Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
File: KeieDArUFRV01m8rML0dpKqd8Fs.mft (raw, json)
Hash identifier: a3nFzzeV0U79VQ2IcC31v/px590qdaUzQdf9brNm4Ow=
Subject key identifier: 52:8B:72:46:D6:6D:8C:18:8E:9D:4E:3F:AF:0E:24:F5:8E:59:2E:3B
Authority key identifier: 29:E8:9E:0C:0A:D4:15:15:74:D6:6F:2B:30:BD:1D:A4:AA:9D:F0:5B
Certificate issuer: /CN=29e89e0c0ad4151574d66f2b30bd1da4aa9df05b
Certificate serial: 019A4EF5960333B08C34DC043E86B7F8DA7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
Manifest number: 13D9
Signing time: Tue 04 Nov 2025 13:01:48 +0000
Manifest this update: Tue 04 Nov 2025 13:01:48 +0000
Manifest next update: Wed 05 Nov 2025 13:01:48 +0000
Files and hashes: 1: KeieDArUFRV01m8rML0dpKqd8Fs.crl (hash: DMAMVHvz1Xs1w67c4Kn6nwKqRTYxxIS3Bzri/kTO7dE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 13:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:96:03:33:b0:8c:34:dc:04:3e:86:b7:f8:da:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e89e0c0ad4151574d66f2b30bd1da4aa9df05b
Validity
Not Before: Nov 4 13:01:48 2025 GMT
Not After : Nov 5 13:01:48 2025 GMT
Subject: CN=528b7246d66d8c188e9d4e3faf0e24f58e592e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ab:f0:7f:63:fc:15:64:bc:e2:a5:4b:aa:95:
c9:51:9c:26:49:bd:17:4b:99:15:e3:ab:08:93:d3:
4f:6c:a8:0a:4e:07:3d:fc:13:21:64:58:5f:47:a4:
d8:71:5d:d7:48:0b:bb:67:c0:19:95:44:18:dc:60:
f3:3c:3b:e6:f5:05:38:0a:06:99:96:9d:0f:91:db:
4b:0b:26:e4:b4:25:7a:9e:97:2d:87:b0:1c:0a:a7:
fc:f5:08:c3:7e:6e:96:89:e9:da:f9:db:26:08:c2:
c2:93:8e:db:70:bd:90:68:2d:f6:d8:47:ec:d5:1a:
6b:ab:74:55:11:6f:fe:7c:cc:87:07:ad:70:bf:34:
c8:c0:0c:d3:41:5b:cf:a6:51:4c:8a:cd:ed:5c:2b:
d1:7d:00:94:7a:f4:0f:e0:89:c0:9f:e2:0f:82:9a:
1e:34:26:07:52:32:c8:b9:21:42:a3:d0:be:68:9f:
95:3e:1f:0c:08:12:89:2e:7c:3d:16:a1:62:6d:0d:
db:a2:19:13:7d:a9:21:99:91:95:01:f0:0c:41:35:
c6:0c:24:13:d9:0e:56:f3:f5:08:0f:37:74:4b:50:
ff:1b:e7:b7:5b:bb:e2:c5:de:46:1b:d4:e2:21:c6:
11:06:7a:c0:05:90:10:d6:68:2f:8b:73:04:3d:29:
41:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:8B:72:46:D6:6D:8C:18:8E:9D:4E:3F:AF:0E:24:F5:8E:59:2E:3B
X509v3 Authority Key Identifier:
keyid:29:E8:9E:0C:0A:D4:15:15:74:D6:6F:2B:30:BD:1D:A4:AA:9D:F0:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:d8:ef:5e:5d:ba:3f:a6:fa:39:ca:1b:44:66:31:10:e9:9a:
13:08:0a:3e:70:c8:17:27:03:1c:66:43:a1:18:3c:ab:11:16:
4d:a9:92:1a:88:37:c3:90:ba:83:74:55:d3:4d:c5:93:8a:4b:
0a:50:a9:9d:a1:1f:ca:63:eb:58:03:60:a9:85:2d:e5:5c:1c:
e9:4b:66:3b:2d:d5:0b:4e:ed:7b:f9:58:5c:57:d6:4b:08:e7:
eb:e9:24:33:31:c4:ab:38:c8:a6:55:ac:d1:4b:2a:ee:18:47:
c5:05:c4:f9:c2:f0:b0:ab:4f:76:f6:0d:35:7b:ee:d6:9e:7e:
cd:3b:9b:b7:08:4a:20:6a:1a:d2:a8:73:9a:fe:65:bf:ce:5e:
64:1b:39:31:f3:b7:d5:bc:56:c6:4c:1c:87:ab:c7:f3:9c:e3:
20:db:87:ed:89:04:eb:db:c4:e9:f4:11:05:ff:a6:db:42:4d:
96:bb:61:98:83:f7:7f:b6:78:15:aa:0f:ac:bb:d6:60:50:98:
58:3b:70:6c:78:a8:7a:ae:25:f8:5d:1b:26:79:46:12:f6:59:
a7:d1:b2:ba:a8:cd:8d:c0:cb:5e:99:23:0b:df:01:15:e7:16:
38:c6:0b:3d:92:bc:e7:f1:11:ec:b2:f0:ae:68:5a:43:62:e4:
eb:ca:73:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:45:25 2025 by rpki-client