Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
File: KHtQElUXlEJ0oUa7rNZOaRog-gY.mft (raw, json)
Hash identifier: lEjsTGW756fiyCJz2eJ83PZNshIhYs5eocCicgMYlm4=
Subject key identifier: 02:A0:54:16:D9:15:05:BB:B7:77:48:9E:10:0B:B7:8F:6C:A0:E6:59
Authority key identifier: 28:7B:50:12:55:17:94:42:74:A1:46:BB:AC:D6:4E:69:1A:20:FA:06
Certificate issuer: /CN=287b50125517944274a146bbacd64e691a20fa06
Certificate serial: 019923A0BA9E95509B4BE18E7E0115291960
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
Manifest number: 0F1C
Signing time: Sun 07 Sep 2025 10:02:39 +0000
Manifest this update: Sun 07 Sep 2025 10:02:39 +0000
Manifest next update: Mon 08 Sep 2025 10:02:39 +0000
Files and hashes: 1: KHtQElUXlEJ0oUa7rNZOaRog-gY.crl (hash: xn2H7GsGtBA4D4/JYvzJulcc0NqdILd47c/g+XeMN4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:a0:ba:9e:95:50:9b:4b:e1:8e:7e:01:15:29:19:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287b50125517944274a146bbacd64e691a20fa06
Validity
Not Before: Sep 7 10:02:39 2025 GMT
Not After : Sep 8 10:02:39 2025 GMT
Subject: CN=02a05416d91505bbb777489e100bb78f6ca0e659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bb:1b:0d:b4:5d:ab:0e:bb:e9:75:b3:a3:24:
6a:74:88:03:c6:3e:8b:1d:8d:44:42:12:49:06:b1:
42:21:a2:46:e8:7e:89:95:0e:ab:be:da:3e:d6:10:
79:99:d1:f9:4f:9b:9c:4d:ee:9f:20:bb:5d:48:2a:
12:88:46:f1:9c:1b:3b:85:81:0b:e0:4c:d4:b9:1f:
8e:e9:a4:04:0d:1e:29:b0:c8:11:fb:86:9f:19:94:
7e:8c:45:26:ef:31:0e:0f:e0:fb:7a:8d:87:8e:d1:
22:9f:79:f1:5a:cd:a5:5e:a4:95:5a:83:bf:15:a1:
20:e3:cc:3f:56:46:1e:a1:71:cd:fb:2c:d3:82:af:
93:60:5f:82:b4:7d:49:84:a6:8f:e0:94:23:77:95:
f0:b2:7a:a1:6c:88:e7:47:56:a8:ff:35:7c:ea:5b:
eb:2d:dd:46:6f:d9:9a:b7:00:15:83:0e:86:3e:64:
3d:92:7a:ba:9c:fc:59:d6:16:33:06:65:ee:5d:95:
83:16:02:7c:36:ad:af:5e:5e:66:b2:cd:68:8b:7c:
fb:56:fe:dd:0d:41:6e:c0:f7:47:1a:18:38:63:00:
8d:25:6e:0f:08:e5:a1:cc:4c:60:4b:7d:5b:79:68:
33:ff:6e:d1:c3:c5:6f:32:39:7a:c3:af:f7:81:f8:
17:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A0:54:16:D9:15:05:BB:B7:77:48:9E:10:0B:B7:8F:6C:A0:E6:59
X509v3 Authority Key Identifier:
keyid:28:7B:50:12:55:17:94:42:74:A1:46:BB:AC:D6:4E:69:1A:20:FA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:8e:c3:47:6e:00:48:c1:41:e6:01:18:ab:6d:f4:3f:af:65:
2e:4e:08:d3:bd:00:f5:18:4c:85:97:ab:94:f5:5c:cb:bb:31:
16:c4:fe:d4:02:b6:3f:24:e0:25:d8:5d:4c:53:da:27:2d:5a:
fb:d1:2d:71:e6:7b:ee:dc:79:be:3d:05:83:23:d9:65:a8:b1:
0a:f8:e7:88:23:15:7e:50:22:bc:f3:12:86:a2:c3:d1:40:ba:
61:11:b1:8a:58:c0:9d:5c:25:51:4e:19:9a:57:6e:92:1f:77:
8b:3b:8c:38:0c:ed:ba:84:db:eb:d6:c3:31:d5:2b:17:73:72:
16:45:89:cf:11:f0:ff:e0:53:bb:89:98:cd:7d:91:a9:c6:fb:
59:02:92:3e:d9:bc:26:35:c9:2f:6c:2e:8a:d3:07:dc:8c:92:
c0:c6:68:b4:f0:e7:24:13:20:7a:e3:67:ba:e2:86:78:e3:ef:
b7:b9:c8:81:68:de:35:50:bf:e5:7f:52:86:01:52:99:8a:ce:
d6:90:47:7b:20:4d:ce:5f:e6:a6:f7:d9:3d:3d:ef:1a:f9:56:
dd:f9:52:a6:e8:42:9a:19:3b:5d:39:c3:00:e8:b2:0f:96:a1:
ff:0e:2c:18:ab:4f:e8:9f:2f:84:b6:5f:8d:b5:f6:bd:ae:b1:
14:f5:69:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:41:30 2025 by rpki-client