Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/9bc2d8-9320-4a31-a7d4-1156690a43b5/1/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.mft
File: KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.mft (raw, json)
Hash identifier: TfR7jfr+Bp0MItpF/mZtn3fExfx9R7WUcAkfwlQhVLo=
Subject key identifier: 30:95:66:CA:D4:9F:EA:FE:ED:02:EF:65:56:F8:02:99:3F:E0:8C:F7
Authority key identifier: 2A:52:75:AD:89:C9:97:6B:51:03:0C:5B:D2:56:79:9B:79:26:56:0C
Certificate issuer: /CN=2a5275ad89c9976b51030c5bd256799b7926560c
Certificate serial: 019896A69D5CBA92FDFAAE43A004CC9ADD57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/9bc2d8-9320-4a31-a7d4-1156690a43b5/1/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.mft
Manifest number: 09D9
Signing time: Mon 11 Aug 2025 01:02:38 +0000
Manifest this update: Mon 11 Aug 2025 01:02:38 +0000
Manifest next update: Tue 12 Aug 2025 01:02:38 +0000
Files and hashes: 1: KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.crl (hash: xTYYavRx7ITCam0Pd/zFAKWGVqzn/V7qLftwycIfoDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/9bc2d8-9320-4a31-a7d4-1156690a43b5/1/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/9bc2d8-9320-4a31-a7d4-1156690a43b5/1/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:02:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a6:9d:5c:ba:92:fd:fa:ae:43:a0:04:cc:9a:dd:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a5275ad89c9976b51030c5bd256799b7926560c
Validity
Not Before: Aug 11 01:02:38 2025 GMT
Not After : Aug 12 01:02:38 2025 GMT
Subject: CN=309566cad49feafeed02ef6556f802993fe08cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:11:24:96:a1:39:96:b4:31:8b:45:4c:f5:3e:
99:7e:e0:5b:65:ec:46:c6:8c:4f:d7:6e:6e:c6:3d:
e8:b2:9a:34:6e:06:cc:85:a1:24:62:6a:b2:cc:7e:
e9:d8:a4:5a:05:ed:38:bb:fb:25:f9:0d:26:79:ac:
ff:9a:b9:5e:29:9d:1e:53:34:2d:5d:f2:92:7a:44:
bd:a1:b4:bd:4a:3d:88:aa:0e:85:b0:ec:61:21:a7:
ac:ae:8c:ad:5b:f6:90:97:c5:7d:18:2a:e0:40:86:
49:e2:05:52:b6:22:53:bc:dc:53:19:0d:1f:b1:28:
19:00:64:04:e7:78:17:db:81:f7:c5:fb:4b:77:15:
02:8c:23:13:15:32:40:28:f4:71:f9:b4:d7:81:14:
1c:a0:5c:9c:1c:a6:cf:e3:ea:c7:b8:dc:b0:28:5d:
53:66:4f:02:84:57:ca:1e:11:b4:c6:0e:40:5b:eb:
c1:94:98:47:17:f2:af:c6:c3:cb:91:1e:25:6c:94:
79:1c:82:f3:72:37:dd:49:6f:ce:4e:96:e5:01:9e:
c4:99:1b:53:2d:ec:14:4b:5b:c1:fb:ca:bd:55:81:
22:da:84:f6:74:ee:e2:99:02:c6:94:06:83:5f:75:
38:c6:22:bf:f3:f7:35:34:e2:df:50:45:51:75:4f:
e1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:95:66:CA:D4:9F:EA:FE:ED:02:EF:65:56:F8:02:99:3F:E0:8C:F7
X509v3 Authority Key Identifier:
keyid:2A:52:75:AD:89:C9:97:6B:51:03:0C:5B:D2:56:79:9B:79:26:56:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/9bc2d8-9320-4a31-a7d4-1156690a43b5/1/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/9bc2d8-9320-4a31-a7d4-1156690a43b5/1/KlJ1rYnJl2tRAwxb0lZ5m3kmVgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:5d:52:21:fe:ca:49:54:12:9f:5a:da:ae:7c:aa:7c:e4:08:
9f:09:d7:c4:53:a9:7a:02:99:32:ec:9c:3f:2a:23:70:81:9d:
7b:2c:ab:62:2a:38:a7:13:46:56:fb:46:59:26:8a:1b:d1:ad:
bd:af:d1:3e:a2:9e:30:c4:9c:3d:39:2b:20:b3:e5:9d:09:4a:
2a:15:a8:6e:a1:24:e7:7b:98:17:5a:15:e9:af:3f:c0:b2:ff:
e2:8b:b8:9f:08:42:76:c9:f4:49:c0:94:35:7f:42:0a:90:3b:
d3:ff:6d:ee:2d:78:a9:1f:4a:6c:a7:25:7b:06:bd:61:80:3f:
2c:cf:43:93:0a:5e:94:00:2f:c4:f1:05:cd:a9:6b:86:35:08:
b7:3a:2e:09:27:c1:fd:bc:93:e1:2e:ea:6a:d7:5d:24:45:20:
1e:f2:40:85:f2:a2:d7:c2:8b:1f:28:84:b5:f6:c9:ef:22:83:
a3:49:f1:3a:9a:51:6b:bd:d7:88:e9:e4:f2:de:8e:83:cb:01:
06:e5:ff:44:f6:0f:83:fb:a9:d2:f3:c6:f1:3d:6b:98:50:ca:
ca:52:a0:6b:f7:7f:0b:4b:15:d0:15:3b:d1:e7:e4:6e:63:fc:
27:0b:61:ae:0d:a5:6b:c3:98:1e:f7:57:df:11:e4:ce:1a:ef:
2a:52:07:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:09:18 2025 by rpki-client