Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
File: kUS2KYi--9kYP26_brLRlMso5uM.mft (raw, json)
Hash identifier: 0Ld+OpuLJRQD24B2oBuXhXzBPlyZzH1FdpzuUPjWXKk=
Subject key identifier: 58:1B:DB:45:9B:F0:73:3B:2D:A0:F7:79:F7:64:D8:3F:7B:2B:46:BF
Authority key identifier: 91:44:B6:29:88:BE:FB:D9:18:3F:6E:BF:6E:B2:D1:94:CB:28:E6:E3
Certificate issuer: /CN=9144b62988befbd9183f6ebf6eb2d194cb28e6e3
Certificate serial: 0199FDD91A3CCB19D94D84DFF089B8E3E23B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
Manifest number: 08A3
Signing time: Sun 19 Oct 2025 19:01:27 +0000
Manifest this update: Sun 19 Oct 2025 19:01:27 +0000
Manifest next update: Mon 20 Oct 2025 19:01:27 +0000
Files and hashes: 1: kUS2KYi--9kYP26_brLRlMso5uM.crl (hash: GI30rkNBimY6qvkmDaYoPqbwD0DDA18W4UGWkrS7hnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:1a:3c:cb:19:d9:4d:84:df:f0:89:b8:e3:e2:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9144b62988befbd9183f6ebf6eb2d194cb28e6e3
Validity
Not Before: Oct 19 19:01:27 2025 GMT
Not After : Oct 20 19:01:27 2025 GMT
Subject: CN=581bdb459bf0733b2da0f779f764d83f7b2b46bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1b:61:af:9f:09:8f:48:35:56:1f:56:3e:02:
94:49:0b:1c:12:19:5f:29:60:c4:42:75:e4:7d:6f:
67:9a:c4:35:db:a1:9d:5f:ac:d6:68:3e:6c:e7:e0:
f2:52:f1:40:1e:d7:a3:f3:c0:c0:9a:59:92:d8:e3:
50:de:4c:28:ab:ad:9c:7c:31:9e:17:58:05:11:6b:
d2:9e:9d:1a:a1:49:22:1d:ea:41:69:dd:30:e6:39:
07:72:1f:0e:61:72:75:3f:a0:b6:22:fc:d3:05:66:
22:d5:39:2d:5d:e5:9f:9c:3f:b1:4e:a0:17:d4:29:
5d:76:7a:7f:e1:a8:d2:03:47:b7:b6:72:6a:b4:0b:
ba:ca:19:47:c5:ba:46:13:30:79:fa:93:c7:b8:3c:
10:1d:42:dc:98:de:9c:92:1a:fd:68:ef:5c:3a:e4:
e7:00:85:5d:f7:a4:4a:c7:7a:6e:de:76:b2:8e:0a:
23:30:e3:18:1c:7d:28:6e:b8:c4:a6:b7:60:11:2c:
10:2b:46:3d:53:bc:bb:a6:fe:4e:31:f6:6c:c0:ba:
b3:76:97:b3:fb:37:45:36:ff:7e:39:10:4e:0d:1e:
8a:a1:b8:60:5f:e7:2a:11:0c:3f:d3:61:4a:15:b4:
be:dc:39:5e:c8:38:2f:98:8e:e4:98:ab:4b:da:f3:
c8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1B:DB:45:9B:F0:73:3B:2D:A0:F7:79:F7:64:D8:3F:7B:2B:46:BF
X509v3 Authority Key Identifier:
keyid:91:44:B6:29:88:BE:FB:D9:18:3F:6E:BF:6E:B2:D1:94:CB:28:E6:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUS2KYi--9kYP26_brLRlMso5uM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/93574e-d811-43c2-bd1c-990ba0c06326/1/kUS2KYi--9kYP26_brLRlMso5uM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:19:4e:87:a0:8b:c7:34:6d:bb:e6:8d:d0:1b:6d:d2:94:27:
12:99:ee:bb:82:34:b3:b3:2d:bb:94:5f:8d:42:76:0c:2e:ea:
71:4e:4a:96:ae:0a:f2:4f:9f:09:38:f2:ba:c7:bc:dc:79:15:
26:86:cf:22:2d:be:21:8d:36:95:66:f9:a1:f8:62:5f:5d:31:
de:e8:4a:fa:06:9d:eb:53:bf:f1:27:41:59:62:78:b7:8b:31:
a4:70:c4:2c:0a:4a:70:f5:64:92:68:64:ba:a4:ec:d7:04:8e:
94:bb:1e:a0:28:74:2f:71:fd:dd:63:25:e3:0e:60:75:5e:3f:
83:5d:95:2e:c9:29:a3:cd:64:c6:15:64:84:63:49:34:0f:2d:
b9:39:98:5d:4a:6d:0f:a1:d3:40:fe:d3:5c:99:54:b4:c2:48:
7e:f2:54:34:4c:6d:4a:2e:a4:2f:fd:37:e7:73:00:ad:3c:14:
11:67:fd:a7:e2:72:95:a6:c6:0b:4a:e0:ba:ee:2f:32:1f:16:
00:82:fe:32:5a:54:28:e2:00:48:89:15:b7:f4:82:7a:77:c8:
7a:57:a4:26:29:a6:bb:99:27:ea:00:34:53:f0:8d:6a:46:c2:
84:aa:74:7a:b6:de:08:f0:7b:d5:4d:5a:22:e0:7d:0d:a6:0b:
dc:76:96:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:56:08 2025 by rpki-client