Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json)
Hash identifier: plr900ppyi+CJFcThYCXkwtQ76Ni4U/0HJkD3KiC5U4=
Subject key identifier: C6:EF:D4:EC:03:DE:C6:84:59:BA:57:66:07:CC:BA:11:A7:78:35:4A
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 019A4D7428F48886DC2E0EC2525AC589C373
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 06:00:49 +0000
Manifest this update: Tue 04 Nov 2025 06:00:49 +0000
Manifest next update: Wed 05 Nov 2025 06:00:49 +0000
Files and hashes: 1: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: OnRBXojbZVUhTJu3+ZAYu9pCnYg8UJawBNVLCJHsyDU=)
2: wzuPiDmhnP7Nv_Dp2QI7h5h3O-g.roa (hash: 1/0ldOLBPILSR69hThfIMtpZUKnlBM4vs1kLEHBC5Mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:28:f4:88:86:dc:2e:0e:c2:52:5a:c5:89:c3:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Nov 4 06:00:49 2025 GMT
Not After : Nov 5 06:00:49 2025 GMT
Subject: CN=c6efd4ec03dec68459ba576607ccba11a778354a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:06:56:a5:c0:39:c0:2b:3d:9e:6b:f1:8f:86:
83:4a:26:c6:5f:3e:69:a8:9c:d1:7e:e7:66:ce:29:
a3:4d:ba:3d:40:05:cd:04:67:db:b6:42:8e:e2:b5:
85:4c:64:72:89:01:51:ed:7e:3d:ee:1d:14:df:6f:
bd:9f:62:b3:19:c1:3d:90:67:38:e3:00:ca:e2:c0:
52:21:6a:7d:aa:0a:d2:d5:a7:66:42:25:b0:1a:31:
f3:bd:df:a2:cf:6d:fd:b6:0f:bc:15:c2:60:4d:7b:
a7:6e:02:0f:17:ff:e7:1f:a9:dd:e5:f0:87:6d:16:
f2:76:76:65:51:ec:ab:4c:d4:6f:a6:db:cf:55:ef:
c6:42:ac:97:1e:af:78:a1:97:8a:71:7c:29:fe:a6:
11:c3:c7:ba:71:6b:5a:01:38:a3:9a:98:f9:25:3d:
71:98:77:cf:85:55:c8:2c:c7:6f:de:26:eb:ae:63:
f3:fd:dd:e2:a6:1a:b7:b9:f7:02:33:61:aa:45:80:
6c:3a:e7:d5:3a:8a:23:4e:18:b9:7f:42:b3:53:93:
71:0a:ba:20:56:22:17:7a:fb:be:b7:a3:94:83:5b:
05:d8:5d:c3:c5:02:02:5f:75:ee:07:64:f9:c8:d4:
7e:2b:17:91:49:b9:ee:7c:e8:5c:92:2b:d8:c9:dd:
9f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EF:D4:EC:03:DE:C6:84:59:BA:57:66:07:CC:BA:11:A7:78:35:4A
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:4c:d2:e9:0e:ab:24:14:d0:46:55:b7:cc:fc:4c:b0:bd:8b:
fc:6c:c4:7e:58:59:20:d0:db:56:7d:27:f0:43:2e:e7:0b:89:
46:4f:c7:56:00:2a:95:cb:ed:70:28:d1:6a:39:c0:0d:8b:32:
5e:53:e3:57:17:ba:25:6e:ea:b9:83:1d:b5:01:ab:cc:7c:31:
dc:03:da:a6:10:29:db:20:39:f3:6b:6d:92:5d:08:df:8c:95:
c1:3f:a2:30:d5:f9:8c:2e:57:04:e7:12:7a:0e:4c:d4:1a:58:
e4:64:43:1b:5b:a9:40:9b:a9:96:d8:52:2e:b8:a7:ef:04:b0:
00:a1:3a:72:3b:98:2c:22:6e:52:99:47:37:3a:2f:03:13:9b:
fe:70:4a:6c:9d:ec:58:bf:6c:d1:c8:99:46:04:6c:db:b9:28:
21:3d:d1:26:6b:48:97:7f:12:9d:2e:8e:89:d5:20:27:60:9b:
fb:12:16:d9:a4:97:a8:5b:96:cf:3c:ce:11:34:46:0b:29:2c:
3f:9a:59:45:66:b0:61:66:1e:19:5b:85:58:e3:e0:42:fa:e6:
95:df:96:41:dd:9a:7c:68:90:3a:fd:0f:c8:3e:95:fd:e2:14:
3d:70:30:f1:04:d3:98:e1:73:e7:ce:5d:4a:4d:26:7d:60:e4:
e2:d1:bf:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:44:06 2025 by rpki-client