Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
File: _KrlFMX5lAORQ1YU15QEvuEgmzs.mft (raw, json)
Hash identifier: 0RKhIY3R7DFsfUo+/Bj9Zb4dY/Cxt/e1QTwcXwWI7V4=
Subject key identifier: 13:3F:AB:C3:8E:36:71:9C:EE:56:0A:8A:2B:3F:CD:2D:98:C9:0E:35
Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b
Certificate serial: 01992CA2A3FE3315B3BCBB309E19AC41CE2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
Manifest number: 081E
Signing time: Tue 09 Sep 2025 04:01:20 +0000
Manifest this update: Tue 09 Sep 2025 04:01:20 +0000
Manifest next update: Wed 10 Sep 2025 04:01:20 +0000
Files and hashes: 1: _KrlFMX5lAORQ1YU15QEvuEgmzs.crl (hash: UBpeggBDaCd5yOkIp/lvda5NnB+8H8ijFDAsiUjhujk=)
2: x6k0RFp7Tx1S2sYvTKRUnwMB54o.roa (hash: Kj0Dd36Z9ZII60RmdvUVufyE+PZ0m6JPvwn/WhUbw7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Sep 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2c:a2:a3:fe:33:15:b3:bc:bb:30:9e:19:ac:41:ce:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b
Validity
Not Before: Sep 9 04:01:20 2025 GMT
Not After : Sep 10 04:01:20 2025 GMT
Subject: CN=133fabc38e36719cee560a8a2b3fcd2d98c90e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:aa:ce:04:4b:58:12:fd:52:e1:5e:74:4f:89:
6a:8c:5a:c4:68:af:ae:13:2c:f6:6f:e5:49:03:f7:
7f:8e:82:27:21:57:42:a9:ae:63:01:7f:ec:d9:25:
95:7b:8b:1e:c9:2b:1d:eb:86:3f:54:a7:3f:40:f5:
88:dc:1d:f0:89:73:ad:8b:eb:58:bc:56:cb:30:63:
55:53:93:82:c6:c6:02:83:53:6f:41:cc:cb:d9:e7:
1e:69:6a:fe:73:49:23:45:45:41:ba:0e:7c:f4:35:
7d:da:8c:25:6d:b2:43:ec:ee:c5:fc:54:66:50:a4:
07:1e:3e:7e:b4:84:d4:f4:cf:13:3b:6e:2b:72:1e:
66:b5:b1:29:f1:dc:9c:fa:92:51:2c:e7:82:1e:2e:
5e:56:09:92:c7:73:2b:d5:86:5c:52:df:c5:64:4e:
be:78:6d:f0:02:42:55:e6:c7:32:34:3d:16:98:d6:
26:30:c0:54:f7:2c:2e:2b:59:ba:69:ee:15:cc:d4:
73:c4:1a:8a:b6:1c:ad:eb:e3:fa:61:6f:a5:e3:e8:
1f:84:d2:00:c0:f1:d8:9b:96:c4:9d:c4:05:5f:b0:
49:7f:09:f6:cc:c9:82:cd:85:1b:06:45:86:88:ef:
0d:6a:f2:0e:7c:2f:13:d8:9a:00:6a:36:5a:fa:65:
3c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3F:AB:C3:8E:36:71:9C:EE:56:0A:8A:2B:3F:CD:2D:98:C9:0E:35
X509v3 Authority Key Identifier:
keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:ee:97:08:e8:f8:da:cd:a9:30:88:72:9d:e0:83:d9:8f:24:
9b:08:cf:59:27:65:14:da:46:be:96:d1:7c:fe:66:a4:2e:7e:
10:0f:cd:10:b8:dc:42:f0:44:73:76:14:79:67:f8:6b:99:e0:
c8:66:ca:8e:ad:7b:1f:15:b2:00:99:fd:c1:05:8d:11:e3:a9:
96:08:50:8c:8a:f6:35:f8:82:a2:c7:e5:80:fa:4a:20:3e:96:
4e:79:50:88:f7:91:56:ce:66:ea:68:e3:2c:01:38:74:cf:80:
8c:0c:7d:68:de:aa:e7:37:83:38:15:93:4e:44:d0:95:ef:db:
33:59:1d:e5:06:bb:7c:2e:af:62:c5:9a:24:8e:bf:0a:53:dc:
39:8d:22:47:ce:a1:2a:5d:f3:f3:9d:3f:94:26:9f:f5:18:f2:
73:e2:8f:83:9f:a1:54:1d:c6:9a:58:ae:ec:74:4f:72:7e:62:
e8:ff:1a:2d:47:d0:f7:7e:06:35:94:23:0e:1f:36:fd:0e:99:
b4:ec:6f:63:8b:b0:e9:13:eb:c3:14:3f:2a:c2:5b:93:76:9f:
52:7d:cc:8f:a0:04:69:55:53:75:62:bb:58:6c:8a:84:0f:1a:
55:c9:ce:f0:4b:d0:18:2e:c5:b1:70:8b:c2:ed:5b:24:7d:72:
05:92:b1:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 9 06:01:15 2025 by rpki-client