Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.mft
File: KGURKILY5sctAiwsPaF7UsKtsHs.mft (raw, json)
Hash identifier: GpqnY+5AAGoZGqnLmTJavMmZJIlsPw2zagZloYn9vMo=
Subject key identifier: E3:A2:03:F1:7A:AE:06:11:97:18:E5:6F:20:72:5E:29:8F:F1:07:41
Authority key identifier: 28:65:11:28:82:D8:E6:C7:2D:02:2C:2C:3D:A1:7B:52:C2:AD:B0:7B
Certificate issuer: /CN=2865112882d8e6c72d022c2c3da17b52c2adb07b
Certificate serial: 0199239ECA4C7B9CF21641593D2078A63E4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGURKILY5sctAiwsPaF7UsKtsHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.mft
Manifest number: 093F
Signing time: Sun 07 Sep 2025 10:00:33 +0000
Manifest this update: Sun 07 Sep 2025 10:00:33 +0000
Manifest next update: Mon 08 Sep 2025 10:00:33 +0000
Files and hashes: 1: KGURKILY5sctAiwsPaF7UsKtsHs.crl (hash: u6AaE/SOPDtCSnTmdCWHkHCRNKJ3CeoEXiazecQDwz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGURKILY5sctAiwsPaF7UsKtsHs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9e:ca:4c:7b:9c:f2:16:41:59:3d:20:78:a6:3e:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2865112882d8e6c72d022c2c3da17b52c2adb07b
Validity
Not Before: Sep 7 10:00:33 2025 GMT
Not After : Sep 8 10:00:33 2025 GMT
Subject: CN=e3a203f17aae06119718e56f20725e298ff10741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:93:50:39:3c:6f:4f:8a:9c:e9:91:67:aa:40:
01:f2:56:fd:1b:49:8f:66:1b:d8:90:95:df:64:ff:
d0:d3:14:84:6e:90:75:c0:09:7d:44:22:db:65:8c:
cd:0f:bb:11:2b:2f:0a:6f:76:6d:df:cf:30:2d:8d:
fd:8a:0f:3f:a0:9a:4e:e8:50:c6:0f:1b:0e:fb:75:
a1:ea:a6:84:5d:cb:b4:ce:1f:23:e6:e0:b4:87:eb:
e4:93:6b:7c:68:aa:45:5a:8a:c8:99:70:2d:2a:1f:
b7:60:00:d9:cb:9c:bc:40:05:fc:e1:9a:95:ed:21:
74:79:c0:f7:ac:c0:c4:32:b2:ef:f8:35:ef:f9:93:
d7:f2:c3:47:a8:0f:97:f6:f3:a3:4d:97:e2:b1:5a:
8d:94:c1:a0:94:d0:70:e8:3a:1a:f3:bf:44:51:be:
25:5f:7f:8a:59:d7:67:5c:2a:25:0c:68:79:af:f9:
f0:1d:71:32:61:18:c9:9a:95:5c:99:28:3d:7e:e5:
b8:87:0b:d2:be:11:7f:c2:da:5b:46:60:ae:25:04:
15:84:11:cc:d7:c5:08:a0:2c:72:aa:aa:c5:bc:0c:
e7:67:b7:f4:a2:e8:0e:f6:4a:9a:91:18:d2:20:51:
86:0d:eb:09:80:8b:f8:1f:01:71:e7:7f:b9:34:f6:
07:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A2:03:F1:7A:AE:06:11:97:18:E5:6F:20:72:5E:29:8F:F1:07:41
X509v3 Authority Key Identifier:
keyid:28:65:11:28:82:D8:E6:C7:2D:02:2C:2C:3D:A1:7B:52:C2:AD:B0:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGURKILY5sctAiwsPaF7UsKtsHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ad8d09-39e9-408f-a370-9bb3f57c0ef0/1/KGURKILY5sctAiwsPaF7UsKtsHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:29:45:15:9d:60:76:85:5f:ac:6c:e6:97:96:16:84:d9:29:
13:c6:25:ed:fb:19:eb:72:f8:2d:2b:d4:64:aa:be:a3:ce:7c:
93:00:36:40:cb:20:00:95:b0:89:87:23:de:f5:10:f9:e9:7b:
97:23:bf:39:c8:47:54:23:3a:f1:6e:2b:77:51:08:f4:aa:ce:
5e:f6:62:f8:37:5a:9b:4e:a6:3d:23:e5:4b:87:b4:5d:a6:76:
4d:9f:4f:b4:32:3b:7c:2f:a5:74:02:33:22:35:4d:0e:20:b3:
bf:66:67:46:41:ba:88:9f:43:43:02:e6:bb:b8:48:de:6e:38:
cd:9e:28:af:cd:dc:71:6e:d3:4d:32:b5:29:55:bd:1a:f2:6c:
23:e0:3a:fb:f8:87:03:c1:fe:02:91:ab:06:2f:30:e7:b1:d9:
cf:9c:4e:d4:39:4f:19:e1:78:6b:ae:be:1f:69:36:94:4a:d0:
8d:5d:a7:2f:32:a5:b1:0f:26:5c:85:f9:d9:1c:99:79:e2:eb:
57:10:eb:3d:02:a8:7e:9f:26:08:81:cb:28:1c:87:3e:58:ef:
e8:b8:d5:1f:ba:e1:aa:1d:f0:0a:7f:50:4f:88:2e:c6:bd:8b:
de:68:1e:e8:4b:4e:05:3f:75:58:0d:d2:4e:a8:c9:83:50:57:
95:05:1c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:27:25 2025 by rpki-client