Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
File: fKlis7F-7waeOrohKIuyxkIhv-0.mft (raw, json)
Hash identifier: qQbs4vMJ01Xn28btgWItyDhjeQxGNpE6LqtjT7uW2Tk=
Subject key identifier: 4E:4C:4C:AC:69:B1:55:3B:BD:4E:77:D2:DD:5C:2D:00:A6:EA:D6:B7
Authority key identifier: 7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
Certificate issuer: /CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Certificate serial: 019A50E439B4C2EAE15ACCD284CE1F73CA05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
Manifest number: 02EB
Signing time: Tue 04 Nov 2025 22:02:05 +0000
Manifest this update: Tue 04 Nov 2025 22:02:05 +0000
Manifest next update: Wed 05 Nov 2025 22:02:05 +0000
Files and hashes: 1: KHa9mVj-WNELt7pSCK9ooFTGrNA.roa (hash: UqMuiUZn2GrnQQZzSZEJPEZOfxeCUD81uoCK7byK2Vc=)
2: fKlis7F-7waeOrohKIuyxkIhv-0.crl (hash: W9ns2DDiPNgPpR7ExcoAHU+QxOiXh2hBz9lhqZBR4CY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e4:39:b4:c2:ea:e1:5a:cc:d2:84:ce:1f:73:ca:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Validity
Not Before: Nov 4 22:02:05 2025 GMT
Not After : Nov 5 22:02:05 2025 GMT
Subject: CN=4e4c4cac69b1553bbd4e77d2dd5c2d00a6ead6b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:07:fe:d2:6d:2c:f6:1d:62:10:18:e9:14:89:
b3:ce:59:78:df:05:d9:72:03:6f:b5:bf:f7:c4:1a:
57:c5:ad:fa:c9:36:1b:97:66:8d:c9:06:1b:64:92:
75:db:6a:1f:91:47:95:1c:81:86:d0:18:50:19:5b:
5b:cd:a6:3e:29:10:b3:9d:d4:96:87:5d:e6:f7:9e:
72:fa:1a:0a:ad:8d:c6:91:90:1f:4a:39:cb:94:b4:
1f:83:18:32:c0:93:f9:02:81:6e:2b:c9:29:d2:32:
54:7d:2f:f0:4b:68:76:79:ed:7b:4f:a7:bf:66:26:
ec:d2:10:7d:6c:41:48:49:dc:03:7e:01:e2:7e:63:
9d:59:09:f5:49:9a:47:39:e1:ed:f9:52:ba:ad:fb:
ca:25:0b:02:5f:c0:5e:11:ce:92:8b:d9:29:e9:2c:
18:a2:e6:fd:96:62:4b:f8:09:06:6e:00:49:af:c7:
72:89:83:9a:75:a8:6b:8d:45:00:e5:55:de:e5:b4:
74:b6:a4:a3:c1:42:b4:ed:f7:21:1e:01:fe:70:82:
4d:44:a7:1e:6b:08:95:47:52:8f:75:86:0f:08:69:
0a:e2:8a:45:84:10:4f:8c:0f:8f:d3:7d:80:24:f5:
62:fe:de:43:1f:09:dc:50:20:80:da:68:da:fa:0c:
f2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4C:4C:AC:69:B1:55:3B:BD:4E:77:D2:DD:5C:2D:00:A6:EA:D6:B7
X509v3 Authority Key Identifier:
keyid:7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:bb:09:7d:37:f0:81:77:db:7c:07:98:be:f1:18:7f:80:9f:
fc:d6:2e:7c:8b:75:c5:95:f9:e5:dc:81:86:a8:2a:db:5c:ad:
e5:8b:00:68:9a:55:d0:c8:86:66:e3:c4:8c:85:4f:1d:47:be:
68:79:ea:f0:68:fa:a3:a7:a6:5e:c8:ed:c5:7a:a5:21:72:81:
a3:1e:b1:bc:52:f4:7a:38:11:3b:7d:03:73:c5:8b:1b:3f:b5:
60:ab:60:a3:b5:2a:67:c2:20:be:33:3e:92:ef:2c:8d:a2:03:
b9:a0:52:4d:e6:83:79:1b:52:70:cb:e8:84:1a:f3:28:a0:b7:
ac:6b:10:51:70:d2:b9:0a:e8:37:fe:f8:a3:14:06:d4:69:7d:
ce:ce:4b:3c:08:71:38:f1:71:63:f0:20:fb:6b:5a:41:a3:93:
43:2d:64:41:0d:b9:07:1d:29:65:13:df:a2:b2:be:25:0e:62:
dc:3d:28:0d:37:5b:cd:ba:d2:46:94:64:66:d4:66:a8:85:c6:
b4:cd:f2:65:c0:5f:df:d3:11:ce:38:b5:ea:24:02:b8:5d:6b:
00:f8:de:1b:30:84:c1:0d:bf:1f:12:3f:d7:bc:18:7e:eb:b5:
fa:df:50:34:26:fc:f9:31:43:28:91:60:3b:ec:eb:b2:d6:b3:
a6:07:53:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:52:52 2025 by rpki-client