Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
File: ksrhHed02u8FJ0JGPOlU9SHG0nI.mft (raw, json)
Hash identifier: SXxUlxqjqzAkfSKp9cIAQJ5zvp38pzULGa6nsOiRomM=
Subject key identifier: BE:B1:FB:C1:15:7D:14:BF:1C:FF:C3:AC:D0:C2:6B:FB:CA:A4:32:AA
Authority key identifier: 92:CA:E1:1D:E7:74:DA:EF:05:27:42:46:3C:E9:54:F5:21:C6:D2:72
Certificate issuer: /CN=92cae11de774daef052742463ce954f521c6d272
Certificate serial: 0198D47379ED2058E47D885A382E75D52B47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
Manifest number: 1041
Signing time: Sat 23 Aug 2025 01:03:14 +0000
Manifest this update: Sat 23 Aug 2025 01:03:14 +0000
Manifest next update: Sun 24 Aug 2025 01:03:14 +0000
Files and hashes: 1: ksrhHed02u8FJ0JGPOlU9SHG0nI.crl (hash: 7CYgOiLqMisS6GXnho8Z7Uqy5SnyQW/l1zoEgOizFW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:79:ed:20:58:e4:7d:88:5a:38:2e:75:d5:2b:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92cae11de774daef052742463ce954f521c6d272
Validity
Not Before: Aug 23 01:03:14 2025 GMT
Not After : Aug 24 01:03:14 2025 GMT
Subject: CN=beb1fbc1157d14bf1cffc3acd0c26bfbcaa432aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:65:6f:99:2c:d4:23:d1:4d:c6:16:47:0b:ad:
ae:2b:3b:09:eb:61:66:cf:66:a7:b0:3a:03:9f:ef:
c6:9b:42:59:9d:39:be:99:8b:fc:12:26:76:7d:8c:
68:f7:99:83:fd:2f:e9:5e:b7:31:83:47:43:22:d6:
38:a7:e3:2e:75:7b:88:3e:41:9a:94:9c:00:b1:e1:
6a:e3:c8:a8:f6:7a:23:9c:b1:64:8e:9d:96:3e:5a:
02:5e:c7:82:68:a7:c1:6b:6a:0d:7e:dc:b7:e3:08:
84:f0:85:b3:65:bf:bc:25:9b:d0:b7:ba:fb:bc:58:
4a:fb:78:75:d0:45:6d:51:60:8f:ca:05:15:f3:f4:
11:6f:4d:79:76:d4:be:4b:02:a9:73:20:b8:b2:5f:
ee:c3:b7:22:4b:dc:60:91:f8:1b:5d:0e:57:d1:0a:
7e:0d:19:8f:2c:0c:33:a1:3b:6a:e0:6a:6e:e1:42:
65:8c:9a:cc:ec:b6:19:b9:01:03:28:2b:14:fd:b0:
a4:4b:d6:96:e6:90:d8:1a:74:c9:47:7f:92:a8:4a:
d0:cf:42:2b:86:6f:7f:da:7c:99:06:7f:13:4c:a1:
73:a7:09:e5:20:71:76:3e:ae:95:60:e4:cc:7c:19:
be:a9:9f:9c:f9:af:6e:cb:b2:52:2a:f6:08:96:00:
58:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B1:FB:C1:15:7D:14:BF:1C:FF:C3:AC:D0:C2:6B:FB:CA:A4:32:AA
X509v3 Authority Key Identifier:
keyid:92:CA:E1:1D:E7:74:DA:EF:05:27:42:46:3C:E9:54:F5:21:C6:D2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:07:3c:8a:3b:07:61:ce:96:1c:69:d6:3c:11:36:e7:5f:68:
43:4a:fb:17:26:32:01:08:4b:9c:91:71:a7:d4:d4:70:98:2b:
31:dc:61:0d:88:32:f4:c8:7e:4f:0c:ee:6a:c0:b7:54:3a:33:
f0:56:d4:d9:20:63:93:3c:86:90:4a:76:a7:af:ad:7a:cf:cc:
18:04:72:ce:d2:b1:c4:02:19:fa:26:a7:bb:59:39:34:15:47:
f0:9b:6e:49:87:30:e3:d8:5a:4f:d2:a8:84:d4:fd:60:b7:b3:
b0:26:a0:ea:de:a7:6e:bb:f1:1f:d6:09:88:dd:f4:a8:9c:f5:
1d:09:2e:59:66:ce:67:f1:b3:f7:e1:44:2a:8e:b6:cf:13:31:
ff:51:e9:e6:0b:21:b8:11:cc:2f:c1:71:ad:f8:8f:d3:cf:3d:
cc:de:20:ed:42:a4:06:38:c4:8d:1f:3d:27:57:60:a0:e5:29:
53:79:79:aa:fc:e4:8f:4d:35:ca:bd:52:41:63:97:a2:b3:2c:
3e:10:1d:18:3d:2d:f0:be:62:1a:3a:63:78:aa:b8:9b:e4:4d:
c3:f8:b0:94:63:ad:30:12:6c:f2:93:16:d0:45:17:bf:91:5a:
b3:c5:18:aa:16:4b:57:e8:63:c4:7c:6a:eb:f9:7a:82:e8:b6:
fe:b4:da:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc3ntIFjkfYhaOC511StHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyY2FlMTFkZTc3NGRhZWYwNTI3NDI0NjNjZTk1NGY1MjFj
NmQyNzIwHhcNMjUwODIzMDEwMzE0WhcNMjUwODI0MDEwMzE0WjAzMTEwLwYDVQQD
EyhiZWIxZmJjMTE1N2QxNGJmMWNmZmMzYWNkMGMyNmJmYmNhYTQzMmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmVvmSzUI9FNxhZHC62uKzsJ62Fm
z2ansDoDn+/Gm0JZnTm+mYv8EiZ2fYxo95mD/S/pXrcxg0dDItY4p+MudXuIPkGa
lJwAseFq48io9nojnLFkjp2WPloCXseCaKfBa2oNfty34wiE8IWzZb+8JZvQt7r7
vFhK+3h10EVtUWCPygUV8/QRb015dtS+SwKpcyC4sl/uw7ciS9xgkfgbXQ5X0Qp+
DRmPLAwzoTtq4Gpu4UJljJrM7LYZuQEDKCsU/bCkS9aW5pDYGnTJR3+SqErQz0Ir
hm9/2nyZBn8TTKFzpwnlIHF2Pq6VYOTMfBm+qZ+c+a9uy7JSKvYIlgBYDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL6x+8EVfRS/HP/DrNDCa/vKpDKqMB8GA1UdIwQY
MBaAFJLK4R3ndNrvBSdCRjzpVPUhxtJyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3NyaEhlZDAydThGSjBKR1BPbFU5U0hHMG5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9lZGY0MzUtMWFiZi00NzBlLWJhNmQt
ZWZmNmZkN2QzYjI4LzEva3NyaEhlZDAydThGSjBKR1BPbFU5U0hHMG5JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9lZGY0MzUtMWFiZi00NzBlLWJhNmQtZWZmNmZkN2QzYjI4
LzEva3NyaEhlZDAydThGSjBKR1BPbFU5U0hHMG5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATAc8ijsH
Yc6WHGnWPBE2519oQ0r7FyYyAQhLnJFxp9TUcJgrMdxhDYgy9Mh+TwzuasC3VDoz
8FbU2SBjkzyGkEp2p6+tes/MGARyztKxxAIZ+ianu1k5NBVH8JtuSYcw49haT9Ko
hNT9YLezsCag6t6nbrvxH9YJiN30qJz1HQkuWWbOZ/Gz9+FEKo62zxMx/1Hp5gsh
uBHML8FxrfiP0889zN4g7UKkBjjEjR89J1dgoOUpU3l5qvzkj001yr1SQWOXorMs
PhAdGD0t8L5iGjpjeKq4m+RNw/iwlGOtMBJs8pMW0EUXv5Fas8UYqhZLV+hjxHxq
6/l6gui2/rTamQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:20:44 2025 by rpki-client