
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft
File: KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft (raw, json)
Hash identifier: RB0E9pZrnGpbw2lCHCuIFViEd77AcVmBNu0Ay2WyYo4=
Subject key identifier: EE:35:D7:39:43:67:FF:BF:00:F1:94:13:40:34:31:44:74:BD:27:27
Authority key identifier: 28:1A:7F:07:BE:5C:31:38:CB:43:C2:C1:8B:29:AA:54:68:54:4B:A6
Certificate issuer: /CN=281a7f07be5c3138cb43c2c18b29aa5468544ba6
Certificate serial: 01987374645ED06BE6D31856313A7884039A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBp_B75cMTjLQ8LBiymqVGhUS6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft
Manifest number: 09A9
Signing time: Mon 04 Aug 2025 05:01:04 +0000
Manifest this update: Mon 04 Aug 2025 05:01:04 +0000
Manifest next update: Tue 05 Aug 2025 05:01:04 +0000
Files and hashes: 1: KBp_B75cMTjLQ8LBiymqVGhUS6Y.crl (hash: 6Fcw0PLljtauSylq94+L+pfgS02YB+OFH73rNsy95nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBp_B75cMTjLQ8LBiymqVGhUS6Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:64:5e:d0:6b:e6:d3:18:56:31:3a:78:84:03:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=281a7f07be5c3138cb43c2c18b29aa5468544ba6
Validity
Not Before: Aug 4 05:01:04 2025 GMT
Not After : Aug 5 05:01:04 2025 GMT
Subject: CN=ee35d7394367ffbf00f194134034314474bd2727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:98:7d:2f:a7:67:3b:36:fa:24:07:de:bf:f3:
2b:02:6f:eb:25:e0:61:80:72:79:54:81:11:9e:b6:
12:f9:c7:79:4b:03:91:03:9a:ec:22:25:8c:b6:8e:
6c:58:c9:0d:16:45:43:ee:f0:bd:d9:92:77:5e:61:
ca:9f:e0:91:da:b2:0f:d1:e7:ce:e5:93:57:04:de:
6f:16:7b:1d:e5:e6:1c:70:90:ce:68:34:5e:bd:d2:
c3:62:8a:33:d5:c9:4f:75:81:80:12:f0:ea:b6:ba:
28:30:1b:72:58:24:99:19:d4:5e:4f:24:07:00:0b:
45:a5:49:9a:5c:33:c4:27:a0:b0:52:02:c9:9c:35:
2f:8d:30:05:db:38:ad:2d:88:13:09:58:2a:6d:75:
1b:5d:e9:9c:0b:ec:59:6b:09:0c:d4:e7:85:a9:c4:
7c:e7:94:c3:57:54:5e:94:9d:fa:2f:1f:9a:0e:e2:
45:03:42:07:ac:20:2c:cf:81:ac:c8:ea:96:e1:0b:
d4:91:6e:63:56:da:aa:6f:5a:e7:52:c2:84:72:d5:
7e:6e:de:3a:d6:f6:04:81:28:f7:69:a5:8d:40:48:
28:fb:6d:fc:54:c0:11:fa:11:03:f3:52:e9:a0:b5:
77:04:69:e3:2b:41:94:c5:88:1e:2a:b1:c5:86:b9:
c7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:35:D7:39:43:67:FF:BF:00:F1:94:13:40:34:31:44:74:BD:27:27
X509v3 Authority Key Identifier:
keyid:28:1A:7F:07:BE:5C:31:38:CB:43:C2:C1:8B:29:AA:54:68:54:4B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBp_B75cMTjLQ8LBiymqVGhUS6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/aca44e-8449-471f-8ebd-52ccf65bd67b/1/KBp_B75cMTjLQ8LBiymqVGhUS6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:bb:50:f2:eb:89:59:65:f1:6b:6e:04:93:e4:95:4d:74:95:
5e:e6:d3:6a:16:92:0b:c6:e1:2f:4b:21:99:20:3d:6a:37:42:
59:6d:6b:c3:8b:74:07:e0:55:42:83:f8:aa:08:33:9c:dd:f5:
42:f1:9c:49:60:60:f2:2f:8e:97:ee:c1:69:34:8a:29:27:ef:
05:1a:8b:8c:ec:ea:17:50:88:c5:20:92:f9:22:34:f3:6e:85:
99:4c:24:af:59:99:5c:f2:97:a6:f3:af:bf:24:de:62:15:19:
33:b5:8f:4b:f4:83:41:25:41:28:93:56:f4:05:39:6a:8c:d4:
ba:bc:90:20:14:c4:5c:d2:1c:f1:5b:83:84:93:80:04:fb:70:
32:0e:80:16:14:52:8a:3f:ce:52:62:17:39:cb:62:95:72:b6:
3d:02:50:5f:68:f4:eb:cc:8a:f9:66:e4:02:8b:77:99:e9:70:
9b:16:25:58:f7:ab:37:2b:b0:39:b0:2b:55:aa:96:bf:88:c5:
f5:36:e7:0a:83:4f:b6:f3:d4:6b:89:00:f9:67:d4:77:3e:3c:
be:74:3c:c7:1a:fe:be:21:8f:fc:b5:8b:4a:49:2d:a8:1d:51:
b5:45:6f:84:e6:17:74:32:63:0e:77:17:0a:3f:20:8c:1a:69:
a6:cd:88:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:05:40 2025 by rpki-client