Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.mft
File: kpZChU_lYFL93BRr9y57xpSFC2M.mft (raw, json)
Hash identifier: tePBm+iQ1pNJuPrszRo40fS55h+FkFBfAXBd7bWb1pw=
Subject key identifier: 00:BB:90:E8:54:ED:90:33:CE:03:39:6A:34:45:98:E7:6B:B6:A6:BF
Authority key identifier: 92:96:42:85:4F:E5:60:52:FD:DC:14:6B:F7:2E:7B:C6:94:85:0B:63
Certificate issuer: /CN=929642854fe56052fddc146bf72e7bc694850b63
Certificate serial: 019A4D07EA62B0A79AF650FB5A594F8CE85D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpZChU_lYFL93BRr9y57xpSFC2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.mft
Manifest number: 07F5
Signing time: Tue 04 Nov 2025 04:02:35 +0000
Manifest this update: Tue 04 Nov 2025 04:02:35 +0000
Manifest next update: Wed 05 Nov 2025 04:02:35 +0000
Files and hashes: 1: kpZChU_lYFL93BRr9y57xpSFC2M.crl (hash: pci7N6YO8EYzb1zenayy22SpR1sh9ss07DwWpwT+hQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpZChU_lYFL93BRr9y57xpSFC2M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:02:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:ea:62:b0:a7:9a:f6:50:fb:5a:59:4f:8c:e8:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=929642854fe56052fddc146bf72e7bc694850b63
Validity
Not Before: Nov 4 04:02:35 2025 GMT
Not After : Nov 5 04:02:35 2025 GMT
Subject: CN=00bb90e854ed9033ce03396a344598e76bb6a6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:39:d4:33:ff:9e:b4:71:62:b1:8e:31:4c:55:
9e:98:25:62:cb:a3:5b:a4:2c:6c:bc:9a:f7:3a:bb:
7b:e6:aa:5a:f0:fc:1d:d1:0c:75:2c:f4:eb:09:35:
80:6d:39:3a:55:14:c8:7c:86:38:fc:31:6d:d0:d4:
85:fa:3f:9c:75:5c:5f:9c:41:84:70:2a:b5:f0:1d:
fd:49:ce:91:2a:77:5a:f6:51:c1:3c:14:ab:7f:7b:
bd:f2:0f:27:c4:40:ba:f7:44:e4:1a:0c:11:99:f2:
40:52:fd:d6:d3:c8:41:ec:81:c0:ea:2f:a3:aa:5e:
ef:4a:38:12:df:96:7a:51:21:eb:eb:ba:4a:55:f7:
b4:73:71:1f:80:a2:35:d2:7e:04:4c:67:99:22:f9:
d0:32:54:86:d3:50:8e:e3:84:44:f4:1c:e6:4b:e1:
9e:78:4f:a0:93:dd:7f:5d:79:8b:0b:9b:3b:60:58:
ba:70:be:2c:d6:6a:f5:0d:df:8e:20:41:50:4b:f9:
e3:23:7a:6a:c8:66:69:51:64:87:d3:fe:fb:41:ea:
d8:ed:06:29:7b:45:ca:09:c3:fb:f8:31:2a:10:e2:
28:6e:df:e5:a9:1a:3b:74:51:6a:06:fe:d6:0f:5b:
7a:88:22:91:ba:60:77:9b:32:f6:d8:c4:28:98:72:
03:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:BB:90:E8:54:ED:90:33:CE:03:39:6A:34:45:98:E7:6B:B6:A6:BF
X509v3 Authority Key Identifier:
keyid:92:96:42:85:4F:E5:60:52:FD:DC:14:6B:F7:2E:7B:C6:94:85:0B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpZChU_lYFL93BRr9y57xpSFC2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:0e:9d:c6:e9:7b:90:a5:6e:2e:49:33:8e:53:68:0d:ff:df:
26:4f:3d:da:8b:41:35:7c:9c:3c:7c:ba:9f:b5:45:be:b9:95:
2d:1e:86:2f:89:cc:6a:f6:91:df:57:2e:b3:84:db:06:38:69:
7e:1d:1f:b3:a3:57:7a:d6:d1:21:6b:2c:ec:40:5b:45:ac:13:
80:e1:04:07:3c:23:9c:79:07:68:a2:b9:e4:6c:91:fb:8e:13:
16:e0:ce:3d:66:e9:2b:50:58:8f:62:a3:aa:27:9a:80:8a:e3:
10:0e:1e:16:22:26:01:8e:63:c4:95:97:5d:20:3a:68:8a:b2:
3c:cf:5a:74:f6:40:fd:18:d7:73:c1:41:da:95:c4:a6:21:2f:
42:55:c7:b1:8d:4a:41:1e:85:f8:b5:e4:10:b3:db:a4:90:e5:
0a:e8:f2:c5:18:15:27:cc:f8:65:b4:fa:11:76:62:75:9f:b7:
d3:69:09:4d:f3:cc:b4:57:3e:b6:9c:6d:ec:e2:05:5e:29:70:
30:39:97:b6:fd:80:38:11:02:c0:97:5c:8e:5b:14:d0:d8:44:
1c:99:67:dc:68:37:69:5d:a1:4f:ce:ac:d9:f4:03:b1:b0:8a:
df:d8:2f:fa:7b:6c:db:a1:15:4e:82:73:0f:ca:94:c8:da:f3:
0e:a1:12:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:43:41 2025 by rpki-client