Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: zLxX0/XIG5c/3M3oBVTfqwWTlCePp5CCXZunxZCntFM=
Subject key identifier: 76:62:66:FD:58:58:8F:25:F8:1B:E1:19:5F:F6:AE:48:75:8B:3F:7D
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 019A54C07B0A0DE42AD41BC32AEC50DB776A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 0629
Signing time: Wed 05 Nov 2025 16:01:31 +0000
Manifest this update: Wed 05 Nov 2025 16:01:31 +0000
Manifest next update: Thu 06 Nov 2025 16:01:31 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: 6fmkGuDwGmzfWegINPFXdqCef8K6YQ5hqVkyHJ/w77A=)
2: N3FIvLoAi-SrbWKri-QxAJXERl0.roa (hash: oePUnAR/4Fy7x02aEJQp05kRfdkIvxnqMAYzYP5D1B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 16:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:54:c0:7b:0a:0d:e4:2a:d4:1b:c3:2a:ec:50:db:77:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Nov 5 16:01:31 2025 GMT
Not After : Nov 6 16:01:31 2025 GMT
Subject: CN=766266fd58588f25f81be1195ff6ae48758b3f7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:29:93:57:66:cf:13:cf:e7:a2:e9:d3:87:eb:
0f:60:50:a9:0e:80:4f:50:98:92:39:31:0e:70:28:
f0:7b:19:10:0e:34:66:7a:5b:dd:89:9e:39:9e:0f:
f6:52:61:f8:ec:19:88:f2:5d:73:44:96:f3:6f:13:
60:81:99:8e:a1:b8:4a:f5:2e:a5:7c:f7:20:fa:0e:
7e:89:1d:cb:1a:49:a5:88:28:59:ee:df:7a:c6:7a:
fd:3d:a3:b3:e1:c7:30:cd:0e:72:91:e7:20:7d:3a:
00:98:74:ce:2f:f1:50:ce:bf:57:54:23:4f:4a:20:
6e:a6:c4:65:42:56:e3:70:76:0a:6d:8b:9d:86:61:
bb:c4:42:63:d6:03:39:0c:c4:cd:ea:5e:41:99:71:
13:cf:8c:0f:de:7a:95:6d:3d:3d:ab:53:16:f5:b1:
dd:46:7f:09:46:6c:b6:16:2e:77:52:68:f6:4c:b4:
de:7a:84:66:23:41:4d:9f:e9:9a:4d:e2:b7:58:a5:
61:d6:7a:97:66:a4:29:28:82:71:d3:51:98:ae:50:
07:e4:d4:19:27:cf:91:bf:49:c4:8e:fe:73:cb:4a:
7a:de:25:e6:69:cd:4e:60:75:99:84:3b:8b:11:49:
4e:87:51:7c:fb:c3:42:ad:04:95:e4:58:e1:a3:67:
7d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:62:66:FD:58:58:8F:25:F8:1B:E1:19:5F:F6:AE:48:75:8B:3F:7D
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:27:ed:67:82:e1:0b:34:56:b9:88:f0:84:f9:fe:b7:09:ae:
00:ef:24:10:ea:f3:e6:45:e9:b4:e3:60:c8:51:26:39:85:c8:
5b:38:dd:20:69:b4:d5:24:fa:8c:e8:a2:e2:c3:15:e1:dd:3d:
79:3f:1d:34:a2:46:0a:d9:be:3f:09:c7:46:8a:ae:99:74:23:
14:15:9d:15:05:21:76:13:5e:58:36:f5:ea:56:ac:17:b2:4f:
94:17:1d:5e:c1:dd:a8:ab:68:eb:5c:55:5d:de:9d:c0:f7:e2:
28:6a:a4:18:63:19:97:fe:83:13:11:c0:02:e2:9d:8f:ba:01:
de:2d:16:62:73:98:f7:b3:88:80:c6:bf:ce:13:59:4f:fa:55:
17:de:36:d2:73:ae:70:c2:78:af:a0:e5:3e:70:92:65:5d:5d:
b8:21:0a:90:15:38:8e:0f:30:c6:0e:75:e9:fd:d2:f0:9c:1f:
74:ee:78:94:26:12:f9:11:e1:1d:e2:89:4b:7f:d1:1a:6c:c4:
09:39:97:cb:5d:43:1d:bb:32:d4:af:a5:25:63:54:1b:5a:36:
a9:61:80:21:4c:a0:8f:80:e3:eb:94:bc:90:16:50:65:59:51:
fc:ef:37:1c:d5:7b:d5:cb:25:44:0d:93:0f:54:bc:9c:90:65:
29:1c:db:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 23:45:17 2025 by rpki-client