Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: UXu3U6QM6KyHUmCXDHAq+NeZ3NQdwvNEGHMNSmWl11Q=
Subject key identifier: 5C:88:5E:97:97:C3:BA:10:DD:04:C2:E8:5E:B2:2F:BB:09:B6:FC:CB
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 01987E2EC4D907E12B07DEE1D1EC614DD859
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 01DA
Signing time: Wed 06 Aug 2025 07:00:50 +0000
Manifest this update: Wed 06 Aug 2025 07:00:50 +0000
Manifest next update: Thu 07 Aug 2025 07:00:50 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: N1+9401pTBqXoFnabGUiEQAGqbEoDv3dZd0j2QkdZJE=)
2: q2_sbJziOr7rwxyhvKWnkNjMans.roa (hash: 0BH7DATsPfSUKJPP/TZdwOG931UfHO+OV4ftBhPZrwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2e:c4:d9:07:e1:2b:07:de:e1:d1:ec:61:4d:d8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Aug 6 07:00:50 2025 GMT
Not After : Aug 7 07:00:50 2025 GMT
Subject: CN=5c885e9797c3ba10dd04c2e85eb22fbb09b6fccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e3:2d:81:05:9b:05:1a:81:bb:d4:76:42:ac:
64:84:63:5e:48:a6:ec:3a:a8:82:58:74:06:36:65:
86:11:08:19:43:8e:fc:4a:b4:ee:8b:af:31:2b:0c:
cd:15:05:e8:30:a6:95:d3:11:26:f6:49:e6:21:05:
29:0f:77:c1:07:6d:14:11:a7:39:5a:69:30:70:b6:
b4:4e:e2:a3:46:06:ed:aa:2e:6f:22:c0:2e:54:a0:
26:e0:90:28:72:fd:20:56:27:2c:64:0c:3c:86:fd:
81:3b:21:cb:60:f5:94:af:9f:9f:7a:fc:e8:f5:ac:
b6:3a:a2:20:94:f3:1c:eb:7d:81:ec:b4:3f:80:92:
c5:c2:3c:af:8a:1d:3c:0f:ac:b2:b8:14:a6:f5:b8:
63:0e:96:4b:d2:72:74:0f:32:91:f1:78:43:b6:59:
15:7b:5a:a8:8e:85:53:47:da:c5:33:39:d0:49:65:
5d:25:20:92:8f:6b:08:f3:66:d0:51:0d:23:19:87:
12:a0:18:81:34:73:3b:49:c9:12:5f:c8:64:71:21:
5c:69:9f:e2:5e:74:3e:e0:2e:98:ed:2e:ce:2e:91:
eb:75:98:73:69:7b:83:49:b5:37:2b:52:30:2a:35:
ed:9d:72:01:65:5f:b6:7a:b5:5e:d4:c3:28:c3:e5:
71:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:88:5E:97:97:C3:BA:10:DD:04:C2:E8:5E:B2:2F:BB:09:B6:FC:CB
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:93:b4:55:d6:5d:74:85:04:e6:7c:e1:d3:e8:c2:c9:ba:0e:
23:d6:0c:50:65:9c:79:af:e6:e9:45:04:31:36:b4:5e:f5:b0:
a9:16:8d:c8:c1:dd:06:f8:ab:9f:12:ff:4f:9d:87:76:06:cf:
3f:1b:db:d2:2e:84:81:a8:b5:6f:3a:84:17:1d:f7:48:f1:8c:
a1:09:8c:fd:9b:c0:2e:1c:aa:90:5e:0e:7b:a6:98:43:24:54:
d1:15:ff:82:72:db:64:6b:f6:4d:58:b8:d2:d8:42:ee:70:98:
b9:f3:7b:12:04:4a:90:8f:87:ca:63:dc:a3:58:db:b3:d6:07:
b7:20:84:29:2a:be:c6:25:48:9f:1a:0c:9c:1a:09:88:8f:8c:
bf:61:1d:fc:14:12:80:a1:39:1e:f3:eb:99:23:39:0d:61:1e:
a1:c0:b3:f2:b5:d3:a4:aa:b5:3c:73:1e:3e:3b:2e:ae:a1:58:
74:9f:a9:50:4d:23:71:35:f2:75:fd:d5:2c:a5:8f:d5:86:46:
46:c7:42:31:6b:66:c4:45:0a:e4:bb:da:86:90:de:04:e1:2d:
45:b5:0a:4e:b8:e9:e6:42:7c:7e:3d:ed:b9:63:d7:df:60:f9:
9e:d0:03:5c:86:ed:87:b7:cb:ea:5c:d6:3a:29:bc:c8:c4:76:
40:f5:36:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:10:24 2025 by rpki-client