Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
File: KpTH34VXtlNEfD4G-0s3LVEgoiI.mft (raw, json)
Hash identifier: /KK6jcl5pRk5zUhrdhv+Vbs7u0grx8qu5PIN58aX8XU=
Subject key identifier: B0:FF:8D:37:B5:4F:AF:F4:2D:2F:73:83:08:B8:10:CF:C6:C6:7C:56
Authority key identifier: 2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
Certificate issuer: /CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Certificate serial: 019A4EF5725625CFDDC122F7F5EA5B1E4D1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
Manifest number: 170A
Signing time: Tue 04 Nov 2025 13:01:39 +0000
Manifest this update: Tue 04 Nov 2025 13:01:39 +0000
Manifest next update: Wed 05 Nov 2025 13:01:39 +0000
Files and hashes: 1: KpTH34VXtlNEfD4G-0s3LVEgoiI.crl (hash: dkHaO0Op4YG8SJo/DRu3PTCZDdaIwSWZ88cOhroyeIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:72:56:25:cf:dd:c1:22:f7:f5:ea:5b:1e:4d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Validity
Not Before: Nov 4 13:01:39 2025 GMT
Not After : Nov 5 13:01:39 2025 GMT
Subject: CN=b0ff8d37b54faff42d2f738308b810cfc6c67c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0b:e1:07:17:27:c1:46:5f:5b:70:aa:cf:94:
82:0f:83:a7:f1:7a:26:d6:1d:f3:e9:85:a0:21:da:
9a:46:50:d0:21:91:20:c0:08:48:46:8b:a0:85:10:
d3:72:49:c3:d5:71:ca:02:cd:8e:aa:ea:80:2d:54:
5f:85:ea:8a:3a:b2:30:4c:7d:66:7d:70:e9:3e:06:
c7:44:57:fc:6e:43:1f:95:f0:33:0c:b6:2d:fb:1b:
39:67:c4:ec:63:2c:c1:9c:d6:af:49:94:5c:ee:e8:
a7:a6:7e:20:1e:02:a6:57:5b:0e:8b:83:82:63:a1:
3f:fe:64:6e:02:cc:96:ee:6a:3b:60:11:c8:d8:a4:
63:a9:91:21:fc:c5:f2:13:ce:95:fe:9e:a3:ee:9a:
79:bd:cf:91:e0:16:1d:97:0c:3e:ad:76:04:f7:77:
6a:47:ac:65:59:75:e7:f7:59:4d:7a:b2:ef:93:98:
9b:de:ea:ac:cb:d2:5f:8a:c1:42:c8:a1:48:ae:39:
fa:4b:b7:aa:35:6e:f5:2c:e2:b1:ab:ed:dd:53:c7:
b2:35:e4:42:d9:02:9e:e6:21:76:b9:c5:5c:d7:d2:
de:8b:e7:d1:fb:a0:3a:c2:49:76:1f:2e:f1:59:3e:
78:86:23:db:3a:36:c0:6e:bb:b3:ba:e0:bf:65:ef:
c7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FF:8D:37:B5:4F:AF:F4:2D:2F:73:83:08:B8:10:CF:C6:C6:7C:56
X509v3 Authority Key Identifier:
keyid:2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:ca:41:bb:b1:6f:28:bb:4e:c9:9f:82:d2:3f:2f:6a:0b:d0:
52:2e:39:c5:6a:c0:c5:97:af:ed:47:77:8a:a6:b5:4a:26:39:
c5:02:22:fc:d4:f8:d7:1c:95:ad:06:4b:19:07:4e:c5:93:a5:
b4:b3:73:b4:78:c2:14:34:51:78:81:b8:ac:33:3a:20:47:45:
cc:fa:48:1b:e5:48:3a:66:c9:c7:4d:a1:dd:b9:ba:63:28:66:
25:07:67:e2:d5:a1:32:f2:32:a5:84:5b:ab:ae:42:d4:89:2e:
9b:8b:24:75:95:c0:78:33:be:5d:58:a3:95:02:73:62:24:ca:
3e:dd:4c:e9:2d:a4:79:7d:b7:6f:b5:62:1f:17:9a:af:65:ea:
01:a0:85:61:eb:84:06:59:40:2c:49:b0:29:d1:68:78:58:ef:
d9:fd:2f:b9:2a:8f:df:ba:e1:ff:9e:01:6a:4f:24:b3:f9:cf:
1d:1c:76:dd:21:20:8a:c8:51:21:2a:9d:99:a2:e8:de:45:2e:
82:d9:58:c0:1a:85:b6:59:5b:33:2f:9d:eb:39:59:70:fa:47:
e1:98:3c:fd:aa:51:ab:14:ef:bd:c5:b6:a8:15:b8:bd:54:a4:
5e:2e:e0:d6:b2:c1:85:ec:b4:bd:b2:68:92:9f:87:f5:e0:a6:
d4:3b:55:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:52:59 2025 by rpki-client