Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
File: kUS2KYi--9kYP26_brLRlMso5uM.mft (raw, json)
Hash identifier: xvjx2BnPFYKFcfeXb+Go9lNCHDFr/LE4rJzD2ovDNGk=
Subject key identifier: 3E:10:2F:7D:64:1E:54:AC:E1:8D:25:A8:CB:F7:D8:5E:88:F5:47:FD
Authority key identifier: 91:44:B6:29:88:BE:FB:D9:18:3F:6E:BF:6E:B2:D1:94:CB:28:E6:E3
Certificate issuer: /CN=9144b62988befbd9183f6ebf6eb2d194cb28e6e3
Certificate serial: 0197C42585E59C718164454B10492593DCFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
Manifest number: 077C
Signing time: Tue 01 Jul 2025 04:01:22 +0000
Manifest this update: Tue 01 Jul 2025 04:01:22 +0000
Manifest next update: Wed 02 Jul 2025 04:01:22 +0000
Files and hashes: 1: kUS2KYi--9kYP26_brLRlMso5uM.crl (hash: yccF8cYVdsTllMlRIrhs4DiPjZuauSdfL4OoDGb2i0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 01 Jul 2025 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c4:25:85:e5:9c:71:81:64:45:4b:10:49:25:93:dc:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9144b62988befbd9183f6ebf6eb2d194cb28e6e3
Validity
Not Before: Jul 1 04:01:22 2025 GMT
Not After : Jul 2 04:01:22 2025 GMT
Subject: CN=3e102f7d641e54ace18d25a8cbf7d85e88f547fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6d:2c:74:36:87:0c:20:47:b2:0a:ea:d8:60:
8a:1e:72:cd:19:b2:99:f5:fe:37:6d:ff:e6:39:cc:
ad:f3:0e:0e:ca:10:5d:93:fd:65:08:18:ac:dc:9f:
0b:65:88:3f:84:06:90:4a:27:1b:1a:00:ec:8b:bc:
4d:96:20:ca:16:f8:74:58:c1:b1:b3:d3:30:2a:67:
1d:1e:a2:93:85:39:48:59:e5:ee:89:83:d4:95:49:
23:70:2a:0e:5e:67:ab:52:eb:24:bb:35:49:a6:16:
ee:8e:de:88:ba:ff:f7:57:df:5c:bf:90:83:44:49:
94:8f:fb:24:2e:33:7b:ef:c8:e3:8b:fa:3f:19:80:
43:35:44:2c:95:e4:9b:4b:fe:cb:76:cb:e2:37:5d:
c5:f7:f1:1a:de:38:61:9a:77:d9:81:ef:73:2d:e4:
e8:b4:11:9f:a5:d5:e1:e0:bc:40:55:14:26:95:2f:
1f:6b:cc:32:c4:d9:85:cd:e9:5b:2b:49:7b:57:f5:
d7:f7:74:5f:a7:34:79:c7:49:39:ea:ee:bf:03:ba:
eb:25:03:f8:90:45:bd:a7:92:32:8b:6e:fc:1c:c0:
6e:e7:3b:e1:2b:de:6e:de:07:f7:21:4b:b9:de:5d:
e7:37:94:41:56:b3:61:b4:8c:5f:4e:00:28:4b:84:
50:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:10:2F:7D:64:1E:54:AC:E1:8D:25:A8:CB:F7:D8:5E:88:F5:47:FD
X509v3 Authority Key Identifier:
keyid:91:44:B6:29:88:BE:FB:D9:18:3F:6E:BF:6E:B2:D1:94:CB:28:E6:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:2e:34:a3:1a:cd:40:02:d0:89:b4:65:fa:86:3e:68:63:87:
82:02:9a:06:fb:ee:d3:d4:15:d4:95:9d:16:94:b4:38:ed:13:
b2:b9:07:5b:cb:7a:eb:7c:ce:dc:67:85:21:c3:7f:9b:63:e3:
69:f1:b8:cf:58:10:6b:19:dd:f8:2a:88:5d:af:f3:4f:23:c2:
f4:c0:6e:a1:8f:78:73:07:cc:5a:28:a0:3d:7b:33:8d:cd:a6:
d7:9f:4c:09:99:87:70:c4:d3:7f:6a:3e:51:15:23:a7:b4:19:
44:54:cb:ac:6d:b5:f3:6b:c2:97:83:74:50:8c:2b:88:61:9a:
59:99:d9:62:ff:e0:d9:25:81:da:15:21:65:d1:de:f6:a0:05:
36:f2:4c:56:69:f9:0c:62:ff:d5:1a:80:77:42:fe:44:70:f4:
d7:30:56:54:98:ed:33:74:f0:5e:fa:17:5c:c0:6a:9d:c6:23:
2f:c0:27:6d:53:ea:ad:91:60:4e:d5:c1:63:40:b8:67:5e:b7:
da:05:61:d2:fa:39:e4:fa:44:28:d0:06:15:a8:fa:4f:a5:7b:
db:b8:3f:e8:c9:6e:3c:8b:85:8f:77:23:01:a4:41:17:f4:4c:
d6:b6:8f:29:a1:1b:5b:35:e9:5b:fc:a6:f8:05:5f:57:e4:83:
79:04:53:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 07:53:43 2025 by rpki-client