Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.mft
File: klPiFMjlpvQTRb5oL2gmVbGr6ls.mft (raw, json)
Hash identifier: W6mOBuBUPiS/UK51jvyI8rCFReNV4JOTDdvTGEjvSuw=
Subject key identifier: 5A:B8:3E:2E:0B:31:3F:F7:EF:0F:A5:E4:A3:4C:F4:67:50:64:72:5E
Authority key identifier: 92:53:E2:14:C8:E5:A6:F4:13:45:BE:68:2F:68:26:55:B1:AB:EA:5B
Certificate issuer: /CN=9253e214c8e5a6f41345be682f682655b1abea5b
Certificate serial: 01987306C38F1D36C24BDBCC3B959A69B02B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klPiFMjlpvQTRb5oL2gmVbGr6ls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.mft
Manifest number: 05D2
Signing time: Mon 04 Aug 2025 03:01:19 +0000
Manifest this update: Mon 04 Aug 2025 03:01:19 +0000
Manifest next update: Tue 05 Aug 2025 03:01:19 +0000
Files and hashes: 1: g9a2AgSYQsELLiSB_-OegEcbQ9I.roa (hash: ImJVXRp/ldmW9cQsi6+awLuGwVI0Qm+zTXoZ5uHaLy0=)
2: klPiFMjlpvQTRb5oL2gmVbGr6ls.crl (hash: Wff746shM2wFWbvSCxV4eDcsqfohXIBxZlNsXVLfRw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.mft
rsync://rpki.ripe.net/repository/DEFAULT/klPiFMjlpvQTRb5oL2gmVbGr6ls.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:06:c3:8f:1d:36:c2:4b:db:cc:3b:95:9a:69:b0:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9253e214c8e5a6f41345be682f682655b1abea5b
Validity
Not Before: Aug 4 03:01:19 2025 GMT
Not After : Aug 5 03:01:19 2025 GMT
Subject: CN=5ab83e2e0b313ff7ef0fa5e4a34cf4675064725e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9f:59:09:48:92:30:c5:1f:e1:a4:69:cf:40:
6a:ed:23:f2:2d:08:c8:88:52:94:2e:b4:59:3d:e6:
8d:e5:7e:7d:f5:a0:68:54:85:60:e0:23:d1:6c:f9:
54:3f:1e:09:37:c6:33:c2:33:5f:69:fd:0c:24:02:
79:1b:d4:19:0c:f4:ff:7b:63:0d:63:6b:7a:95:52:
c3:da:ca:8c:6c:85:8d:3a:35:9a:b5:d6:69:8e:7d:
dd:45:1b:9c:c7:50:1f:71:c7:77:97:66:03:ee:02:
17:4a:4d:cd:31:b8:85:45:51:bf:b3:0b:46:57:0f:
64:e3:fd:a8:92:49:36:ae:5a:8e:e4:03:38:41:5b:
a3:39:ee:56:36:18:ea:44:7a:9b:30:60:7d:ca:fa:
27:5f:37:76:07:2d:92:d2:12:8f:2a:c5:6d:f6:92:
9b:62:ff:27:86:b9:72:65:a1:f5:83:4c:12:fe:6a:
ab:35:64:c0:b1:c2:3d:6b:ef:33:0b:5e:78:70:e3:
09:d9:8c:24:8a:12:3c:87:00:9c:38:20:d7:7a:81:
66:27:82:ad:a6:eb:6b:d7:e3:5c:8e:5f:89:e7:93:
a3:00:f7:72:78:56:ac:23:32:e7:ee:1d:1b:f9:23:
60:ab:66:8b:03:93:80:2f:19:2f:64:53:6d:d7:0f:
26:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B8:3E:2E:0B:31:3F:F7:EF:0F:A5:E4:A3:4C:F4:67:50:64:72:5E
X509v3 Authority Key Identifier:
keyid:92:53:E2:14:C8:E5:A6:F4:13:45:BE:68:2F:68:26:55:B1:AB:EA:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klPiFMjlpvQTRb5oL2gmVbGr6ls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:dc:f1:b5:77:d4:5c:ea:80:90:49:6a:e5:d7:ad:40:5a:03:
46:18:d7:4e:d8:69:12:37:e2:27:76:43:80:aa:ef:df:48:16:
ed:f3:01:22:df:60:68:83:00:5e:14:26:30:bb:b2:86:d1:25:
9c:f0:ae:26:53:26:be:72:73:61:34:09:3e:cd:5c:0f:08:48:
56:13:5b:49:c2:1f:2c:77:0a:0c:53:19:a0:05:83:15:32:d0:
5f:89:03:55:04:a8:54:a1:62:a1:17:97:d0:8a:06:01:ac:7d:
9a:29:7a:73:c9:18:b1:6f:7a:bb:ab:27:66:3f:ad:ee:84:d8:
ea:13:62:56:b4:9e:e7:76:2e:8a:b0:67:69:bf:77:57:d8:ce:
36:7b:a5:39:54:39:be:ce:42:c8:f5:33:11:cb:c3:9d:d6:31:
63:da:96:fc:d9:02:f3:53:7a:2c:74:4c:6f:43:8e:14:06:91:
1b:77:15:27:62:9b:92:71:64:e1:eb:15:1e:61:9c:88:bb:e0:
87:f6:e4:e6:b0:80:5b:57:ba:9b:76:60:7f:81:33:7e:54:81:
2d:83:9d:de:50:07:c6:da:18:52:fb:4c:e0:66:54:0b:7a:15:
04:2d:c2:16:ba:de:8f:b0:76:35:d7:aa:89:8c:65:8f:fa:77:
26:0e:97:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:25 2025 by rpki-client