Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
File: kjlpG6eScAY69DZNMIYxNl6QEWo.mft (raw, json)
Hash identifier: PjsWufEhIGO13KT7MH01S/EkxKyw6Fo0a8xC1nahcls=
Subject key identifier: B2:5C:46:A3:1F:00:8C:B1:BD:5E:56:D8:C2:2D:78:E3:AB:E7:49:66
Authority key identifier: 92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
Certificate issuer: /CN=9239691ba79270063af4364d308631365e90116a
Certificate serial: 01988BEA83A613B6783A78C4A501CC99EE2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
Manifest number: 0D7D
Signing time: Fri 08 Aug 2025 23:00:58 +0000
Manifest this update: Fri 08 Aug 2025 23:00:58 +0000
Manifest next update: Sat 09 Aug 2025 23:00:58 +0000
Files and hashes: 1: kjlpG6eScAY69DZNMIYxNl6QEWo.crl (hash: O7IDarQ2VN/tXn077O90dusRYcooRxn5F3svnJiwQFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:ea:83:a6:13:b6:78:3a:78:c4:a5:01:cc:99:ee:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9239691ba79270063af4364d308631365e90116a
Validity
Not Before: Aug 8 23:00:58 2025 GMT
Not After : Aug 9 23:00:58 2025 GMT
Subject: CN=b25c46a31f008cb1bd5e56d8c22d78e3abe74966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3f:db:f0:76:16:4b:26:09:3a:72:c8:59:15:
32:35:b8:d7:d2:39:ff:5e:52:93:6a:55:12:db:21:
83:d0:7c:10:eb:6e:42:d0:e4:3f:4b:45:07:b3:62:
ee:0f:da:be:23:d1:b4:0e:a8:c1:2e:4a:2a:7a:04:
93:ca:ca:c9:7f:57:31:54:b6:92:de:90:21:ab:47:
99:74:e1:7d:59:b2:b5:a2:f6:af:f5:ee:2b:f6:08:
56:38:f2:7a:33:51:7c:fb:e8:4f:10:29:3b:97:1b:
ca:48:54:1a:b0:d4:fb:d4:ec:63:90:32:83:0c:74:
78:df:a6:6e:94:5a:a2:e8:6a:9a:6c:d4:d9:13:71:
52:31:4c:8b:29:26:cb:b3:0c:8c:1e:c7:5f:b9:f6:
e7:9f:eb:89:66:d5:96:6c:a2:2d:9c:37:dd:18:1c:
15:a2:d2:8e:7b:ff:99:94:95:fe:89:8b:03:f5:b2:
79:40:f6:58:db:a3:19:d0:09:9c:fb:1d:87:5d:95:
be:17:63:dd:d2:a9:a0:74:a7:75:ed:1e:d1:97:e8:
f2:f8:00:8d:d0:9c:cd:de:35:2c:2f:90:81:a0:99:
77:76:8f:54:27:79:01:ed:e0:53:9e:08:82:1d:13:
09:ff:a3:6f:4d:0b:b3:c1:03:f8:81:7a:f6:6c:4c:
3e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:5C:46:A3:1F:00:8C:B1:BD:5E:56:D8:C2:2D:78:E3:AB:E7:49:66
X509v3 Authority Key Identifier:
keyid:92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:3a:05:9e:eb:0c:1b:65:b8:5b:84:81:27:06:6e:3f:0a:76:
41:c5:05:e8:81:04:ee:01:48:63:9a:d6:67:58:56:9f:18:93:
45:b8:59:2f:b9:16:03:63:02:bc:ec:f3:08:76:57:19:fb:4b:
02:33:26:91:8b:2f:87:18:aa:27:91:ee:95:c6:af:7c:06:74:
45:e7:9c:59:ea:02:18:1c:9f:08:92:02:fe:52:b6:5b:9a:75:
ba:c7:81:d9:2e:88:23:b1:1b:46:a9:83:1b:53:99:7f:ba:7b:
bd:dd:c0:a7:ed:f6:77:8a:be:c0:6c:4d:2a:b5:e0:8e:95:a4:
48:bb:a7:d3:9f:86:b9:17:b8:82:eb:c2:13:9b:1c:44:4a:ef:
35:89:33:3d:ba:30:f0:24:4f:c0:b5:e4:c4:55:c3:a0:ee:bd:
b7:b2:e1:ff:d0:1c:4d:b3:c3:5a:69:4b:b6:0e:09:cd:b1:5f:
d7:07:9a:8d:08:04:9c:f6:d7:13:ed:13:7a:84:df:2a:90:af:
59:29:98:51:04:1b:81:42:88:ff:cd:6d:ee:d0:3f:6c:8c:af:
dc:bd:81:2b:71:dc:70:dd:f1:46:60:4e:90:d5:f7:d8:7a:e6:
3e:d4:ff:f9:42:7c:ff:e9:f8:47:91:92:a1:f7:3f:f4:18:d1:
33:7b:a5:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiL6oOmE7Z4OnjEpQHMme4sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMzk2OTFiYTc5MjcwMDYzYWY0MzY0ZDMwODYzMTM2NWU5
MDExNmEwHhcNMjUwODA4MjMwMDU4WhcNMjUwODA5MjMwMDU4WjAzMTEwLwYDVQQD
EyhiMjVjNDZhMzFmMDA4Y2IxYmQ1ZTU2ZDhjMjJkNzhlM2FiZTc0OTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsj/b8HYWSyYJOnLIWRUyNbjX0jn/
XlKTalUS2yGD0HwQ625C0OQ/S0UHs2LuD9q+I9G0DqjBLkoqegSTysrJf1cxVLaS
3pAhq0eZdOF9WbK1ovav9e4r9ghWOPJ6M1F8++hPECk7lxvKSFQasNT71OxjkDKD
DHR436ZulFqi6GqabNTZE3FSMUyLKSbLswyMHsdfufbnn+uJZtWWbKItnDfdGBwV
otKOe/+ZlJX+iYsD9bJ5QPZY26MZ0Amc+x2HXZW+F2Pd0qmgdKd17R7Rl+jy+ACN
0JzN3jUsL5CBoJl3do9UJ3kB7eBTngiCHRMJ/6NvTQuzwQP4gXr2bEw+AwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLJcRqMfAIyxvV5W2MIteOOr50lmMB8GA1UdIwQY
MBaAFJI5aRunknAGOvQ2TTCGMTZekBFqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC84NmJkMDktMzJiMC00OTRjLTk3NTUt
ZjE3OTJiZDc3YTUzLzEva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC84NmJkMDktMzJiMC00OTRjLTk3NTUtZjE3OTJiZDc3YTUz
LzEva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGDoFnusM
G2W4W4SBJwZuPwp2QcUF6IEE7gFIY5rWZ1hWnxiTRbhZL7kWA2MCvOzzCHZXGftL
AjMmkYsvhxiqJ5HulcavfAZ0ReecWeoCGByfCJIC/lK2W5p1useB2S6II7EbRqmD
G1OZf7p7vd3Ap+32d4q+wGxNKrXgjpWkSLun05+GuRe4guvCE5scRErvNYkzPbow
8CRPwLXkxFXDoO69t7Lh/9AcTbPDWmlLtg4JzbFf1weajQgEnPbXE+0TeoTfKpCv
WSmYUQQbgUKI/81t7tA/bIyv3L2BK3HccN3xRmBOkNX32HrmPtT/+UJ8/+n4R5GS
ofc/9BjRM3ulnQ==
-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:15 2025 by rpki-client