Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: rbz7/rIuQ6Un6G3udwN6YrmqfZAETnZIjFIJP42LPYY=
Subject key identifier: 15:9F:34:4C:84:5E:25:F0:60:D4:B6:B7:D8:2D:21:D1:8B:8F:9F:14
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 01988DA226AE601D9A5F551E3B87287B802B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 07F1
Signing time: Sat 09 Aug 2025 07:01:10 +0000
Manifest this update: Sat 09 Aug 2025 07:01:10 +0000
Manifest next update: Sun 10 Aug 2025 07:01:10 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: tbivpi8oWkHkflEz7BxnlVy+nFvcqh6mojOiY+AyUGc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 Aug 2025 05:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8d:a2:26:ae:60:1d:9a:5f:55:1e:3b:87:28:7b:80:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Aug 9 07:01:10 2025 GMT
Not After : Aug 10 07:01:10 2025 GMT
Subject: CN=159f344c845e25f060d4b6b7d82d21d18b8f9f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8b:62:52:a2:66:1a:a0:a5:ec:81:61:07:06:
63:f7:b8:fc:c9:9f:28:f3:76:a4:c7:75:23:ec:7e:
2c:8d:60:8b:6f:a5:19:0e:b1:44:75:9e:c3:72:d5:
f5:28:f7:f1:4b:92:2a:b1:6d:ae:7a:0e:6d:56:e9:
e4:be:cd:df:50:a7:ec:f6:e1:a4:28:13:98:f5:90:
c7:65:49:ec:25:bf:ba:31:1e:66:bf:8e:1c:69:89:
8d:71:5d:b9:25:27:ce:02:e7:34:26:6c:c9:5d:35:
47:93:3c:72:bd:db:7a:db:3c:8c:fe:5f:94:74:bd:
7f:40:7b:ff:eb:ed:d4:88:10:a7:12:b5:71:c9:08:
f8:34:e5:57:86:59:a8:a3:09:d2:57:2a:78:b2:cf:
23:4a:25:f4:04:cc:a1:7f:f0:a7:88:c9:ac:0b:a1:
ce:23:a2:64:f7:3a:65:56:c7:39:67:f2:86:72:30:
19:14:43:02:de:bd:a7:84:65:95:24:09:04:00:44:
c9:1b:28:45:e6:3f:19:d7:71:24:df:9a:06:e9:50:
40:d1:45:be:9b:96:a3:24:af:eb:b0:43:a1:8b:6c:
e5:0f:78:6a:d1:bd:a4:db:7f:08:cd:7f:09:cc:2b:
b6:38:44:d8:83:f6:cb:a2:a0:27:3f:49:35:85:64:
c4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9F:34:4C:84:5E:25:F0:60:D4:B6:B7:D8:2D:21:D1:8B:8F:9F:14
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:d7:12:e4:08:13:a6:24:6b:11:b7:77:a3:08:a1:15:63:4c:
f1:d7:c4:fa:7d:19:97:84:12:2e:bd:7e:d4:88:ef:8e:a0:4b:
8a:56:33:e3:c3:20:66:49:7b:8d:55:90:12:64:d2:83:d4:5d:
d8:bd:cb:7e:df:6d:9b:69:1e:4a:a4:4f:dd:50:6c:d5:a3:d8:
a8:7b:9b:69:cd:b5:3c:e6:c6:12:2b:16:c0:5a:66:50:11:88:
cc:0a:f2:5b:81:5e:c7:01:44:10:df:da:71:4d:20:6a:ca:b4:
f9:c6:d5:34:27:5f:c9:6d:de:cd:70:1f:50:a3:e2:34:6d:2f:
1d:ed:cc:9b:6e:78:0b:89:bf:87:cc:d1:83:64:05:c4:4a:0b:
cc:b8:2a:9e:a2:c9:ff:d2:e7:97:ea:0f:ee:04:6e:7d:5b:6c:
12:6a:ee:50:5d:70:53:8f:09:3f:4e:08:52:52:ff:5f:db:c0:
06:51:44:cf:75:7d:07:ab:13:47:76:f7:ea:96:77:73:06:8f:
d8:61:4a:e7:c6:86:3b:68:4e:13:45:d9:b5:dc:35:ca:0e:d3:
65:ae:a6:ab:01:df:91:e8:4a:39:46:b4:76:0f:36:74:93:62:
32:8a:2c:7e:6c:33:86:c7:18:36:c3:de:2b:7f:90:7f:7b:c1:
5a:4a:19:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 14:22:46 2025 by rpki-client