Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
File: K67n6kgtYqZxBj6sg3ia8585C3Q.mft (raw, json)
Hash identifier: dzjOvjkOUoiXmR+79bidn4UKKCZI3xPR6iDsME7Irnc=
Subject key identifier: 35:8A:7E:AF:3F:3B:98:18:11:17:AE:7C:9B:71:46:F4:DA:85:22:55
Authority key identifier: 2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74
Certificate issuer: /CN=2baee7ea482d62a671063eac83789af39f390b74
Certificate serial: 019A4E4F7C9E8FD18286752DD1341F2AF408
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
Manifest number: 08C9
Signing time: Tue 04 Nov 2025 10:00:23 +0000
Manifest this update: Tue 04 Nov 2025 10:00:23 +0000
Manifest next update: Wed 05 Nov 2025 10:00:23 +0000
Files and hashes: 1: Jm_xi_s9C4HueOQpadAteqzC5iI.roa (hash: nbZ24fnK71pZ0lURFKjMf67hub71ZiuhlPq0UEHzTVw=)
2: K67n6kgtYqZxBj6sg3ia8585C3Q.crl (hash: zRMijLoAGWJKpng4AkmZ2lDo5TjxXrp6YV7WofdYFzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:7c:9e:8f:d1:82:86:75:2d:d1:34:1f:2a:f4:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2baee7ea482d62a671063eac83789af39f390b74
Validity
Not Before: Nov 4 10:00:23 2025 GMT
Not After : Nov 5 10:00:23 2025 GMT
Subject: CN=358a7eaf3f3b98181117ae7c9b7146f4da852255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:65:00:e9:bd:3c:53:8d:69:67:53:5f:30:54:
8b:70:63:a6:89:d1:36:2f:f0:0d:0a:04:b5:dc:78:
53:04:b9:1b:11:e7:2b:d3:e6:73:d9:0a:82:18:97:
f1:87:6b:25:b0:b7:68:c6:17:04:de:98:4c:9f:d6:
37:62:38:e6:3f:86:51:59:a1:f8:42:9c:80:db:51:
fc:78:8c:c9:94:cc:33:0d:30:2c:af:62:cf:81:b6:
bb:c9:49:0b:8e:91:68:a4:a4:a3:ca:3c:f9:5d:d7:
23:2f:5f:3b:f7:d4:80:2a:f2:de:0d:e7:74:f6:e6:
f3:8d:96:41:6a:fc:fc:9d:a7:49:37:ec:e0:68:8b:
ea:00:cb:df:cf:e9:9f:7e:d5:85:c4:42:ce:35:a4:
57:ca:a3:12:cb:42:03:02:af:77:12:4a:1e:c6:cd:
a8:05:36:06:db:6f:92:ff:a5:84:55:ed:58:43:b2:
c8:21:91:3c:21:6b:e9:27:a0:95:e2:65:cb:2d:bd:
45:94:be:b3:82:05:9d:4d:33:0a:ac:6a:69:47:aa:
82:49:4f:3f:3c:d2:dc:1f:c9:e4:67:0d:9b:6f:51:
7f:4c:03:d7:ce:52:a0:26:09:da:df:bd:55:c5:be:
c2:be:08:ec:13:3c:f5:bb:43:76:ab:e8:f0:3b:67:
58:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:8A:7E:AF:3F:3B:98:18:11:17:AE:7C:9B:71:46:F4:DA:85:22:55
X509v3 Authority Key Identifier:
keyid:2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:25:17:e2:e0:5f:0d:e4:4e:f3:4a:43:a1:99:98:99:fc:64:
13:8b:45:d5:1d:9d:5d:07:ad:7e:96:3e:06:33:b6:7e:d4:98:
16:2e:31:7e:5d:a9:06:72:3c:2b:fc:ac:e4:ae:3d:42:58:d9:
12:4a:45:57:73:2e:62:a2:55:96:9f:1a:5e:c9:02:2c:6b:c7:
f9:d3:6f:85:1f:d6:93:01:5d:c9:11:a2:9e:2f:06:1b:48:2a:
d5:1d:de:91:88:0c:e2:57:a2:b0:19:45:a2:a5:d0:16:25:74:
a9:d5:91:ca:a8:98:cd:99:58:43:ed:e7:a7:2c:7d:ee:00:7b:
a9:9b:31:86:1a:92:44:6d:e7:76:f3:fc:9f:9a:03:e2:b6:55:
8d:d6:d5:1e:36:48:a6:8e:10:c7:bc:9d:89:77:39:f3:ed:a7:
c9:51:bd:a7:26:c1:47:30:cd:eb:dc:a9:4a:bb:dd:f8:d9:ed:
31:c9:7e:58:f3:00:fc:5f:d4:d9:ac:d4:f2:5b:05:7d:41:d6:
23:84:c8:58:f6:7d:fc:30:e8:29:0e:a6:f5:5e:8f:41:1d:c2:
f2:dd:05:db:36:2a:29:92:a5:e3:bf:36:67:d8:09:7c:59:63:
47:cc:fe:0f:b9:6e:d0:59:10:1c:e8:c3:a9:e2:80:58:93:4d:
5b:f1:53:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:11:39 2025 by rpki-client