Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
File: KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft (raw, json)
Hash identifier: b+9lBO5SKp8eoNLS/Yvt6YJx8MiWr0VgMScCykm0s2g=
Subject key identifier: 09:32:88:34:D6:90:45:62:CE:2F:FD:F8:7E:78:A6:C1:71:A2:97:51
Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
Certificate issuer: /CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Certificate serial: 019A500756A8C41B90B361ED4357D243CD3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
Manifest number: 170C
Signing time: Tue 04 Nov 2025 18:00:49 +0000
Manifest this update: Tue 04 Nov 2025 18:00:49 +0000
Manifest next update: Wed 05 Nov 2025 18:00:49 +0000
Files and hashes: 1: KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl (hash: /JDF7D/0Z+NKxZdq5jxueUAPVl6PyYv+XmkZJSU8Y5Y=)
2: hIS7p8oBVfka5-8RFV0HubayIdE.roa (hash: F5TIegvY+JSm5ZTBtrT5T05mvONHoneGNZ8NfzaAUc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:07:56:a8:c4:1b:90:b3:61:ed:43:57:d2:43:cd:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Validity
Not Before: Nov 4 18:00:49 2025 GMT
Not After : Nov 5 18:00:49 2025 GMT
Subject: CN=09328834d6904562ce2ffdf87e78a6c171a29751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d8:e9:dc:41:d5:6b:c8:02:93:29:6c:85:61:
50:ab:e0:8e:48:79:f1:44:2d:12:5c:71:be:2a:d3:
1c:34:5f:59:5f:d3:c5:94:8c:39:93:19:a1:89:6c:
ad:9e:91:43:e1:ec:c0:04:40:5f:85:8c:f4:ce:52:
cf:f0:57:c1:4b:40:de:c1:de:a4:21:14:77:f9:cf:
39:d2:e5:b4:7b:be:63:c3:7b:01:8c:d5:6f:a1:58:
5e:73:3e:3c:ca:e2:2c:10:fe:1f:7a:e0:76:80:9b:
00:b9:f1:ab:a4:25:08:6d:5c:4e:4b:89:1e:d1:e4:
05:8c:98:89:97:fa:6f:c7:b3:bd:57:4b:62:2e:90:
cd:a4:4e:00:b8:2c:e6:f9:5e:69:8d:0d:b6:99:22:
d8:d0:2a:91:ae:ad:22:0b:35:34:0e:11:74:e2:30:
ea:23:61:83:2c:fe:26:d0:4b:d6:67:2e:c3:d5:1f:
af:3b:de:02:9d:4e:da:3e:d8:3a:ca:17:8f:41:b1:
a2:44:11:b4:39:d7:70:a3:f2:8b:d0:e6:b7:75:3d:
52:96:18:7a:23:51:28:4b:d3:0f:0c:a1:92:58:c9:
f2:9d:44:07:6b:bd:56:a8:86:11:bb:42:1d:1d:9d:
35:b1:44:ec:66:ff:fb:97:e2:d3:16:74:75:bb:36:
42:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:32:88:34:D6:90:45:62:CE:2F:FD:F8:7E:78:A6:C1:71:A2:97:51
X509v3 Authority Key Identifier:
keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:ee:2b:18:e1:9e:a3:e1:ca:11:bc:72:6c:bf:e2:57:1b:21:
a7:e7:97:88:24:b9:5f:eb:24:1d:71:76:3f:fc:3b:1f:ff:7b:
1f:09:5f:21:58:2e:95:6d:44:81:5a:e1:76:67:ec:c6:93:7c:
b3:ee:30:49:3b:80:a5:ca:a0:34:5a:92:71:24:23:52:53:18:
a1:0c:83:32:c1:e5:1d:b2:a4:31:30:5a:c8:4e:5c:7e:df:d7:
52:48:5a:77:7f:1d:37:20:db:c0:dc:d1:4c:fb:0f:1c:be:4b:
45:3c:63:3e:ef:b8:67:7c:b8:0a:6e:2c:d8:8a:88:00:83:1d:
b9:66:15:46:b9:76:29:07:27:4c:46:ae:8a:01:5c:19:d2:46:
c1:ea:0f:8b:1c:da:af:1b:f9:9d:e5:06:4c:41:1d:20:6c:2c:
06:a9:ac:5a:11:92:92:c3:dc:13:88:a3:d8:bc:82:e1:c4:5d:
c1:6f:e2:96:09:3b:03:e2:69:15:a3:7e:98:69:7d:c0:1d:95:
bb:0e:86:cc:6b:fa:59:3a:f1:9f:bb:6c:b5:13:c2:0d:69:8e:
6b:fb:7b:e7:43:c1:cc:be:08:74:10:12:39:95:2a:9d:08:6c:
dc:17:7d:2f:89:e8:bf:84:5c:34:3a:f8:88:32:34:77:49:49:
1f:b6:16:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:19:33 2025 by rpki-client