Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
File: kh2gU5IfUoNniBiPgvYt1aqXP-k.mft (raw, json)
Hash identifier: sKJ+4u4NPJ3AwyxUWpQrH3YCYgpkICm7K8OgGod+rW0=
Subject key identifier: 12:0F:FD:FF:16:E7:D4:DE:69:88:A9:D1:3F:49:F1:5A:4D:77:51:9D
Authority key identifier: 92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
Certificate issuer: /CN=921da053921f52836788188f82f62dd5aa973fe9
Certificate serial: 0199221F5942C035B8CED921FCD785A15824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
Manifest number: 0F36
Signing time: Sun 07 Sep 2025 03:01:43 +0000
Manifest this update: Sun 07 Sep 2025 03:01:43 +0000
Manifest next update: Mon 08 Sep 2025 03:01:43 +0000
Files and hashes: 1: kh2gU5IfUoNniBiPgvYt1aqXP-k.crl (hash: P95YEZsr4N6IzkqZcu4q8LEn+Fke6PgSG74dsp9E6WM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:59:42:c0:35:b8:ce:d9:21:fc:d7:85:a1:58:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921da053921f52836788188f82f62dd5aa973fe9
Validity
Not Before: Sep 7 03:01:43 2025 GMT
Not After : Sep 8 03:01:43 2025 GMT
Subject: CN=120ffdff16e7d4de6988a9d13f49f15a4d77519d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1d:10:37:ea:06:ed:fe:e2:9c:75:21:ec:9a:
2c:28:c7:7a:7e:3a:44:31:42:2d:c5:b5:14:62:1b:
33:aa:27:f9:87:50:dd:09:2f:bd:12:97:6a:e9:1f:
65:39:ea:08:08:ce:ed:14:d3:db:3a:17:e3:90:82:
b0:ee:81:ba:f7:db:1a:0d:d4:6c:13:13:13:4a:39:
9a:ed:66:2e:36:5c:b5:c5:18:e3:1f:c6:05:1f:7f:
d8:1d:8d:04:0a:d5:9e:16:19:fe:58:69:24:de:40:
ff:8a:c6:58:b5:24:f3:74:36:1d:83:4e:ea:64:1c:
83:e8:1a:f7:c8:fb:bd:6d:14:06:ec:13:97:a2:95:
e4:0b:65:c0:27:fc:5c:df:9a:52:ea:24:c4:51:94:
67:7a:7f:ae:fd:10:45:a0:cc:4c:7c:38:f6:3e:98:
40:1e:4e:32:8c:fb:fa:5f:22:a5:f7:d6:e1:f2:3c:
e0:f7:7d:27:a5:74:92:8b:05:e8:94:72:67:b6:6d:
89:6a:5f:0a:b7:59:56:98:58:12:fc:4c:0c:43:68:
1d:c3:4d:3b:1d:b0:41:1f:b3:49:2e:8e:bc:ca:13:
1c:e6:f7:0d:98:2c:c5:ca:e0:5d:17:f7:79:dd:57:
cf:41:5b:7c:8b:86:a8:f6:57:ce:e6:f2:63:e8:0d:
07:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0F:FD:FF:16:E7:D4:DE:69:88:A9:D1:3F:49:F1:5A:4D:77:51:9D
X509v3 Authority Key Identifier:
keyid:92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:e0:31:ab:80:5b:42:e6:50:d8:2a:04:28:ef:ba:2a:47:d2:
a4:17:fe:b9:27:87:f8:b6:cc:eb:b8:4e:e3:58:80:68:bd:4c:
07:fa:05:e7:fd:a3:25:c2:82:32:c3:92:d6:1f:96:88:8f:ec:
e3:53:1a:f3:d4:e0:02:3f:56:e2:2b:92:b4:9b:02:c6:0d:4b:
0c:f8:f5:89:19:cc:1e:6a:fa:00:74:16:4a:96:26:b4:d3:08:
b0:c5:87:ba:21:30:df:dc:39:0a:0f:b0:19:fb:77:90:5d:15:
20:9b:d9:59:ec:af:f4:6a:fb:bb:cb:82:5a:7f:b2:32:bc:39:
42:bd:03:57:b3:82:72:21:0a:8a:02:f9:bf:1c:06:c7:ee:da:
4a:55:94:28:e4:f3:a6:53:c7:c8:e9:31:29:92:63:bc:fb:97:
90:8a:72:30:b6:57:f4:a5:c6:64:0f:02:4d:1e:20:e2:d3:30:
1c:54:2d:95:9e:a2:aa:d1:8f:c7:5d:ba:1d:93:f3:a4:76:93:
47:67:8a:a1:95:36:87:2a:ff:c5:9d:e1:83:bb:5e:00:06:4a:
38:3d:c9:41:da:30:45:bb:cc:13:5b:58:a4:91:c5:98:d7:2d:
4f:4f:9c:93:87:78:4a:64:e6:da:9a:52:46:55:78:20:07:75:
22:a8:7a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:42 2025 by rpki-client