Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: V81HkrP7wKpYvYVS9qDxjE+lzjiz563ok0NiAyVKlAs=
Subject key identifier: 41:73:72:D8:0B:EE:2F:2F:FE:B0:79:2E:15:73:1D:E4:E6:6D:1E:F5
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 019A4F9993C09079D2E00B759F58072AA192
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 04E9
Signing time: Tue 04 Nov 2025 16:00:56 +0000
Manifest this update: Tue 04 Nov 2025 16:00:56 +0000
Manifest next update: Wed 05 Nov 2025 16:00:56 +0000
Files and hashes: 1: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: Zz5VPEKPUh6nqyajxew2nav0EuWZbwucQjkpVKH+xvQ=)
2: o05sdzj6m4fQO6_WrgnQWVEGn8s.roa (hash: 4PZyqJElCUrsee8Vele9Jxa/SXWOHXm1LP7RgEQB9SY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:93:c0:90:79:d2:e0:0b:75:9f:58:07:2a:a1:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: Nov 4 16:00:56 2025 GMT
Not After : Nov 5 16:00:56 2025 GMT
Subject: CN=417372d80bee2f2ffeb0792e15731de4e66d1ef5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:40:db:05:c8:e0:cb:e1:9a:aa:53:9a:bb:ef:
3c:82:83:9f:58:4c:d9:79:8c:1d:39:71:0e:a7:8a:
bd:c9:ee:e1:35:9d:82:99:36:d4:6b:7b:11:fa:9c:
d3:60:05:57:41:4e:f2:d9:2d:fc:79:ec:65:48:c3:
ee:18:6d:07:15:75:b3:34:6d:8b:6b:7d:ea:81:0b:
03:be:90:2d:22:b5:d6:e0:26:0a:cc:42:83:e7:1d:
68:06:c1:5e:59:0b:3e:4a:2d:e6:cc:4c:6f:2e:65:
43:d5:fd:f9:6d:13:2e:8e:f4:61:22:1a:04:fd:ed:
6c:5a:b1:88:d7:6f:30:d9:af:4b:e0:31:a3:75:d8:
f4:48:6a:96:e4:c3:52:82:ca:1b:d6:23:f8:7c:44:
32:48:1d:10:9e:76:be:3e:72:f1:ce:7e:bf:b4:66:
c5:49:2a:e0:0a:80:e4:b1:75:ef:00:b5:63:00:ec:
86:e8:96:08:2e:6d:f6:ba:31:98:f0:d1:4f:4f:43:
65:89:b4:0e:13:be:66:8b:45:53:fc:2c:2e:e8:9a:
04:d2:28:7e:67:1c:8d:14:80:ff:8b:96:2b:2c:72:
de:71:16:6e:a0:a4:b1:06:59:b6:f5:0d:f1:7c:c0:
fd:a9:56:ce:df:d5:b7:f0:a5:ae:54:f0:d1:93:05:
fe:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:73:72:D8:0B:EE:2F:2F:FE:B0:79:2E:15:73:1D:E4:E6:6D:1E:F5
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:e9:d6:e2:78:b8:15:75:a2:16:77:ca:60:0c:92:f1:fc:01:
cc:cb:d0:fd:54:30:7b:b6:0f:48:0b:54:50:b3:23:df:8a:cb:
20:d3:26:ff:0e:da:74:ba:84:03:39:f0:b7:75:44:27:b4:f3:
7c:45:e4:ce:f1:98:bd:a8:d4:ce:6e:47:d0:96:21:71:84:fe:
a0:72:30:8c:9d:c1:73:2f:72:c2:ee:77:0a:6c:c7:e1:8e:03:
e8:c0:17:ae:20:c8:0e:7a:ea:20:10:cf:f0:6d:a3:85:76:3b:
6f:76:29:a1:0e:e5:ac:5c:bc:af:70:99:11:55:65:24:6c:b0:
7c:b0:4b:d4:0d:11:3b:35:dc:0e:16:a1:a7:f0:af:56:b8:c6:
16:36:f3:7c:07:e3:12:1c:f9:e4:0c:05:e1:28:19:a1:49:b5:
a8:b0:2c:6c:8b:34:2d:c0:be:d9:d5:05:63:25:6d:dd:16:03:
a6:08:8f:bd:04:a5:34:d1:a5:2b:d4:6e:11:59:50:55:be:d8:
a5:ab:7a:03:6c:61:15:4c:78:9b:27:ee:19:27:37:64:e0:d8:
6f:c9:34:75:89:9f:87:a3:70:36:a3:a5:1c:65:d9:22:9b:a7:
76:d9:f9:ca:60:ed:f9:18:d1:f1:87:8d:02:e4:f4:63:aa:fd:
78:54:81:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:06:31 2025 by rpki-client