Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
File: KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft (raw, json)
Hash identifier: yb1uMxmeBs228UWHhMFzndby6fW196jsE5JsAODGjak=
Subject key identifier: 48:55:26:1B:0D:32:0F:66:AB:23:E5:6C:67:59:4F:5F:0B:1C:C4:95
Authority key identifier: 28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84
Certificate issuer: /CN=28fa456d1c23678621954ffbf493a323de2c4484
Certificate serial: 01984776927D99B8641A99F9F5C7DB58EA1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
Manifest number: 0B3B
Signing time: Sat 26 Jul 2025 16:00:09 +0000
Manifest this update: Sat 26 Jul 2025 16:00:09 +0000
Manifest next update: Sun 27 Jul 2025 16:00:09 +0000
Files and hashes: 1: KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl (hash: wN8VAtIXCK0bO0y4aSskoymfRxPY6F4AGgmo4z8Zg1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:76:92:7d:99:b8:64:1a:99:f9:f5:c7:db:58:ea:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fa456d1c23678621954ffbf493a323de2c4484
Validity
Not Before: Jul 26 16:00:09 2025 GMT
Not After : Jul 27 16:00:09 2025 GMT
Subject: CN=4855261b0d320f66ab23e56c67594f5f0b1cc495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:6c:fd:04:e4:4e:92:a4:70:25:0c:b4:3e:c4:
a3:22:2e:35:54:e5:62:7d:2e:5a:6e:14:84:d4:ac:
d1:ff:a9:6f:de:b9:f7:bd:0d:8d:20:bd:30:23:a4:
56:08:57:c5:8d:3a:0b:2f:2a:a1:a8:d5:0f:d9:a5:
ad:f2:a6:ca:d6:c6:0d:af:4c:f1:60:6c:5f:7f:1f:
00:4c:c9:76:3f:8a:f2:d4:3b:7c:4f:44:65:d4:b8:
b7:a4:a5:f9:eb:60:c3:a8:02:95:98:9c:95:4a:a6:
b0:dd:7d:89:b1:d1:01:8c:9c:f7:56:62:83:25:8c:
e1:dc:4d:52:ea:67:c0:d6:a8:55:e4:25:9e:da:99:
36:fc:db:c5:64:03:d8:ea:97:ea:04:1c:27:eb:4d:
db:c0:6e:85:bb:07:66:3a:47:5b:d6:be:ce:a9:19:
ce:9d:23:5d:3d:b6:b9:db:9a:11:7a:0f:4e:c6:70:
d9:c5:d9:96:af:5d:3b:af:06:d6:67:5b:5b:af:9d:
e0:0b:54:4c:77:ec:8a:85:24:92:c8:f4:8b:31:7c:
9c:7d:17:3a:32:04:ab:c4:8e:b0:e9:69:52:c8:7d:
38:f0:92:37:6e:f4:f6:1b:74:22:07:96:22:c2:83:
83:67:06:16:d3:14:4c:21:dc:36:36:66:9c:c6:93:
65:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:55:26:1B:0D:32:0F:66:AB:23:E5:6C:67:59:4F:5F:0B:1C:C4:95
X509v3 Authority Key Identifier:
keyid:28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:b1:ab:da:87:43:e6:1e:65:42:9b:a9:05:fc:4b:b0:0a:df:
cf:ef:50:f9:fc:a0:c6:67:d1:e9:6a:c0:c6:7d:5e:06:3b:1b:
5a:81:33:18:0d:c0:12:bc:e3:b2:9a:63:f7:fc:01:b9:a6:05:
ac:03:c8:7f:db:56:6a:14:59:19:6c:7b:b5:a8:f0:db:d8:6a:
aa:ef:ff:3f:77:9f:ca:ba:6f:ce:c6:40:ac:79:25:60:1b:1c:
bd:2d:b5:58:18:b2:ff:5d:58:5d:6b:39:7b:79:9c:a0:25:ee:
64:38:81:49:d4:53:5a:05:d8:ff:f8:13:ac:28:1c:18:78:3e:
d8:44:80:3c:cc:13:2d:fa:6b:6d:d2:2d:50:d3:0f:bb:2c:eb:
93:89:95:92:44:54:9f:7f:c7:f1:24:a8:c9:3f:14:b0:4b:4e:
e6:dd:87:ae:94:51:21:18:6e:4d:d3:1f:d2:c0:14:9f:64:79:
a4:de:49:8e:56:74:1c:83:5a:2c:98:d7:ca:58:55:ae:53:77:
9a:ec:15:7e:73:e2:1e:fe:12:70:f5:16:4e:2b:27:5c:2c:ca:
7f:d0:8a:11:ad:28:35:e2:d5:f1:1d:3d:73:32:47:f8:6c:08:
5a:0c:da:2e:41:34:cd:aa:91:7d:f8:1b:a6:b5:38:f8:28:3e:
ed:a4:82:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhHdpJ9mbhkGpn59cfbWOobMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ZmE0NTZkMWMyMzY3ODYyMTk1NGZmYmY0OTNhMzIzZGUy
YzQ0ODQwHhcNMjUwNzI2MTYwMDA5WhcNMjUwNzI3MTYwMDA5WjAzMTEwLwYDVQQD
Eyg0ODU1MjYxYjBkMzIwZjY2YWIyM2U1NmM2NzU5NGY1ZjBiMWNjNDk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8Wz9BOROkqRwJQy0PsSjIi41VOVi
fS5abhSE1KzR/6lv3rn3vQ2NIL0wI6RWCFfFjToLLyqhqNUP2aWt8qbK1sYNr0zx
YGxffx8ATMl2P4ry1Dt8T0Rl1Li3pKX562DDqAKVmJyVSqaw3X2JsdEBjJz3VmKD
JYzh3E1S6mfA1qhV5CWe2pk2/NvFZAPY6pfqBBwn603bwG6FuwdmOkdb1r7OqRnO
nSNdPba525oReg9OxnDZxdmWr107rwbWZ1tbr53gC1RMd+yKhSSSyPSLMXycfRc6
MgSrxI6w6WlSyH048JI3bvT2G3QiB5YiwoODZwYW0xRMIdw2NmacxpNlwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEhVJhsNMg9mqyPlbGdZT18LHMSVMB8GA1UdIwQY
MBaAFCj6RW0cI2eGIZVP+/SToyPeLESEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iMWFjYWItOWE4Yi00MjNlLWIwYmMt
ZjQ1YTJhNjM0NzA0LzEvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iMWFjYWItOWE4Yi00MjNlLWIwYmMtZjQ1YTJhNjM0NzA0
LzEvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAprGr2odD
5h5lQpupBfxLsArfz+9Q+fygxmfR6WrAxn1eBjsbWoEzGA3AErzjsppj9/wBuaYF
rAPIf9tWahRZGWx7tajw29hqqu//P3efyrpvzsZArHklYBscvS21WBiy/11YXWs5
e3mcoCXuZDiBSdRTWgXY//gTrCgcGHg+2ESAPMwTLfprbdItUNMPuyzrk4mVkkRU
n3/H8SSoyT8UsEtO5t2HrpRRIRhuTdMf0sAUn2R5pN5JjlZ0HINaLJjXylhVrlN3
muwVfnPiHv4ScPUWTisnXCzKf9CKEa0oNeLV8R09czJH+GwIWgzaLkE0zaqRffgb
prU4+Cg+7aSCEg==
-----END CERTIFICATE-----
Generated at Sat Jul 26 20:30:00 2025 by rpki-client