Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
File: KgzEYwHIsf1GOSkwGPulNlOiZbI.mft (raw, json)
Hash identifier: 8yBeputz0fvzUh7M9RUe9zH1nNi4DiZ8QSaLR0zxVfs=
Subject key identifier: 6E:16:80:61:9C:DD:EA:EA:36:76:1F:74:BF:41:BE:0B:BF:2C:85:F7
Authority key identifier: 2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
Certificate issuer: /CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Certificate serial: 019A4FD0526EAD26F53AE6F8FCF54942C6E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
Manifest number: 1711
Signing time: Tue 04 Nov 2025 17:00:43 +0000
Manifest this update: Tue 04 Nov 2025 17:00:43 +0000
Manifest next update: Wed 05 Nov 2025 17:00:43 +0000
Files and hashes: 1: 25LU7394eXHg-PBe4_GLTG3VIkw.roa (hash: HyP22/g9CSOKH8mPcT6JDAYedjiAUR/5O/lp9cDajCk=)
2: KgzEYwHIsf1GOSkwGPulNlOiZbI.crl (hash: TqDC7daoUi76hkmIYBHzvB/d5MvCMqruDNOyAiX6eHE=)
3: VUqvat4WtfuUczhMBY4TDvxEK_s.roa (hash: Zqzw2dEApvnq4zRqyWAKudIEokzGJ+rSfWzcaKX+at0=)
4: jfIFCuUZlCfoxkAB48zp-OMBSv0.roa (hash: tfMbXizXQYE7ANVbZs7KN2qDtk5wxuAhU53t/l8imds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:52:6e:ad:26:f5:3a:e6:f8:fc:f5:49:42:c6:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Validity
Not Before: Nov 4 17:00:43 2025 GMT
Not After : Nov 5 17:00:43 2025 GMT
Subject: CN=6e1680619cddeaea36761f74bf41be0bbf2c85f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fa:ca:99:46:fc:c3:ce:e1:24:16:e2:bd:f8:
c8:40:bb:d5:41:0a:f3:a3:9a:c4:bf:91:9f:2a:5c:
89:ce:43:6b:88:e2:49:fd:14:4d:9e:dc:05:63:d4:
e9:83:6c:62:43:41:56:19:c4:5e:d0:51:ec:8e:7d:
64:8d:a4:03:b7:7b:1f:1a:82:61:01:31:be:51:c8:
26:05:8d:af:b4:42:2b:de:d2:f4:74:ba:41:8e:b3:
6b:c1:0f:90:e7:00:e3:e3:d0:a3:97:a9:76:cf:5d:
b2:d3:d0:5e:63:61:25:e2:37:cb:cd:51:13:dd:8a:
34:22:13:08:1a:a9:a0:c4:ce:f3:db:55:fa:2c:f5:
65:75:92:70:bc:75:22:16:e2:df:29:84:d4:3f:5b:
97:30:75:65:6c:68:54:b3:87:31:a8:8d:41:1f:9f:
03:13:75:7d:b1:ea:71:02:5e:d7:d2:4c:cb:48:99:
82:6b:b5:d6:09:fa:ae:db:c9:0e:eb:bf:25:00:8e:
37:ec:9d:83:80:5c:1a:7f:f9:5e:3e:63:d7:4b:1a:
0e:c8:c2:37:e3:bd:a4:bd:a7:49:22:53:7e:96:75:
70:03:de:ed:f9:90:e7:da:1e:69:e2:a8:89:a1:b9:
3e:8d:1c:6d:ab:7a:07:e7:f5:fd:68:0b:a7:02:bf:
15:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:16:80:61:9C:DD:EA:EA:36:76:1F:74:BF:41:BE:0B:BF:2C:85:F7
X509v3 Authority Key Identifier:
keyid:2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:f9:b3:65:e9:94:0d:71:20:57:66:fb:ca:f9:bc:7e:20:d2:
8d:99:49:9a:5d:77:94:32:66:67:59:fc:d0:37:60:ee:d2:2b:
e1:8b:c6:aa:27:9b:6e:09:b8:2b:27:6c:51:90:47:2f:95:34:
d2:71:9d:5e:66:f1:5b:54:ee:92:47:37:1d:21:97:46:e1:53:
df:11:be:e3:bd:ee:21:78:e1:20:eb:66:98:28:15:fc:28:40:
55:c9:b8:58:90:88:25:74:9e:4b:c0:91:d5:13:cc:c2:2f:72:
8d:f0:87:cf:93:a0:9f:ac:27:78:19:48:89:44:02:a5:c4:05:
43:48:45:ce:0f:b9:6d:1e:27:dc:02:93:4e:54:75:23:4b:4e:
e7:2f:1f:9f:6e:c2:9c:b1:96:9c:3f:f8:b7:91:9c:8f:7e:1f:
d8:9c:0f:87:74:25:3b:66:cc:dc:0b:af:70:3b:92:92:14:ec:
5e:62:fc:a0:4b:61:4a:8d:37:20:ad:45:c7:45:07:5a:76:07:
44:a3:2f:6c:01:a3:c6:01:35:bc:a6:4e:6a:4d:ef:fd:3a:cc:
88:65:ea:ca:dc:4a:1e:b9:eb:e0:e0:c2:be:9b:af:f0:8b:0d:
03:52:ed:e5:67:7f:ad:b8:93:4e:ba:9c:60:0d:e3:15:39:fc:
3c:23:37:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 02:52:35 2025 by rpki-client