Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
File: KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft (raw, json)
Hash identifier: PhqTNVM4vD1lm8Uk72r8Mff0DrXBA7IXwyp2NjGuvdc=
Subject key identifier: 14:13:06:D0:83:56:DE:AA:4E:51:4A:0E:85:B2:3E:BC:5C:1D:6D:74
Authority key identifier: 2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D
Certificate issuer: /CN=2a7148c461f5e77e107af73566a27e343561dc1d
Certificate serial: 019921B1F527552BEE6C78C7725D9BF7CE87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 01:02:14 +0000
Manifest this update: Sun 07 Sep 2025 01:02:14 +0000
Manifest next update: Mon 08 Sep 2025 01:02:14 +0000
Files and hashes: 1: KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl (hash: RDmgpp4ql3VxUSfvS0xCmsHmU9CzH8Ayv1B18zcHWN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:f5:27:55:2b:ee:6c:78:c7:72:5d:9b:f7:ce:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a7148c461f5e77e107af73566a27e343561dc1d
Validity
Not Before: Sep 7 01:02:14 2025 GMT
Not After : Sep 8 01:02:14 2025 GMT
Subject: CN=141306d08356deaa4e514a0e85b23ebc5c1d6d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:92:c1:fe:ef:fb:5f:46:7a:64:1e:27:40:62:
4c:38:2d:3a:df:2e:7f:15:47:04:31:b7:8e:35:cd:
51:92:43:f0:89:22:c2:62:04:f2:dd:c5:1c:9d:a6:
f6:d3:32:fc:e4:9d:68:f3:a8:6b:61:d2:31:40:f0:
5f:85:b3:af:8f:58:3a:11:1a:b7:f0:90:45:64:d7:
26:f4:ed:7c:b3:de:c7:d1:e9:98:be:9a:a2:8f:a1:
33:15:d4:a5:c1:b3:86:22:27:81:fb:65:b5:9e:9f:
57:90:02:41:4e:56:43:f7:0a:23:27:0e:6a:f1:49:
38:d1:7b:42:e3:48:c2:a5:27:29:af:b8:d5:aa:ac:
e5:f0:28:fb:8e:53:7e:83:07:83:08:3a:40:05:7f:
70:a2:d0:e4:cd:12:b2:0a:6d:d2:36:d4:59:9e:c1:
04:76:8b:ab:c4:d3:d6:30:c8:52:93:4a:ca:91:b8:
c9:2f:cc:7a:10:c1:b6:d9:f3:32:6f:76:31:4a:bb:
92:19:33:38:f5:76:13:bb:05:46:b7:27:a1:bc:50:
3b:52:89:0b:0b:67:c1:85:5b:a4:d1:c9:87:e5:74:
81:55:6a:5d:83:58:e5:5d:df:d4:66:18:1c:c3:31:
0d:af:a0:0b:ad:6f:73:a1:b7:76:f5:83:7e:23:79:
2c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:13:06:D0:83:56:DE:AA:4E:51:4A:0E:85:B2:3E:BC:5C:1D:6D:74
X509v3 Authority Key Identifier:
keyid:2A:71:48:C4:61:F5:E7:7E:10:7A:F7:35:66:A2:7E:34:35:61:DC:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KnFIxGH1534Qevc1ZqJ-NDVh3B0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9afaf5-e696-483e-8365-34efd5b9e9cd/1/KnFIxGH1534Qevc1ZqJ-NDVh3B0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:0a:9e:34:04:2f:ab:fb:93:e6:12:c8:2f:4c:2a:f3:72:c8:
1d:53:be:66:6e:b6:72:f7:5f:f7:b2:a7:1e:ea:78:35:fc:2a:
91:3e:e9:aa:3e:f9:21:b8:e5:6e:84:ef:aa:49:7b:9b:34:34:
85:e6:2d:ff:5a:5b:ac:af:14:30:09:92:53:0a:2b:af:a3:48:
cc:83:78:07:e6:40:70:42:56:2a:9d:dc:a9:e9:f8:bb:e5:a3:
37:04:4c:9f:e9:81:fa:a0:e6:be:29:fc:4a:57:bf:9b:3b:66:
a4:16:c1:db:bf:ab:b5:a4:82:05:c6:16:56:3d:19:59:e2:07:
05:10:a2:3a:36:42:b6:d9:79:b4:5f:61:5f:07:8f:04:96:92:
cc:72:75:4f:bb:f5:ae:d8:8d:60:82:83:cf:25:15:f0:da:cc:
ea:95:66:d9:3c:b1:f2:c9:28:50:5b:d9:12:cf:2e:2c:b3:d4:
69:71:39:43:60:99:e2:e7:d5:c2:5e:d0:45:24:44:b7:2f:26:
9d:06:a9:d6:4a:02:fb:d9:81:93:f5:34:a7:64:2e:86:77:b8:
b0:83:7a:6f:db:67:29:da:50:c8:97:21:66:5d:7e:cc:ff:ce:
d6:07:c1:39:3b:94:0d:41:70:d0:f3:ed:bf:8b:02:6d:70:3a:
50:7c:42:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 09:58:25 2025 by rpki-client