Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
File: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft (raw, json)
Hash identifier: wX6pYBEX+iytxOWJCxy6A01F2cwCkS1lDEwczc4cclc=
Subject key identifier: 32:B5:3D:9C:2F:18:7D:B0:A7:89:C0:72:21:26:EB:25:00:87:6A:87
Authority key identifier: 91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
Certificate issuer: /CN=91d338370e10627a4cd631e3fde186e194898c81
Certificate serial: 019847777C13C92884443E9C7A6B804707FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
Manifest number: 0BEB
Signing time: Sat 26 Jul 2025 16:01:09 +0000
Manifest this update: Sat 26 Jul 2025 16:01:09 +0000
Manifest next update: Sun 27 Jul 2025 16:01:09 +0000
Files and hashes: 1: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl (hash: HovQl6glTwXuxjitjDRx6q0rDn8bX/TIsdfFCk3wosc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:77:7c:13:c9:28:84:44:3e:9c:7a:6b:80:47:07:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d338370e10627a4cd631e3fde186e194898c81
Validity
Not Before: Jul 26 16:01:09 2025 GMT
Not After : Jul 27 16:01:09 2025 GMT
Subject: CN=32b53d9c2f187db0a789c0722126eb2500876a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5d:17:91:75:be:c8:b7:99:f9:eb:c3:4a:74:
c8:32:50:37:23:d9:1d:cc:29:96:e2:02:79:a5:e0:
6f:51:23:24:e0:41:51:4f:fc:e5:d6:08:4e:63:28:
b4:54:a4:cf:22:d6:87:c8:9d:a6:5a:1c:71:d6:21:
8c:e5:a9:fd:88:91:7f:1d:46:12:7b:57:ef:07:f4:
36:5a:6b:91:02:94:e5:da:c8:f8:5f:c9:a1:97:b2:
cc:3d:44:c3:7e:e9:05:1b:cd:5f:2a:96:84:2b:17:
17:49:6a:b1:a6:46:c7:85:ad:5a:bd:78:10:5a:53:
f0:97:05:3f:60:4d:51:35:85:80:18:6f:12:1a:16:
0c:75:c7:05:41:e8:0c:d9:9d:fd:6d:e2:0f:b0:e2:
c0:2e:a2:c1:10:12:49:2a:fe:0d:5a:b4:41:7b:dc:
c2:8a:08:92:66:59:7b:dc:23:62:d2:82:ea:9a:79:
e6:e6:9f:9c:17:23:0d:c5:02:e3:63:9c:37:99:20:
de:8f:93:54:5a:ed:52:d9:ac:14:3a:35:3c:f6:d7:
e2:a0:06:32:be:e2:b6:ab:87:a9:a1:9f:8f:d3:a1:
a1:88:74:f9:6f:4d:69:19:94:a7:c2:66:05:25:0e:
43:53:05:35:a3:8e:da:1c:ef:5c:d7:bd:16:f0:87:
51:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B5:3D:9C:2F:18:7D:B0:A7:89:C0:72:21:26:EB:25:00:87:6A:87
X509v3 Authority Key Identifier:
keyid:91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:bc:6f:d5:da:8a:d1:61:2e:23:56:10:88:ca:18:5f:d8:ee:
42:b0:42:c2:43:56:2e:e3:90:d4:c6:45:a7:4e:4e:e2:bf:0d:
12:b7:3b:17:ce:b3:70:01:32:09:e3:b8:82:8c:66:c6:75:fa:
87:05:32:87:a4:1b:d7:f0:10:31:bd:86:29:6c:bf:3b:62:76:
6b:a5:0c:31:e9:ec:eb:11:12:13:71:47:66:07:0a:8a:db:54:
5a:59:c6:23:a5:67:0e:f5:86:e3:fb:30:46:2d:ac:86:c5:98:
cd:2f:b8:cd:8b:01:51:fc:db:d0:71:8d:9f:d8:a6:0f:be:27:
67:2f:aa:bb:96:b5:66:ad:95:87:02:d9:2a:0f:46:12:e2:99:
97:ff:2d:42:d2:60:81:f2:28:b3:9e:d8:b2:b9:11:f1:15:4b:
54:d4:2e:8e:23:f1:61:91:1b:8c:64:31:4e:02:41:d7:fa:d5:
0c:dd:e3:ce:db:cd:a0:dd:67:d7:e7:bb:9c:ed:ce:24:f9:7c:
46:71:22:dd:4e:36:08:8d:f0:c9:cc:4d:67:9b:25:72:63:31:
56:4d:b2:56:d1:8e:6c:5a:5e:8e:f9:b0:08:c5:84:f7:28:cc:
82:ef:38:e0:d2:92:17:f1:b4:0b:93:6b:be:db:ee:05:a0:52:
c4:42:1a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:03:55 2025 by rpki-client