Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft
File: KmU0qslEKjlNE5oagwPcBJWcHaA.mft (raw, json)
Hash identifier: 4yEZL2dl/MkEveO+4sXWENGdmhxOWIFZjbz6IVTNhOY=
Subject key identifier: 26:C0:B5:DC:5D:FF:EA:9D:8D:BF:38:E1:4B:90:C7:56:11:D0:12:BE
Authority key identifier: 2A:65:34:AA:C9:44:2A:39:4D:13:9A:1A:83:03:DC:04:95:9C:1D:A0
Certificate issuer: /CN=2a6534aac9442a394d139a1a8303dc04959c1da0
Certificate serial: 0199239EDFAFD128470D1457821732D03FA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft
Manifest number: 0F86
Signing time: Sun 07 Sep 2025 10:00:38 +0000
Manifest this update: Sun 07 Sep 2025 10:00:38 +0000
Manifest next update: Mon 08 Sep 2025 10:00:38 +0000
Files and hashes: 1: KmU0qslEKjlNE5oagwPcBJWcHaA.crl (hash: CDaFO5WrZk2e8wzp7p7OL2OtppO61d117ZRhnWp/ZMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:df:af:d1:28:47:0d:14:57:82:17:32:d0:3f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a6534aac9442a394d139a1a8303dc04959c1da0
Validity
Not Before: Sep 7 10:00:38 2025 GMT
Not After : Sep 8 10:00:38 2025 GMT
Subject: CN=26c0b5dc5dffea9d8dbf38e14b90c75611d012be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e6:b7:4f:fd:f7:3a:ba:62:81:ea:bf:0d:5a:
6f:54:fc:7f:d5:bf:99:35:19:97:43:b7:c6:0d:05:
cf:92:f8:92:8d:7c:7d:02:9c:00:7e:d3:ec:4d:91:
3b:89:37:74:71:ba:96:72:cf:50:e3:35:1e:63:26:
4e:50:4b:48:1e:e6:a8:b2:5c:b3:9e:f4:27:b4:4e:
71:44:77:c0:d3:92:7d:14:c3:b4:c1:a5:22:a3:30:
41:c0:25:3f:10:a0:11:9a:55:f1:29:1b:bf:c3:3c:
00:ad:fa:57:70:c1:65:72:32:bb:45:ac:9f:e6:c1:
67:63:c8:38:ad:85:db:92:27:b8:31:08:b6:f0:d3:
c7:44:d6:19:30:da:e7:98:95:54:0a:7a:3b:cf:91:
a8:36:68:a3:a4:6d:a0:7a:e1:df:ff:26:99:7b:bb:
27:1f:ad:eb:ba:8e:1b:d8:8b:de:28:c1:f6:1d:a1:
8f:7c:87:9a:7f:4f:36:60:6c:c8:07:a9:47:a8:9f:
45:6d:73:64:71:13:f3:19:da:4a:59:30:53:44:09:
b3:78:ce:82:9b:8f:67:54:d6:f5:e7:3d:21:e7:15:
e7:56:fc:89:3b:11:2a:67:59:40:72:c9:58:4f:4a:
4f:b0:05:eb:c8:53:60:e5:cf:ea:5d:70:15:49:b1:
87:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C0:B5:DC:5D:FF:EA:9D:8D:BF:38:E1:4B:90:C7:56:11:D0:12:BE
X509v3 Authority Key Identifier:
keyid:2A:65:34:AA:C9:44:2A:39:4D:13:9A:1A:83:03:DC:04:95:9C:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:85:6b:c6:95:5b:77:0a:5e:bc:d0:cd:5b:0d:da:c7:a7:94:
a4:d8:0a:80:97:63:ca:55:2a:b1:cf:c3:9d:ef:44:6c:68:cd:
0a:6c:5f:51:0b:7a:6a:53:36:bd:1c:10:55:2f:59:51:a8:a9:
cb:b5:67:88:0c:09:03:f6:cc:9c:8c:55:02:38:64:cf:3d:63:
58:ce:0f:5d:9b:b8:36:fd:05:d3:92:51:68:35:9f:1f:07:d5:
75:fc:5a:72:d6:f0:6a:15:5b:f7:94:e0:64:d2:2d:87:fd:85:
fb:01:11:3c:61:9d:99:f0:d4:82:ec:73:ed:44:3f:a8:b9:db:
90:72:73:61:d7:d6:d5:fa:a5:b9:c2:b6:0b:73:96:b7:3d:7a:
a4:52:22:43:9f:7c:d8:47:14:c6:3d:59:8a:e5:df:33:b6:39:
eb:91:eb:11:f5:54:59:66:c7:41:90:e0:ea:d4:ed:c0:70:59:
78:e8:05:22:df:a3:8c:86:0a:26:42:f4:e2:4a:be:ba:2d:34:
40:78:69:0d:5b:5f:70:cf:40:5e:44:f3:8d:0c:fd:8a:52:a8:
32:d5:d7:11:78:98:35:be:ae:d9:67:77:9b:0b:4c:cb:04:a4:
1f:38:07:f4:52:56:78:73:9a:90:70:bd:83:aa:3f:a4:25:92:
17:37:79:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:37:04 2025 by rpki-client