Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
File: kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft (raw, json)
Hash identifier: wKE4pq3X0gOtqQfACAGO4C9WVnFKNUYYQk6waWpqsVs=
Subject key identifier: 5E:D5:90:01:2A:B8:BC:B7:E6:3F:23:12:34:FB:9D:05:4A:ED:0F:C7
Authority key identifier: 90:7D:17:81:C2:8A:02:74:1E:A7:A6:3A:CE:3A:95:31:7E:EB:8B:7C
Certificate issuer: /CN=907d1781c28a02741ea7a63ace3a95317eeb8b7c
Certificate serial: 0198820BD568F228EEB28DB0DAD694476473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
Manifest number: 05B5
Signing time: Thu 07 Aug 2025 01:01:10 +0000
Manifest this update: Thu 07 Aug 2025 01:01:10 +0000
Manifest next update: Fri 08 Aug 2025 01:01:10 +0000
Files and hashes: 1: kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl (hash: o/Qdq3N/XHLfRlEP4L5GqmBio7fHPe6NPAeb7woJUj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:0b:d5:68:f2:28:ee:b2:8d:b0:da:d6:94:47:64:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=907d1781c28a02741ea7a63ace3a95317eeb8b7c
Validity
Not Before: Aug 7 01:01:10 2025 GMT
Not After : Aug 8 01:01:10 2025 GMT
Subject: CN=5ed590012ab8bcb7e63f231234fb9d054aed0fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:43:cf:46:11:fc:d9:aa:47:80:4a:6e:6b:f1:
9b:ef:25:c7:a5:26:40:7a:6b:ff:5a:fb:13:d2:33:
f9:47:86:81:85:b5:d9:79:54:66:23:c8:84:ba:59:
3a:e2:52:01:1b:3b:80:76:a5:00:13:dd:28:8e:2b:
7f:be:a0:01:c5:81:c0:de:8f:01:5d:22:1e:66:2c:
f8:2f:a5:ad:e9:a3:ff:36:74:70:a8:8c:64:62:06:
ac:78:23:fd:39:f2:14:e6:86:16:76:e2:e1:1b:6c:
7a:72:8d:74:ed:20:38:c7:32:ac:cc:27:d0:0a:7c:
91:e0:28:1c:21:ab:3e:86:f9:aa:5c:3d:af:04:b0:
86:db:00:93:e8:09:36:fb:fe:1e:37:e4:c7:8b:6d:
af:00:50:35:d7:7b:9e:a6:fe:4b:dc:4c:aa:41:7e:
14:2d:13:a7:f3:bb:11:f1:44:37:fe:91:d6:b0:60:
b9:9b:24:b5:d1:b6:5a:ed:53:b4:aa:ad:32:45:6d:
12:57:76:71:4c:09:c7:44:f6:b1:ed:43:7d:28:23:
6e:96:ca:e3:03:9e:9f:89:13:00:a1:45:c3:d2:c1:
81:25:dc:a8:e8:66:de:4c:6d:16:44:f6:9b:c2:85:
84:28:3d:b1:a0:e7:5b:1f:27:55:d6:21:ea:72:00:
d4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D5:90:01:2A:B8:BC:B7:E6:3F:23:12:34:FB:9D:05:4A:ED:0F:C7
X509v3 Authority Key Identifier:
keyid:90:7D:17:81:C2:8A:02:74:1E:A7:A6:3A:CE:3A:95:31:7E:EB:8B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kH0XgcKKAnQep6Y6zjqVMX7ri3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/818f6a-7e0a-4a00-956e-2d993ff031be/1/kH0XgcKKAnQep6Y6zjqVMX7ri3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:00:bc:37:57:1c:bf:42:bc:c5:e3:cb:71:a0:19:fe:af:4a:
e2:23:82:fa:8a:e4:56:27:63:51:f4:98:14:87:72:00:ef:ea:
af:ac:1e:f2:1d:e3:f3:56:46:22:46:15:a0:95:84:64:2a:37:
62:70:eb:b3:45:91:da:1b:03:bb:59:fa:55:45:65:78:a5:08:
86:29:4e:06:de:f1:78:a2:e7:b8:f9:9e:61:76:03:b1:7b:a2:
b2:ef:43:cd:91:fc:36:5d:9a:37:d0:8d:90:86:20:f2:b2:2b:
2d:6a:f1:c0:0f:0a:3f:14:ec:f5:6b:98:00:33:1f:03:36:3e:
ae:b4:7f:24:d4:79:b7:c2:ff:12:e5:c9:70:73:00:28:ed:d3:
4d:cc:21:3a:06:8e:0d:d3:b0:15:c7:93:de:4a:b3:bb:93:3d:
23:47:b0:cf:e4:ea:3e:07:9f:be:b3:94:b3:c7:63:dc:55:fd:
67:c0:b5:d6:ec:8f:73:85:f7:de:d1:1f:d6:88:97:2f:aa:43:
75:18:94:4a:36:3e:4c:21:e0:f9:e3:26:ba:8c:19:34:94:16:
d3:3a:6c:08:02:fc:17:ac:24:d6:c3:51:69:30:ac:21:b5:09:
00:73:6d:35:1b:15:d9:f1:18:6e:d7:ea:5b:74:e3:b4:a7:88:
30:58:9f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 04:42:05 2025 by rpki-client