Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
File: kiYrQ-lHhUb8DhN16LHguv1q3lA.mft (raw, json)
Hash identifier: 2RBMmunYU/PH8zJuQdHCWoPbpJ6siX+fpeKZxqbWSi4=
Subject key identifier: 9A:4C:94:D0:50:F8:41:63:ED:B5:C4:67:20:75:72:A6:29:44:80:E6
Authority key identifier: 92:26:2B:43:E9:47:85:46:FC:0E:13:75:E8:B1:E0:BA:FD:6A:DE:50
Certificate issuer: /CN=92262b43e9478546fc0e1375e8b1e0bafd6ade50
Certificate serial: 01989F3A95F0E3B54ADAA5DDB6C1DC13E5C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
Manifest number: 162A
Signing time: Tue 12 Aug 2025 17:01:13 +0000
Manifest this update: Tue 12 Aug 2025 17:01:13 +0000
Manifest next update: Wed 13 Aug 2025 17:01:13 +0000
Files and hashes: 1: kiYrQ-lHhUb8DhN16LHguv1q3lA.crl (hash: jrMy6TskXLloR2qbX3Y6/Dr46BTLqCvw7CCUgzAdArU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 17:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:3a:95:f0:e3:b5:4a:da:a5:dd:b6:c1:dc:13:e5:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92262b43e9478546fc0e1375e8b1e0bafd6ade50
Validity
Not Before: Aug 12 17:01:13 2025 GMT
Not After : Aug 13 17:01:13 2025 GMT
Subject: CN=9a4c94d050f84163edb5c467207572a6294480e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b9:4d:10:0c:b2:3c:72:1c:58:50:28:00:82:
ee:4a:d5:b2:42:07:6e:cf:91:e9:8c:ef:85:b2:d7:
c1:00:be:61:b1:a0:0b:01:fa:15:a5:bf:05:61:da:
4f:e8:4b:39:07:41:a7:9d:5c:d6:e4:07:54:67:44:
37:cc:e5:00:2f:34:36:27:e8:1d:ac:df:07:8a:73:
f3:84:15:eb:5f:63:9b:86:e7:c6:12:4f:d0:75:38:
e9:28:8e:36:7a:ee:a3:7b:c3:f3:e9:35:d3:24:12:
03:1b:e8:c5:63:4c:7e:76:0d:96:6e:00:c7:b3:71:
ac:14:07:79:9f:9d:7e:9c:e3:1a:8f:23:da:1b:62:
14:fd:d4:75:0b:a0:8a:bd:b6:5d:f2:c1:36:0a:71:
d0:87:39:ff:ee:7f:25:6b:e7:b1:1a:42:42:2d:4d:
b2:8c:85:0e:86:67:66:09:62:1f:92:25:fc:2a:52:
dc:75:de:b3:5d:2d:76:1f:70:d1:77:ec:25:d8:19:
e3:fb:7f:11:fc:aa:0f:f7:85:bf:0a:ea:9e:ca:94:
b2:aa:ed:64:7e:ec:70:e4:3b:cf:41:54:5f:59:46:
b6:fb:69:e0:31:b6:13:67:7e:3c:6d:47:67:c9:8b:
63:7a:02:1c:4e:5d:33:be:70:e1:da:90:c5:84:86:
12:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4C:94:D0:50:F8:41:63:ED:B5:C4:67:20:75:72:A6:29:44:80:E6
X509v3 Authority Key Identifier:
keyid:92:26:2B:43:E9:47:85:46:FC:0E:13:75:E8:B1:E0:BA:FD:6A:DE:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:21:f4:d2:73:02:b0:81:4a:9c:d7:56:40:a8:e6:bf:a6:9b:
83:bb:e7:10:8e:36:cd:1c:a4:aa:55:e3:9e:b2:3c:81:f9:20:
9f:b9:93:2b:a2:a3:58:d7:66:ba:66:f7:fb:81:7a:6e:ca:e2:
17:30:88:b2:75:46:92:43:6c:d0:da:47:72:cf:aa:de:a4:af:
ed:b7:ab:7d:19:9c:40:dc:85:d4:7b:91:f8:7f:39:1a:18:68:
7e:10:de:83:2e:0a:cc:e3:70:ee:1d:ec:3b:be:59:d1:8a:48:
66:ea:cc:7a:4e:a1:18:19:6e:5c:4a:84:0b:75:1b:c0:b1:9f:
c4:bd:58:62:41:cb:af:a1:63:f9:38:7d:63:1c:7e:2c:f0:c5:
80:51:d6:e9:4a:70:f7:a1:fb:43:62:4f:b5:6b:ff:4c:c3:77:
df:86:e8:f8:c1:b1:cc:26:30:68:d1:bb:9e:ff:55:20:4a:d2:
13:d3:0d:2b:90:ee:6f:c2:27:45:82:4d:c6:d8:b2:c6:e6:0a:
67:a3:62:0a:1f:a4:12:b3:21:d2:3a:13:be:4e:58:a2:7a:7b:
de:a4:b9:fc:bc:b9:f4:ef:b7:d9:14:08:e7:a0:89:57:4c:01:
5d:df:9d:95:72:4a:4a:ef:df:46:b5:62:6d:5c:49:37:27:4f:
77:45:f4:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 00:37:59 2025 by rpki-client