Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: aUKrOLVv6q2Ot3ybYxOjTjL9qMrYBYao+Qwlp5booMg=
Subject key identifier: 47:7E:5F:96:FB:B1:8B:13:2E:30:80:C2:FE:02:C0:5F:21:38:A4:CE
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 019A4C611765F0DFD5AACCB98F15B4311C25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 170D
Signing time: Tue 04 Nov 2025 01:00:22 +0000
Manifest this update: Tue 04 Nov 2025 01:00:22 +0000
Manifest next update: Wed 05 Nov 2025 01:00:22 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: MDBbGxy8lyL+y0VFbxKZoj7e8twsGh+ldoRti61EAjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 01:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:61:17:65:f0:df:d5:aa:cc:b9:8f:15:b4:31:1c:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Nov 4 01:00:22 2025 GMT
Not After : Nov 5 01:00:22 2025 GMT
Subject: CN=477e5f96fbb18b132e3080c2fe02c05f2138a4ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:81:d7:e4:94:af:7a:a1:d3:fd:ff:50:c8:d6:
0a:9b:4c:8f:bc:df:38:84:54:f1:f0:c1:af:5b:20:
84:ea:99:61:61:d8:f3:43:9c:1a:c5:67:3b:b4:4a:
b5:11:64:27:e4:7c:e0:ab:9c:ff:1d:55:02:2f:75:
54:4a:d0:ee:9e:46:e0:56:fb:b1:9b:3b:07:46:3f:
d5:6d:97:1c:83:4c:3c:d4:87:08:b2:5b:a7:b7:6e:
ec:bf:aa:f9:02:2c:02:74:e9:78:c6:5d:58:06:d1:
46:7b:60:72:bd:45:92:af:7c:b7:e2:9d:d1:f5:f8:
f0:e0:ff:67:76:73:66:22:f7:20:ff:cd:91:bb:95:
c0:1b:15:83:90:c1:f5:4c:e0:8f:30:bd:e6:bc:c5:
66:94:1e:fe:b9:23:bd:74:5d:d6:72:c7:d0:da:69:
b8:06:3d:c9:72:d4:2e:51:90:65:59:4f:75:d3:9f:
dd:d0:d0:cc:dd:65:3b:7d:33:8e:a8:6d:2f:48:36:
e7:f5:4b:6e:6f:0e:84:35:09:5e:1c:24:3d:1d:b3:
35:02:33:46:01:76:8b:5f:76:44:b5:74:0f:7b:20:
d3:fd:a4:ca:98:73:0c:ee:19:99:ba:3e:93:70:76:
9b:c3:c8:d9:4d:41:57:85:8e:af:ef:c5:bb:fd:0f:
25:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7E:5F:96:FB:B1:8B:13:2E:30:80:C2:FE:02:C0:5F:21:38:A4:CE
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:0c:a6:aa:14:1a:18:5d:a6:7a:97:aa:ce:37:49:74:dc:6d:
7c:c3:ce:66:42:34:03:c2:92:c8:45:7a:8b:1c:74:ca:fc:96:
0d:a7:64:d6:2e:dc:e6:db:6b:a2:bc:c4:d9:72:ad:8e:47:8a:
35:0c:73:e6:38:9e:89:56:8d:c8:a0:2f:f7:f2:d1:8d:12:e0:
df:bf:aa:da:8f:b7:ed:42:61:fa:27:34:9a:7b:b2:ba:f0:f3:
ad:70:3b:18:11:f9:f1:64:9c:97:b5:29:40:9f:c5:9d:88:94:
4b:5c:99:ae:59:8a:3d:41:8e:ba:38:53:4d:ab:53:47:55:bc:
2d:b2:bd:ba:90:d4:26:8f:20:ae:7d:36:55:81:b7:7b:0e:2b:
b9:67:18:42:ce:87:cd:89:9d:f2:e2:e8:1f:9f:2c:e5:2d:f9:
1b:f9:54:6e:50:0b:1f:02:38:80:dd:1c:d8:7e:83:3c:8d:35:
85:0c:fc:04:1d:3d:f9:9a:46:5b:1a:42:64:cd:61:d0:88:59:
44:8e:58:60:72:6b:b1:70:f7:2f:5e:58:5a:2b:23:04:65:25:
04:fe:94:85:32:49:42:c6:d0:a7:35:f5:99:ff:7b:3a:0b:0f:
38:f4:0f:77:1f:92:f6:6e:bd:56:ea:b8:e9:39:d6:22:4d:d5:
7f:9c:8b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:47:41 2025 by rpki-client