Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
File: KMvNlssXsh1iT9IXD9DXCBY68j0.mft (raw, json)
Hash identifier: LYsu2K5ZfKWmGTYdUmljXBeOs6609T8eqlHECHUmhsM=
Subject key identifier: F4:92:E9:2F:8F:C2:88:C4:44:5E:BD:AF:E9:B4:80:BE:F9:23:B7:8F
Authority key identifier: 28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
Certificate issuer: /CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Certificate serial: 0199239F3058144C5F04067412D5FBEF5CD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
Manifest number: 0F9A
Signing time: Sun 07 Sep 2025 10:00:59 +0000
Manifest this update: Sun 07 Sep 2025 10:00:59 +0000
Manifest next update: Mon 08 Sep 2025 10:00:59 +0000
Files and hashes: 1: KMvNlssXsh1iT9IXD9DXCBY68j0.crl (hash: /l4CZEUhjpeXAV9/8Rsm1Y9F1LHx96k8/6Tce2Fth3o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:30:58:14:4c:5f:04:06:74:12:d5:fb:ef:5c:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Validity
Not Before: Sep 7 10:00:59 2025 GMT
Not After : Sep 8 10:00:59 2025 GMT
Subject: CN=f492e92f8fc288c4445ebdafe9b480bef923b78f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:33:68:7c:65:73:83:33:a1:a3:3a:56:1d:a3:
25:32:00:4a:84:98:66:55:21:d5:2a:8f:e2:df:20:
8c:dc:b4:e5:8c:3c:a7:86:34:4f:ec:d8:fe:5a:4a:
50:08:a0:86:0b:d1:44:b8:f6:6c:a4:17:6a:b4:0a:
b4:1d:37:db:81:19:21:c9:0c:67:5f:0f:e5:ea:b1:
84:72:0d:87:f3:2f:19:b6:78:fc:65:d3:56:32:bc:
d2:50:c0:f0:7f:ee:24:4a:f2:73:cb:47:99:85:05:
99:60:6a:20:50:ec:18:96:cd:29:bd:2b:e0:62:f9:
d4:1d:9a:41:c7:42:d2:61:ae:7d:c7:8a:67:0e:7c:
60:5d:92:bf:8b:1d:b3:05:31:f1:60:b3:d2:4d:6a:
50:ad:03:4a:31:fe:2d:57:27:81:c8:72:06:40:9c:
09:54:4e:51:28:d4:c6:af:9c:fb:ed:46:e3:a3:18:
ba:39:b7:60:0c:cf:7c:1c:77:75:97:29:c6:b4:d3:
b0:fc:c0:ee:fa:2d:c9:94:cc:97:c2:44:78:ab:5d:
a9:51:0e:bc:a0:06:82:c1:47:5c:3a:03:09:c6:4e:
9f:83:56:55:37:f8:7c:9d:a9:22:55:9b:89:41:a9:
e8:41:20:7b:59:33:45:99:03:eb:b6:4c:68:5f:1f:
0c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:92:E9:2F:8F:C2:88:C4:44:5E:BD:AF:E9:B4:80:BE:F9:23:B7:8F
X509v3 Authority Key Identifier:
keyid:28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:80:b6:b4:c3:40:7e:9f:f1:81:91:8c:ba:05:76:10:19:b4:
fd:7c:7f:f7:b7:ca:37:75:37:1c:80:63:bb:b0:c4:96:8c:61:
af:f3:1b:d6:e6:24:c0:2e:3f:14:4d:db:68:e4:a9:f6:27:c7:
c7:90:e7:37:0d:17:0a:f0:26:bb:81:7f:8f:1d:55:57:f0:83:
c6:eb:e8:69:57:ed:cb:19:10:1d:e9:52:7b:6e:b0:fc:00:ab:
91:56:90:0b:3f:6b:99:f6:35:80:b3:06:1e:e7:01:16:50:8d:
ee:21:59:ca:3b:fa:4a:8e:7d:b2:25:dc:25:7c:97:29:c4:16:
9a:9d:45:b8:54:7b:ed:38:b1:7e:4e:78:c9:c1:5b:b4:e8:98:
8f:0c:43:e3:1e:b2:9c:93:82:42:e9:5a:cc:37:73:a2:9b:89:
4c:9f:6f:31:13:ff:e4:ca:f8:ba:0d:43:3c:ab:7c:32:0a:42:
8b:19:01:50:7e:af:86:ec:32:b4:20:04:15:66:e1:61:fd:54:
f3:7c:f3:ac:9c:f4:d1:af:5e:fe:65:67:42:ff:c2:b5:b6:fd:
57:7a:28:5f:d0:39:be:cc:af:8b:b3:c2:57:a6:22:62:58:38:
f9:2e:a5:4a:ac:9e:b4:ff:e6:81:d7:de:02:83:1c:c9:09:4c:
05:54:26:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:56:50 2025 by rpki-client