Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
File: K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft (raw, json)
Hash identifier: 15iQvu30HTzNujM+j2c+r/U0jcjD44oa35xfxL4t8wo=
Subject key identifier: C2:F4:FA:5F:55:B7:52:91:C1:E4:B1:77:52:F5:BC:E6:A5:DF:09:95
Authority key identifier: 2B:73:AA:84:37:BC:67:23:51:9D:0F:32:0B:F1:F1:70:41:41:A5:3D
Certificate issuer: /CN=2b73aa8437bc6723519d0f320bf1f1704141a53d
Certificate serial: 019A4E86A9907A5792D5F4FA3DD8E6A6CEC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
Manifest number: 04D6
Signing time: Tue 04 Nov 2025 11:00:39 +0000
Manifest this update: Tue 04 Nov 2025 11:00:39 +0000
Manifest next update: Wed 05 Nov 2025 11:00:39 +0000
Files and hashes: 1: K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl (hash: z6GZJujm0jkVyEPPvQxOsmFIVB4/t36J+/gC5t18VBU=)
2: Sz60tJGpfPEIPRKoNyD58l9TIHk.roa (hash: N59T40jObwP6xQKwd5i1QLcMPk2PBgJ5eVUrj8bdLR4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:a9:90:7a:57:92:d5:f4:fa:3d:d8:e6:a6:ce:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b73aa8437bc6723519d0f320bf1f1704141a53d
Validity
Not Before: Nov 4 11:00:39 2025 GMT
Not After : Nov 5 11:00:39 2025 GMT
Subject: CN=c2f4fa5f55b75291c1e4b17752f5bce6a5df0995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a5:f3:29:e7:9f:39:6b:e1:12:c0:66:0e:c9:
35:11:43:64:4d:12:74:dc:d5:10:36:3b:d5:8f:a2:
0c:9d:b8:e4:ee:11:ee:9b:31:a7:35:db:35:a5:59:
f3:90:85:ef:cc:5f:fb:9e:c3:33:94:b7:55:dd:9c:
2b:15:30:b2:d2:1f:c7:ba:27:99:9b:86:0f:c0:18:
c2:d2:20:93:90:da:59:95:0d:dc:58:85:46:ea:3a:
bf:67:f3:c2:a7:36:a5:74:4f:fb:69:63:34:d8:02:
a4:74:74:5c:98:fd:97:e1:4f:c9:a4:10:e2:31:c6:
5b:fc:0b:5f:2b:cf:57:ae:9a:93:78:0f:76:94:29:
37:47:64:23:12:df:be:61:1d:4b:4e:64:df:13:be:
8e:0e:ed:49:9d:69:a7:d6:40:65:f4:c1:e3:c5:53:
fd:aa:d4:72:73:ce:1c:5e:bb:c5:66:ab:3e:80:ba:
9a:2d:17:17:ab:78:4e:fa:28:34:aa:ad:2f:7c:40:
cf:95:7a:e0:d9:04:f3:6f:f3:b9:6e:d3:a6:5c:ac:
a8:03:ed:b8:ab:4a:40:39:c1:a2:ea:6a:2e:35:d2:
d1:81:31:b2:d1:2b:1f:dd:80:e6:b5:5b:a9:24:e3:
43:92:91:9c:54:58:ac:98:64:d2:60:44:62:ae:cf:
3f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F4:FA:5F:55:B7:52:91:C1:E4:B1:77:52:F5:BC:E6:A5:DF:09:95
X509v3 Authority Key Identifier:
keyid:2B:73:AA:84:37:BC:67:23:51:9D:0F:32:0B:F1:F1:70:41:41:A5:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:c6:4f:85:0e:39:1f:72:a7:df:2e:be:8b:79:72:e7:6c:eb:
d9:04:3e:e1:3f:71:06:2c:8c:47:7a:6b:e8:e0:b5:1a:0d:54:
b8:79:eb:e6:66:aa:55:9f:eb:b7:69:81:57:bf:81:d6:92:46:
8b:ce:c3:db:09:cd:92:84:b0:cd:0c:a3:35:55:9d:e4:3f:ce:
3e:25:ce:50:bb:59:74:08:82:08:c9:3e:98:79:13:e0:39:6a:
7d:d1:37:57:27:52:38:2a:21:15:ef:fe:71:cf:97:ba:93:cc:
32:b6:3d:e4:b8:bc:07:7f:68:5b:73:f3:7d:a5:f2:16:79:3a:
de:f9:5b:5e:4e:7f:a1:01:e0:3f:c0:4f:3b:c1:42:31:8b:00:
06:1c:02:20:03:2e:55:53:51:a9:d1:ba:87:33:dd:9f:7c:dd:
19:1d:5e:bb:94:f7:c5:2b:89:77:d2:42:55:d6:44:93:32:07:
13:66:d1:de:bb:70:af:85:5f:19:ed:2e:b2:77:9f:a6:88:0d:
60:20:32:08:0a:ac:73:4a:38:1f:69:1d:31:68:19:36:1d:6f:
71:88:71:ad:28:93:9b:f2:f2:f2:71:c1:95:f9:16:87:54:5c:
b0:64:c9:c6:65:c8:43:49:a7:34:e9:e7:39:36:da:18:43:61:
b8:33:77:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:07:24 2025 by rpki-client