Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: s/iS95u6XN15FvGF8tNUEsn49YAnbHZfdwrgIhrVjYM=
Subject key identifier: 95:B3:4D:1C:E7:0F:53:E4:AF:75:94:FE:F3:7E:B9:5B:A5:E3:05:2F
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 019A4DE1A80F0B85BF402F36F8D076065A6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 157F
Signing time: Tue 04 Nov 2025 08:00:25 +0000
Manifest this update: Tue 04 Nov 2025 08:00:25 +0000
Manifest next update: Wed 05 Nov 2025 08:00:25 +0000
Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: jp27nMlEa7RqzUar2czKWe8f87Y4wYuWuupIcZTpGqE=)
2: o9Mrd_Zp-119sDj-V8VZv-bH4Po.roa (hash: T/Zr25wueuSL7uIuxkLz/YPHfupfyL0OiqXaAJQQ9Uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:a8:0f:0b:85:bf:40:2f:36:f8:d0:76:06:5a:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Nov 4 08:00:25 2025 GMT
Not After : Nov 5 08:00:25 2025 GMT
Subject: CN=95b34d1ce70f53e4af7594fef37eb95ba5e3052f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:66:de:c7:f4:e2:92:28:4b:16:34:d2:6b:c4:
0e:91:62:ee:cf:30:53:31:53:8e:90:d9:88:64:46:
1e:d2:63:d0:6b:25:c7:2f:29:ce:48:0c:de:7b:16:
a3:f9:46:a7:d8:b0:b5:9c:17:71:86:4e:eb:76:55:
2a:e2:2b:4b:8e:7d:ba:fb:cd:c6:73:09:84:a8:b8:
70:7b:f5:d7:f6:eb:75:11:95:1a:19:f7:d7:21:2f:
1d:53:6c:00:26:58:32:e9:26:cf:dd:8f:55:64:4e:
bd:c7:67:eb:99:b9:98:3b:db:8e:b3:5d:f7:85:46:
77:5d:a5:b0:01:0b:c6:67:00:fc:1a:16:9f:13:c2:
13:86:e4:7c:cf:11:0b:d4:8a:e6:d5:84:2a:2f:01:
d9:86:d6:24:a4:ec:bd:51:16:45:ba:36:e0:8a:60:
39:7f:42:3d:b8:81:bb:29:02:3d:55:8c:1b:01:3c:
ec:10:7a:98:c1:86:51:3e:7d:ec:7c:51:05:57:7c:
07:0f:cf:9c:8d:97:7d:25:ea:1a:02:a1:66:34:5b:
3d:eb:64:b8:28:59:44:24:2b:72:a0:6c:e3:f1:f2:
e9:9a:e4:9d:37:28:ce:6b:18:fa:47:29:59:70:9e:
29:d0:26:8d:b7:91:28:7f:ed:7a:0c:85:03:5c:31:
95:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B3:4D:1C:E7:0F:53:E4:AF:75:94:FE:F3:7E:B9:5B:A5:E3:05:2F
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:43:40:6a:23:ab:c6:ed:fc:89:7b:b3:e8:39:b0:48:6c:5e:
7e:35:65:16:06:45:d4:23:eb:bc:72:84:04:0a:8a:64:8e:3a:
e9:7e:7c:b9:99:4a:58:73:3b:93:9c:07:53:49:74:14:dd:86:
53:74:a6:d5:ab:e7:a9:1c:8a:c9:86:99:a3:20:94:2f:b4:42:
61:2f:b9:e7:e1:5d:52:1f:a3:f4:c2:5b:ed:7d:38:89:09:60:
96:d9:cb:07:b9:e4:6e:31:89:c3:3e:64:56:bf:fe:0a:3f:7a:
87:70:9a:9a:1c:3b:dc:2f:65:99:c5:1c:d3:bd:9e:51:9e:a3:
ec:80:c6:fb:1b:dd:ba:29:97:e2:07:0b:07:78:51:0a:ba:17:
9a:e0:c7:41:4d:ea:05:13:ec:54:6a:49:06:a0:a4:dd:f1:20:
91:d4:c6:79:bc:56:75:98:2a:d3:34:67:50:52:bd:49:51:26:
a4:c8:29:5c:fe:d4:90:e8:30:59:5f:e5:ea:8e:72:22:75:e6:
ae:49:47:02:a0:40:65:a4:9c:d7:fc:d8:39:5b:a4:cd:92:18:
64:29:f6:32:09:a6:1b:ab:fc:04:e1:b8:9c:a8:eb:5d:3b:ad:
18:23:90:34:12:7e:3f:59:66:45:7f:07:61:b3:7e:03:21:f2:
b9:28:1f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:42:11 2025 by rpki-client