Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
File: kh2gU5IfUoNniBiPgvYt1aqXP-k.mft (raw, json)
Hash identifier: xNwyvwUsjWsobSuIQqqytvKdvhDD4WEoitQ9wHB/rO0=
Subject key identifier: 8F:72:4C:41:41:37:A7:0B:91:8A:17:02:C7:D7:74:5C:DA:A2:27:8D
Authority key identifier: 92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
Certificate issuer: /CN=921da053921f52836788188f82f62dd5aa973fe9
Certificate serial: 019881D5143362504B6B83CE23D904CC426F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
Manifest number: 0EE3
Signing time: Thu 07 Aug 2025 00:01:21 +0000
Manifest this update: Thu 07 Aug 2025 00:01:21 +0000
Manifest next update: Fri 08 Aug 2025 00:01:21 +0000
Files and hashes: 1: kh2gU5IfUoNniBiPgvYt1aqXP-k.crl (hash: DkvbYTQTi4qVbJhLw7G/XLY8SFQaKg4Oz8q6Q0qoWYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 00:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d5:14:33:62:50:4b:6b:83:ce:23:d9:04:cc:42:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921da053921f52836788188f82f62dd5aa973fe9
Validity
Not Before: Aug 7 00:01:21 2025 GMT
Not After : Aug 8 00:01:21 2025 GMT
Subject: CN=8f724c414137a70b918a1702c7d7745cdaa2278d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1b:c2:b1:c8:eb:78:23:6d:71:4a:22:a2:20:
c8:3e:09:42:d1:e6:fa:a0:1a:9e:0e:a8:79:e2:73:
62:31:ae:08:0d:2b:7d:a1:b6:57:70:34:ce:3c:2b:
fb:64:a9:bc:6d:a4:ba:84:78:e1:2b:75:7d:ab:b0:
a7:c3:f6:16:00:8e:80:4a:b2:35:15:81:02:41:0e:
87:46:f2:7d:32:9a:54:4d:cb:93:b6:6e:a0:75:f3:
77:62:91:a5:9a:d5:c6:cd:a6:af:8d:c0:f0:7e:e7:
20:78:04:78:5f:b5:24:77:84:32:79:e6:fa:6d:c8:
4c:30:4a:a2:63:09:26:8c:ca:1e:f4:80:a6:39:eb:
db:f1:c1:5b:5f:34:f3:61:18:c2:5b:2e:b9:dc:d6:
63:27:dd:31:a7:a3:d3:f9:5a:2d:13:af:0b:b6:34:
4b:78:7e:ac:1a:ee:93:d6:d2:ee:29:67:f0:0d:b9:
7e:28:d7:43:89:b9:31:73:f9:60:3f:46:22:f0:63:
95:a0:f5:a1:8b:4e:7b:0d:2c:65:5c:e8:74:0d:0b:
67:91:7d:b4:5a:78:cd:55:e3:81:4a:38:17:93:11:
19:40:88:92:61:d5:60:f3:29:8f:22:e9:5d:6e:e9:
5c:b9:24:0d:0d:a9:42:7c:ed:ea:47:a1:f1:03:b3:
f6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:72:4C:41:41:37:A7:0B:91:8A:17:02:C7:D7:74:5C:DA:A2:27:8D
X509v3 Authority Key Identifier:
keyid:92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:23:7f:78:94:e2:1c:e4:5c:84:92:22:10:a1:9c:45:5b:1c:
00:b1:9a:cd:06:7e:a7:8d:80:47:35:94:63:8b:c4:84:d2:d8:
54:16:f5:8f:e1:74:66:3c:0d:de:a6:7e:cd:4b:2a:24:b1:96:
de:92:ad:a7:b4:00:7e:01:d8:93:06:45:14:15:37:17:28:98:
0f:0b:b0:ef:0d:b7:ee:dd:6c:53:38:8d:42:81:c7:f0:9c:67:
1a:fb:c6:b9:c7:ae:28:17:57:6b:8a:25:5f:01:98:c7:04:7a:
0d:c0:59:94:9d:49:ec:b3:de:22:94:c0:16:01:39:76:c2:ab:
f1:be:e9:1a:c6:11:be:9e:67:92:61:8d:e3:65:34:2d:51:90:
3a:f8:ee:ef:da:fb:60:8d:79:81:98:8b:24:7d:69:b6:2b:60:
b3:58:42:d5:36:d1:4d:d7:29:d7:62:72:b4:f2:d9:d2:5e:93:
a4:d9:2d:59:b5:0d:07:c0:23:10:ad:27:b6:83:13:42:a1:03:
46:c6:a5:76:59:22:82:ce:34:40:cf:d9:29:4d:a9:d9:7e:70:
46:1b:25:fa:f0:18:5f:2d:15:d6:9e:90:95:8e:82:51:30:79:
81:2a:d5:5a:1a:e2:94:6e:c0:67:5f:b3:f7:73:3f:28:2a:46:
c4:af:2c:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 11:07:11 2025 by rpki-client