Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft
File: kWV5napb3fL1Nt2BtybPrtDmCFs.mft (raw, json)
Hash identifier: pwPRis24FQ3ly4Q0wKaz2v3nxt+txW3rCDE4LA/7hMw=
Subject key identifier: A7:6B:FC:0C:F6:CA:3E:19:A8:03:04:30:C2:75:84:C9:7A:E6:42:21
Authority key identifier: 91:65:79:9D:AA:5B:DD:F2:F5:36:DD:81:B7:26:CF:AE:D0:E6:08:5B
Certificate issuer: /CN=9165799daa5bddf2f536dd81b726cfaed0e6085b
Certificate serial: 0199239F7E38CDA41AEE9823F843EEDA01A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft
Manifest number: EB
Signing time: Sun 07 Sep 2025 10:01:18 +0000
Manifest this update: Sun 07 Sep 2025 10:01:18 +0000
Manifest next update: Mon 08 Sep 2025 10:01:18 +0000
Files and hashes: 1: kWV5napb3fL1Nt2BtybPrtDmCFs.crl (hash: ol9R5xntvmDWQx5KUV6ZXbWiHG4SiyWcCZHPm83OfbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:7e:38:cd:a4:1a:ee:98:23:f8:43:ee:da:01:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9165799daa5bddf2f536dd81b726cfaed0e6085b
Validity
Not Before: Sep 7 10:01:18 2025 GMT
Not After : Sep 8 10:01:18 2025 GMT
Subject: CN=a76bfc0cf6ca3e19a8030430c27584c97ae64221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d1:1a:61:f0:94:fa:18:fd:0d:eb:7a:f2:c8:
be:66:34:46:aa:c4:38:4b:88:e0:9a:4f:81:d0:f4:
e7:51:fa:8d:b9:58:e2:4b:50:ce:49:c3:9f:7e:c6:
5d:fb:1f:a4:4d:91:df:e4:88:fb:1b:18:32:9b:9a:
75:b8:4c:b9:72:9d:92:5a:6a:31:6f:7a:ef:7d:19:
b6:c4:96:23:4b:29:e5:a1:c5:e0:8b:69:48:29:49:
fc:9a:c7:bb:6d:79:5b:87:b5:dc:f7:47:1f:f1:34:
ca:35:d8:d0:9a:a0:ec:32:c2:1c:22:54:65:90:c5:
c3:ba:ff:e1:95:a3:01:1b:4c:0b:6a:8e:4b:11:b8:
7b:24:2a:9e:74:d8:71:93:56:f5:f3:ac:9e:6a:02:
6f:ae:e4:f2:9a:c3:58:d4:bf:3e:1c:eb:f1:75:10:
a9:18:57:1c:2d:ea:4b:51:66:8a:18:63:9e:7f:81:
8c:be:84:fe:4e:6d:16:f9:6e:bb:ad:1f:32:03:ca:
a6:5c:a0:7a:3a:fb:5a:8a:41:e2:23:f9:77:15:83:
e6:1e:5a:04:a9:61:4d:9d:df:0d:5d:56:35:4b:34:
88:5f:97:af:91:d1:69:1a:c6:e3:ac:fb:4b:53:c0:
ce:5c:df:c5:d8:46:c9:ad:7d:87:b2:71:14:37:cb:
5d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6B:FC:0C:F6:CA:3E:19:A8:03:04:30:C2:75:84:C9:7A:E6:42:21
X509v3 Authority Key Identifier:
keyid:91:65:79:9D:AA:5B:DD:F2:F5:36:DD:81:B7:26:CF:AE:D0:E6:08:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:00:b1:1c:bc:92:d7:7f:71:d7:c3:a5:d1:0d:bf:71:47:6a:
91:fe:29:eb:08:77:bb:08:0d:9e:f2:9d:48:3c:70:30:f8:17:
62:fb:9c:a0:7c:e3:ce:ff:9b:f5:d0:20:91:d6:96:d6:a7:95:
d5:e4:7f:f4:84:e3:b7:a4:14:5e:d7:7b:7d:8d:f7:c2:5e:95:
cd:e3:5e:e4:d4:d0:bb:9e:c1:b5:ab:7e:0a:12:74:0d:71:88:
c2:36:df:7e:be:97:96:ec:5e:39:81:ed:7d:e3:4b:d7:35:79:
bb:f0:76:7e:9b:74:c9:21:fd:be:be:45:f9:9c:7b:fc:23:69:
8e:53:e1:f5:ff:9e:05:ac:52:7c:11:d9:a3:7c:41:dd:a9:ab:
08:68:52:a2:4d:38:3a:76:b8:6f:93:da:27:a7:45:5f:b9:95:
6b:a1:02:9c:f6:d8:d4:a3:b1:83:f0:d6:c1:57:1c:b7:56:ae:
80:8a:cf:97:d5:7f:1d:1a:71:44:5f:ae:7b:3e:8f:24:83:61:
37:32:3a:36:16:a6:5d:cb:8c:77:e0:65:65:f7:a8:88:b4:b1:
1c:dd:b6:95:7a:bb:50:24:ab:5f:0c:31:a8:3c:82:f7:c8:73:
c3:d0:d5:15:d9:fe:5c:0c:99:47:3c:dd:b6:9a:57:e2:01:95:
f5:b1:1a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:35:37 2025 by rpki-client