Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
File: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft (raw, json)
Hash identifier: KFdnEVtYD0UZZA0sUHydZYYKAlUx4DovprTIK/7ornU=
Subject key identifier: EA:0A:13:72:6D:E1:F9:22:69:9B:70:93:4A:10:EE:B2:DE:1E:F1:38
Authority key identifier: 90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D
Certificate issuer: /CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d
Certificate serial: 019873E3A1232076F67A6E1C0BBB9FD07BCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
Manifest number: 0767
Signing time: Mon 04 Aug 2025 07:02:34 +0000
Manifest this update: Mon 04 Aug 2025 07:02:34 +0000
Manifest next update: Tue 05 Aug 2025 07:02:34 +0000
Files and hashes: 1: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl (hash: 0M3YaGtEUYoZP8NNtFN6qCY3iqAG+4BbYAF0R9nm4D4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:a1:23:20:76:f6:7a:6e:1c:0b:bb:9f:d0:7b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d
Validity
Not Before: Aug 4 07:02:34 2025 GMT
Not After : Aug 5 07:02:34 2025 GMT
Subject: CN=ea0a13726de1f922699b70934a10eeb2de1ef138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8b:d7:13:4e:a0:10:4a:60:75:fa:cf:40:eb:
98:f3:4f:07:ed:f9:b5:ff:8d:44:7c:b8:f4:c8:97:
a7:7e:21:c9:6b:1e:00:11:e6:e5:3d:0c:e1:93:93:
ab:3d:54:60:f4:3c:2a:3e:bf:e3:e9:ca:e8:f2:53:
91:50:d8:71:ba:3d:2d:0a:cc:e2:12:9e:00:dd:7e:
74:4c:fd:d3:3e:a1:d8:70:94:e6:f5:42:5b:6f:6d:
00:c2:ba:7f:d9:8a:c5:8f:05:b0:d3:4a:e3:fb:ee:
3d:64:7d:90:75:80:72:26:82:f7:13:6d:7c:74:00:
10:cc:c2:00:bd:52:2d:4d:b2:b4:0b:94:13:f3:d9:
ca:54:06:2b:79:0f:7e:ee:46:b7:81:f5:c2:4a:ad:
3b:e4:b0:ee:32:3f:95:dc:bf:4c:f1:fe:ff:4f:25:
89:f7:75:05:2b:e0:99:1f:0e:10:cc:7b:72:88:0e:
d9:ba:8a:c4:fd:cf:8d:25:92:34:e4:79:87:3e:23:
a2:87:29:be:cd:dc:42:35:bb:ff:bc:3a:d3:db:50:
1b:87:19:e4:76:92:12:5f:5c:6f:da:42:0b:c3:ee:
79:7d:81:46:48:41:22:32:88:b5:0f:d0:71:7f:e8:
b2:92:85:41:53:8e:d6:be:5b:b7:02:b5:de:92:b5:
de:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:0A:13:72:6D:E1:F9:22:69:9B:70:93:4A:10:EE:B2:DE:1E:F1:38
X509v3 Authority Key Identifier:
keyid:90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:29:13:a4:1b:67:6a:55:09:99:81:2a:dc:d6:9e:fc:9e:a1:
7c:ac:3d:26:c0:54:d2:4d:db:85:12:27:32:03:fd:0f:f2:0e:
7b:8c:62:2f:dc:df:de:25:b9:16:2b:55:8d:58:e0:c8:dc:45:
4d:fd:9c:89:33:0e:54:5e:15:b8:06:6f:99:0d:8c:ca:2c:73:
03:97:ab:8c:e3:56:7d:2a:0b:6c:03:1c:cc:17:40:7b:70:db:
b9:ac:45:9b:3c:b2:f4:69:9f:f5:52:c3:77:37:2b:e2:91:41:
0f:22:72:ee:6d:71:7d:01:4d:bb:b0:dd:c7:a6:af:a5:13:37:
52:fc:c5:3e:ee:a6:32:f3:d4:17:42:4b:17:db:bb:72:f5:1f:
bf:e1:80:84:02:fa:d3:66:81:df:ce:01:26:aa:ec:49:26:fb:
a3:c9:25:5a:08:51:fd:08:5d:53:7a:9c:58:54:2f:b2:59:8d:
61:26:21:c9:e1:6d:09:8c:48:ea:f7:52:f1:93:98:02:46:38:
9b:25:3e:3c:14:ec:31:9a:06:8c:4a:ab:5b:59:e9:e7:35:66:
26:cf:d7:43:72:b1:ce:c9:40:91:d3:00:e5:a5:82:aa:de:c9:
88:e0:83:09:c3:95:51:ef:b1:7f:4a:38:c7:e0:07:ae:a9:a6:
20:e8:0c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 13:55:44 2025 by rpki-client