Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
File: kjlpG6eScAY69DZNMIYxNl6QEWo.mft (raw, json)
Hash identifier: aY0Sr9HdUZetrRXXp9eRD+387GnyY9He96G/YL8SiG8=
Subject key identifier: 5E:CF:12:5B:B1:0C:07:14:B1:37:1F:02:8A:C5:BA:21:4E:8E:E3:06
Authority key identifier: 92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
Certificate issuer: /CN=9239691ba79270063af4364d308631365e90116a
Certificate serial: 0198D54DCE36C85505FC1D81E889BDF900F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
Manifest number: 0DA3
Signing time: Sat 23 Aug 2025 05:01:42 +0000
Manifest this update: Sat 23 Aug 2025 05:01:42 +0000
Manifest next update: Sun 24 Aug 2025 05:01:42 +0000
Files and hashes: 1: kjlpG6eScAY69DZNMIYxNl6QEWo.crl (hash: s49q998hekgfFVjXNz9f9sGlcZBp61lUODh2gf975DQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:ce:36:c8:55:05:fc:1d:81:e8:89:bd:f9:00:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9239691ba79270063af4364d308631365e90116a
Validity
Not Before: Aug 23 05:01:42 2025 GMT
Not After : Aug 24 05:01:42 2025 GMT
Subject: CN=5ecf125bb10c0714b1371f028ac5ba214e8ee306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0a:70:df:ac:b8:63:f8:ef:f6:0b:3a:20:2e:
05:b5:0a:c1:3e:80:35:76:a9:cc:df:e3:12:58:2d:
cd:f9:d6:cf:b1:00:96:cf:31:60:05:4f:a1:98:a7:
93:49:72:78:d4:0d:07:3f:b4:43:59:ac:4b:e0:7e:
06:95:39:ca:c1:94:d4:ee:d0:77:8c:18:74:00:98:
d5:c1:52:cc:d2:12:6a:40:1e:25:27:60:ba:6a:de:
71:8f:ac:73:bc:4d:ce:c7:36:74:d2:78:50:28:22:
78:7f:e9:7b:58:94:ee:4c:40:5a:76:9b:0a:cc:d7:
d9:7d:51:7c:50:a4:65:82:9a:aa:1f:b9:77:d9:59:
08:18:e9:29:b4:57:50:56:6e:71:e5:30:5f:41:a8:
3e:6f:63:30:a0:ff:36:f5:ea:eb:11:d5:ae:5e:db:
64:ed:09:42:29:3e:31:05:79:49:3e:fd:4d:32:8a:
46:5d:40:4c:a2:12:9e:24:62:9e:80:53:e9:67:c0:
c7:00:50:30:50:bc:11:37:62:24:7d:d9:95:57:6c:
c5:e4:50:05:d3:42:a3:57:92:c6:5e:b0:46:3b:7c:
67:6e:c7:2f:7a:2d:ab:47:6b:87:fc:0c:f4:5f:19:
85:6b:69:79:96:70:70:d3:43:02:eb:05:10:08:b2:
e4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CF:12:5B:B1:0C:07:14:B1:37:1F:02:8A:C5:BA:21:4E:8E:E3:06
X509v3 Authority Key Identifier:
keyid:92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:c3:e8:13:4a:ec:b6:83:3c:06:b7:b2:e8:88:86:b1:94:32:
4b:61:ed:34:fc:b1:c0:83:2e:fd:d6:8b:7d:67:a6:48:11:da:
9d:18:9d:54:8a:57:1b:86:27:4f:2e:68:1d:98:33:25:a8:44:
a8:52:9f:2a:56:52:f3:4a:6b:c1:90:84:31:8f:d8:39:bf:b3:
60:44:0e:9f:f3:d4:99:81:0d:53:ac:c4:82:27:f4:77:8d:0c:
e9:5c:dd:69:bb:55:09:1d:9a:11:46:c7:ca:9c:be:7c:dc:b4:
50:ae:8c:2b:3b:8c:ee:e4:b2:c5:2f:ef:f9:7b:1e:75:dc:09:
e9:8b:77:9f:c9:10:30:c9:bc:70:05:99:9d:5e:8d:08:79:48:
3a:35:3a:ef:2a:2f:99:bd:8e:70:06:bd:33:5d:36:d9:d8:61:
e8:56:96:04:f4:1c:f6:ac:38:00:a0:fd:8a:a0:9b:93:58:05:
43:37:b0:cd:83:c3:b4:3e:f9:b5:78:70:a2:7c:9f:5d:e1:26:
ee:6d:32:e0:79:dd:56:2d:17:00:38:a1:2a:d4:b2:c6:6a:fb:
ec:a4:de:6c:84:1c:ea:58:75:9e:e5:96:ac:d1:5e:e6:7c:03:
2f:e6:92:a4:34:4e:b7:91:50:16:86:91:02:9c:80:00:f3:12:
1c:af:7d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:26:52 2025 by rpki-client