Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
File: KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft (raw, json)
Hash identifier: nnFvJVpC9WWrXAK2tGvf9NJGXHMo6A6m0i6ygUd85bU=
Subject key identifier: C9:50:4B:DA:9E:22:67:7A:AE:22:DA:A1:E8:3E:15:2D:07:DB:B2:C2
Authority key identifier: 29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39
Certificate issuer: /CN=29b1210ec9105c717d098f9f0d00d9dea2322539
Certificate serial: 01987C095187AEA9264FEBAF4A3B1854376E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
Manifest number: 12ED
Signing time: Tue 05 Aug 2025 21:00:42 +0000
Manifest this update: Tue 05 Aug 2025 21:00:42 +0000
Manifest next update: Wed 06 Aug 2025 21:00:42 +0000
Files and hashes: 1: KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl (hash: alxqxp6KVyKzJbFWLJ7pbK8dj200dMRymDBlqc75biw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 21:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:09:51:87:ae:a9:26:4f:eb:af:4a:3b:18:54:37:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b1210ec9105c717d098f9f0d00d9dea2322539
Validity
Not Before: Aug 5 21:00:42 2025 GMT
Not After : Aug 6 21:00:42 2025 GMT
Subject: CN=c9504bda9e22677aae22daa1e83e152d07dbb2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:5c:f5:6c:2a:89:5d:43:09:42:14:c3:67:
86:ad:eb:97:49:55:dd:cf:c1:a5:9b:c0:d2:bc:bb:
b2:ba:7c:89:7a:b9:8b:c7:08:28:f0:0e:da:f0:49:
35:05:7c:e8:b6:4b:dc:3e:69:a6:18:97:2d:56:3d:
22:a0:04:55:c4:da:36:bd:23:43:26:53:80:35:13:
06:d7:61:8b:21:e7:3f:19:e0:e0:36:96:81:9c:c5:
c2:86:2b:f8:29:e1:37:e9:96:50:83:36:a0:d4:2a:
0c:6f:56:5f:55:4d:1f:17:61:04:05:49:32:a8:15:
e3:c4:55:9d:d0:66:ed:14:da:ac:20:30:e4:0f:90:
85:c6:10:c0:49:83:fa:c1:33:aa:22:9d:56:28:03:
5c:bc:9f:1b:e5:93:87:8c:55:73:d4:fc:fa:bd:f9:
19:54:39:c1:dd:01:89:17:02:e5:b4:be:32:34:02:
56:b8:e2:1b:01:39:d0:12:6a:da:37:2e:de:7b:dc:
74:eb:8d:18:81:45:e1:28:cd:f6:93:27:35:6a:3e:
a9:85:65:69:ef:18:f9:a3:1d:8d:c6:65:e0:a8:c8:
89:f5:52:81:18:41:d9:c1:c3:d3:74:fc:a2:2e:59:
5b:ba:fc:93:33:76:cc:bf:26:bd:ea:72:de:ad:4b:
94:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:50:4B:DA:9E:22:67:7A:AE:22:DA:A1:E8:3E:15:2D:07:DB:B2:C2
X509v3 Authority Key Identifier:
keyid:29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a7:79:c3:a7:59:88:a3:33:b8:c5:c3:9b:f2:91:fa:d2:8e:
cb:19:a4:b6:46:50:0b:64:e9:b5:ab:31:d5:80:87:fb:d2:77:
e7:2d:d6:2d:7d:7c:1e:e9:55:0b:f6:f9:d8:4c:2d:98:c1:88:
0b:71:4b:3f:7b:f2:af:96:99:4a:57:d8:21:63:19:fe:16:11:
bf:34:22:20:d4:48:8d:bb:18:0b:e7:a7:59:49:59:77:c2:c2:
fb:9d:26:d3:d3:75:ba:03:57:71:75:eb:30:d8:01:a6:6b:02:
92:35:bc:81:45:60:ba:60:0b:ea:52:77:af:c7:12:02:9b:da:
71:a2:0d:45:d0:48:35:c9:a7:a0:85:bc:43:33:cc:a0:c8:89:
a8:0b:10:f9:82:18:15:6a:3b:7b:42:84:d2:cb:86:85:87:86:
97:2f:1d:1e:c7:99:a7:ff:4f:5c:74:55:1f:2e:c0:e4:c0:13:
b2:c1:b6:e4:f7:ed:9a:a8:36:75:32:f6:33:65:41:0a:56:ff:
25:e4:30:38:89:ff:20:9e:03:e8:b1:70:88:11:95:58:96:a4:
e7:41:81:2a:6b:75:75:fa:0a:0b:a3:c3:b3:f7:65:c8:e6:b4:
24:1f:0a:fd:8f:6f:7b:b0:5d:7d:af:77:0d:9e:ca:48:77:0b:
1b:c2:35:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 06:07:16 2025 by rpki-client