
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
File: K5Ro565AOUbluk3mHMHEej2b794.mft (raw, json)
Hash identifier: MhGDs9SIKiI5/f+sEri6RKKqQXthFEUmLyxDi8Noapo=
Subject key identifier: 28:8E:85:11:58:AB:5D:BB:B7:05:89:4C:F2:15:B4:2E:65:23:1B:AB
Authority key identifier: 2B:94:68:E7:AE:40:39:46:E5:BA:4D:E6:1C:C1:C4:7A:3D:9B:EF:DE
Certificate issuer: /CN=2b9468e7ae403946e5ba4de61cc1c47a3d9befde
Certificate serial: 019873E26E01DAF3B58C03C5A3E91CF0860D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
Manifest number: 0AD0
Signing time: Mon 04 Aug 2025 07:01:15 +0000
Manifest this update: Mon 04 Aug 2025 07:01:15 +0000
Manifest next update: Tue 05 Aug 2025 07:01:15 +0000
Files and hashes: 1: K5Ro565AOUbluk3mHMHEej2b794.crl (hash: N+Hv+zcE0F3Tks5OQtWjI0yz3aQCqk4tGy/VxKYx5pc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:6e:01:da:f3:b5:8c:03:c5:a3:e9:1c:f0:86:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b9468e7ae403946e5ba4de61cc1c47a3d9befde
Validity
Not Before: Aug 4 07:01:15 2025 GMT
Not After : Aug 5 07:01:15 2025 GMT
Subject: CN=288e851158ab5dbbb705894cf215b42e65231bab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:76:2a:97:87:c1:9d:6c:de:6f:24:9f:e7:b2:
8c:c1:1b:96:82:4e:11:22:7f:b7:8c:15:d7:4e:98:
06:ba:89:ac:3e:82:02:d7:3a:fc:ec:e9:ce:67:21:
b9:36:b7:1a:7b:7f:d0:b6:6b:bb:e6:ff:86:57:4d:
37:c2:b3:76:82:e3:c6:64:a3:34:85:ac:e6:72:5d:
a5:8c:e0:05:1a:47:b8:40:62:94:73:01:b3:56:bc:
ef:4f:cc:68:87:c3:ea:14:62:00:34:b9:51:ea:4d:
b3:17:8b:b9:5b:e7:f8:ee:c3:a3:f0:76:04:2b:99:
d6:b7:38:f0:d0:73:de:1b:c7:08:11:a3:ad:29:de:
bd:bb:24:4e:d9:b2:62:f3:41:a1:f9:80:33:8c:6f:
63:6c:f9:6b:4d:30:b9:3f:7c:11:de:56:d7:83:9f:
dc:92:ae:57:75:bc:c9:82:b5:3c:f3:82:2e:7d:06:
83:2c:14:60:5b:bd:68:d1:f7:7c:19:20:0f:73:f0:
29:a9:b4:4e:26:da:09:e7:db:03:a8:c1:25:5b:26:
09:43:9e:6a:29:23:b5:15:b1:81:11:a9:e7:99:e5:
6a:cd:b7:85:1f:95:8e:0a:d7:86:b0:a2:bf:52:b3:
36:ee:54:cf:f8:61:18:3d:92:a5:92:02:47:25:b2:
d1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8E:85:11:58:AB:5D:BB:B7:05:89:4C:F2:15:B4:2E:65:23:1B:AB
X509v3 Authority Key Identifier:
keyid:2B:94:68:E7:AE:40:39:46:E5:BA:4D:E6:1C:C1:C4:7A:3D:9B:EF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:a8:90:a2:af:72:58:8c:92:10:da:3a:11:9c:28:33:4d:70:
7e:78:e6:06:28:00:14:0b:78:11:a3:ce:79:67:9f:a0:b8:f8:
d0:ea:cd:3e:41:1b:b1:c9:f5:44:b9:02:fc:a8:0d:1b:d8:7b:
85:10:01:dc:ef:b6:9b:b5:15:6d:bd:6b:7b:1e:5d:7e:b9:97:
c6:2c:a7:2c:7e:c2:7b:e7:e7:15:c1:9a:c0:37:8a:4d:b6:7c:
5b:01:0b:d1:06:50:88:09:60:42:f6:af:a8:36:93:47:ca:19:
70:14:67:ef:54:21:37:d1:e7:52:67:2d:05:0d:d3:6b:5d:15:
9a:78:ac:64:b2:00:95:a0:9a:f5:d9:e7:ef:a3:da:63:04:3a:
7c:d4:10:04:1b:6e:27:03:9f:9c:80:e2:fa:a0:6b:a4:53:68:
e6:ff:cc:a6:b7:5e:4b:ad:ca:99:a5:18:4b:12:36:82:6d:af:
f4:08:d2:64:68:4c:91:de:58:fc:a0:a2:4f:fa:ca:f2:77:41:
33:06:06:dd:16:ce:e0:fe:b7:79:af:6d:14:d7:9d:bf:0e:07:
17:0a:d5:75:a1:78:ac:2e:ff:02:52:7c:bd:ee:a6:63:ec:1e:
48:97:52:6b:8c:5d:29:7e:1c:aa:bc:0c:64:25:fb:f2:55:56:
55:7a:c8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:03:27 2025 by rpki-client