:
de:de:c2:cc:db:eb:d3:eb:25:73:6a:2b:e1:fb:bb:f1:2a:6a:
27:a3:cf:97:3f:e9:31:8e:72:2e:fa:62:b4:74:a6:82:cf:8d:
3c:20:09:09:95:60:e7:8a:d1:d5:5c:6e:41:93:dd:b1:c0:bb:
36:f0:f5:de:9f:a2:cd:f6:4c:c9:5e:ba:4d:80:9b:9f:4d:c6:
f4:74:4f:6b:88:f7:19:cd:4a:68:f4:0a:c4:c8:ae:c9:6c:e2:
bf:91:c6:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:07 2025 by rpki-client