Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
File: kh2gU5IfUoNniBiPgvYt1aqXP-k.mft (raw, json)
Hash identifier: exr6cnHZdLJ+I3NbyDVn6bZds8dWTOfop1jZVjDPBEU=
Subject key identifier: 61:B6:44:39:92:19:19:B3:63:45:17:97:B2:C8:EA:2C:75:CE:BB:5F
Authority key identifier: 92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
Certificate issuer: /CN=921da053921f52836788188f82f62dd5aa973fe9
Certificate serial: 0198D4E0821FB215E8D55EC270E393B3A529
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
Manifest number: 0F0E
Signing time: Sat 23 Aug 2025 03:02:19 +0000
Manifest this update: Sat 23 Aug 2025 03:02:19 +0000
Manifest next update: Sun 24 Aug 2025 03:02:19 +0000
Files and hashes: 1: kh2gU5IfUoNniBiPgvYt1aqXP-k.crl (hash: uIAQVjFq6m/03yOhopnlZAgaueoRI6TDBy4PL/MB1Ac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:82:1f:b2:15:e8:d5:5e:c2:70:e3:93:b3:a5:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921da053921f52836788188f82f62dd5aa973fe9
Validity
Not Before: Aug 23 03:02:19 2025 GMT
Not After : Aug 24 03:02:19 2025 GMT
Subject: CN=61b64439921919b363451797b2c8ea2c75cebb5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fa:b0:f4:c2:b3:38:88:db:db:ae:17:c7:54:
39:53:37:49:1e:28:1a:a8:a9:40:32:bd:bd:c1:60:
64:fa:60:81:5f:54:12:c4:26:7e:87:65:44:27:74:
a5:6b:2e:56:ba:a4:f7:15:ba:c3:d1:95:1d:77:fc:
7e:b5:7a:27:b0:a7:3d:ed:00:8c:e1:86:ba:3e:70:
7e:e1:b3:57:38:d0:84:71:af:21:5f:90:01:1b:37:
3c:6c:84:a9:93:2d:a8:a2:0b:d5:d9:b2:fa:85:7b:
77:60:2d:e9:37:cd:84:62:ef:32:98:ec:40:40:69:
dc:42:65:a8:64:26:4b:1a:7c:a7:49:e8:bc:f9:86:
8c:3f:33:5b:42:74:3a:df:1e:40:76:b0:1e:7d:c1:
c3:0a:6d:5c:51:d2:02:9d:5a:44:79:e1:ab:17:ad:
34:c9:04:61:2d:a7:8b:34:61:84:4d:cf:ec:d1:c4:
ed:39:5f:a1:19:06:ad:ff:89:5a:29:27:be:21:fd:
f6:93:ce:b9:08:ce:93:83:7a:38:a4:83:03:4c:d1:
59:27:ff:9d:53:7a:be:93:59:6f:dc:a7:a7:01:2a:
19:af:56:57:79:7f:ac:48:10:3d:96:2d:f3:fb:e1:
be:1c:8b:8c:2f:62:cc:2e:89:77:b3:6d:19:ac:d1:
30:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B6:44:39:92:19:19:B3:63:45:17:97:B2:C8:EA:2C:75:CE:BB:5F
X509v3 Authority Key Identifier:
keyid:92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:da:98:2b:44:08:66:39:ff:ef:87:17:45:07:58:35:2c:12:
d1:8a:9c:86:3a:01:95:a3:a1:51:ef:c1:2a:19:0e:ad:dd:43:
73:f0:2f:3e:2c:81:3f:cd:94:f4:84:35:e9:ea:07:17:2f:9f:
20:b2:f8:29:f7:38:e5:ba:1a:0d:69:b3:93:80:c1:3d:3c:55:
b9:9a:b1:47:a1:9b:0c:f6:16:6d:92:34:7e:bb:03:33:2e:2d:
4e:22:d6:6a:81:41:de:bf:0b:b8:0d:6a:32:3b:d4:15:9b:d8:
7f:06:1b:de:a1:5e:2d:eb:0e:be:33:e0:e5:f6:62:ed:f5:7c:
55:fe:64:55:af:b5:18:4c:f0:68:6e:c4:a6:0b:c6:48:78:54:
ca:64:f2:69:1e:61:86:1f:75:7e:0d:af:78:8c:42:42:2c:06:
b6:ba:71:91:94:d8:f9:86:42:b6:20:1e:e8:f3:4b:63:e3:74:
cb:f1:cc:33:e1:d0:81:a5:9f:0b:fd:5b:6e:50:cf:3a:c9:d2:
56:d2:b7:5a:4d:05:29:15:09:91:f3:16:fb:a7:8e:00:b4:81:
43:0d:11:4f:4d:02:c9:a6:86:6a:72:ac:e9:6d:4c:a3:ae:67:
8b:30:22:55:ca:97:3f:6f:83:98:15:28:a0:66:55:05:12:5f:
df:07:b4:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:28:29 2025 by rpki-client