Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
File: kjlpG6eScAY69DZNMIYxNl6QEWo.mft (raw, json)
Hash identifier: 27sUFLldwYyZWabgBIy/M024xvlEXSfHKbuvIvdUTTk=
Subject key identifier: 39:5B:2E:49:86:06:5A:1A:DC:08:4D:1F:08:93:52:B7:63:88:98:36
Authority key identifier: 92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
Certificate issuer: /CN=9239691ba79270063af4364d308631365e90116a
Certificate serial: 0199FAD7EE19DFC9C5ECEE68937737234280
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
Manifest number: 0E3B
Signing time: Sun 19 Oct 2025 05:01:19 +0000
Manifest this update: Sun 19 Oct 2025 05:01:19 +0000
Manifest next update: Mon 20 Oct 2025 05:01:19 +0000
Files and hashes: 1: kjlpG6eScAY69DZNMIYxNl6QEWo.crl (hash: NoDL4AFkseiApImZ469B3DwPutsqEckPi4jFGaW7bmw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:ee:19:df:c9:c5:ec:ee:68:93:77:37:23:42:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9239691ba79270063af4364d308631365e90116a
Validity
Not Before: Oct 19 05:01:19 2025 GMT
Not After : Oct 20 05:01:19 2025 GMT
Subject: CN=395b2e4986065a1adc084d1f089352b763889836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:05:ec:1e:20:ca:c4:1d:00:25:9e:f8:b3:97:
d4:1e:e4:b1:4d:a3:96:fc:0b:3a:9e:a6:87:3f:98:
09:c4:7e:7f:0b:4f:f6:74:75:f4:d0:b0:c9:3f:74:
95:9e:95:fd:ee:c6:2d:2d:6a:d0:25:89:b3:c9:ee:
1c:28:d5:f6:6e:1b:d1:ea:b8:a5:56:7e:0e:aa:cd:
64:35:7c:31:29:ae:f9:6d:71:82:ef:e6:b2:ef:a0:
b2:d3:ec:46:6a:56:e0:e8:61:fe:fb:75:46:ba:06:
b1:79:61:78:d7:d2:03:01:03:06:10:64:e5:39:1f:
dd:87:eb:51:0e:b6:7e:07:73:99:31:34:02:d6:59:
48:f4:8b:fe:01:e3:1b:fb:3b:39:b1:a2:ca:42:f2:
88:46:84:6a:2c:ed:6f:15:77:58:ec:13:d9:52:d7:
07:0b:06:19:f5:90:2b:bb:b5:4c:9f:5b:95:d5:d6:
9c:d5:d6:45:a7:51:99:a3:07:46:53:28:87:d6:8b:
57:a9:6e:d1:f6:8d:30:be:43:9e:0f:a6:bb:ce:ca:
29:79:41:dc:c7:6c:1b:dc:d5:9a:71:90:3e:e4:b4:
6c:da:41:6e:a9:74:85:d8:19:42:dd:fd:03:44:80:
16:f8:15:dc:92:ff:81:82:f2:52:22:4b:28:02:26:
54:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:5B:2E:49:86:06:5A:1A:DC:08:4D:1F:08:93:52:B7:63:88:98:36
X509v3 Authority Key Identifier:
keyid:92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:b8:c0:85:5b:ad:f7:49:e0:7a:cb:d4:68:6d:f1:67:73:e0:
d3:2a:a2:41:d5:18:11:8f:51:4f:64:4e:03:ce:a7:70:38:5b:
c1:9b:ac:e0:3f:ce:cf:1b:ee:da:3b:ec:ef:48:35:7c:5e:42:
9c:ec:18:1d:f7:b4:cf:64:1b:2b:99:e9:9a:7e:25:59:ed:97:
77:23:6f:21:79:a1:f6:c3:0a:1f:38:56:75:62:d0:c6:56:8d:
b6:87:95:6e:99:6c:4d:e9:0e:4b:2f:df:88:d4:1f:f5:01:f9:
9a:0e:e0:f6:91:61:68:59:e4:a0:91:6d:1b:b6:48:79:2e:2c:
f1:3b:0b:82:89:8b:63:35:0d:1c:60:55:e3:73:b4:12:50:d2:
c3:71:ac:f2:a6:4f:3e:af:23:c5:32:46:14:57:f8:74:c1:89:
10:6a:cd:a3:76:3b:bd:80:c7:8f:d4:d5:9b:a5:4b:9f:30:11:
58:16:d7:22:0c:81:21:4a:9a:66:29:cc:2b:e5:10:f6:f0:6c:
1b:7d:26:6e:33:7b:cf:15:76:db:17:0c:f9:d5:1e:f4:92:4e:
26:8e:33:d7:05:3e:1a:a5:5f:b0:d4:14:ca:cd:18:af:aa:bd:
cb:2f:01:6e:bb:87:8c:29:19:ce:a7:b4:01:ec:e7:b8:41:22:
27:2b:26:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:09:56 2025 by rpki-client