Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: 42WUr7jfgRx6ZOz95kOkVcQ7vsz476+n4CwtmnkV7Ec=
Subject key identifier: 09:78:FE:61:08:66:6B:04:1D:CA:D5:67:F8:91:C2:E4:7B:15:3E:54
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 019A4F991FCBC580FB10B405EC0D7162BD77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 08DA
Signing time: Tue 04 Nov 2025 16:00:26 +0000
Manifest this update: Tue 04 Nov 2025 16:00:26 +0000
Manifest next update: Wed 05 Nov 2025 16:00:26 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: VUSCSxrMsztsO/BgBCIOAyXtwNTIpmi7jkwN0NyVlm4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:1f:cb:c5:80:fb:10:b4:05:ec:0d:71:62:bd:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Nov 4 16:00:26 2025 GMT
Not After : Nov 5 16:00:26 2025 GMT
Subject: CN=0978fe6108666b041dcad567f891c2e47b153e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6c:a4:ab:42:47:ee:cf:99:de:14:82:3e:81:
dc:3e:cc:49:5f:29:37:e5:f8:3c:ae:87:97:3b:23:
7f:ed:72:85:4c:99:8b:44:24:12:b9:90:6b:71:37:
53:ee:81:2b:90:cc:81:d6:3d:bd:13:b7:bc:71:fa:
a3:d3:c2:80:7c:8a:dc:c8:6f:93:ed:5a:62:e3:00:
f8:a7:4f:4f:52:9a:a7:c5:c0:56:7f:78:dd:4a:88:
e5:33:01:6f:15:62:36:1c:01:ae:d9:6d:c3:b1:71:
48:f0:01:1b:33:80:b4:cc:09:e6:c7:6a:e6:c1:3b:
2e:ea:c6:42:5f:e1:78:85:c5:aa:ca:c6:4f:c8:7d:
bf:35:c0:76:a6:8b:da:d0:da:66:c4:56:8d:1f:fa:
cf:f3:6b:2b:d2:54:c2:f6:26:15:f2:be:b3:cc:90:
28:30:c0:3a:21:a1:fe:f8:3a:ab:17:e6:ae:85:ae:
fc:a3:6a:2c:d3:ec:54:33:cd:94:9a:44:b5:22:aa:
d3:7b:b4:33:f5:76:c0:be:8e:69:bc:4d:b5:27:7e:
62:eb:84:4a:06:5c:51:16:10:a5:2e:2f:8e:62:b3:
f3:3d:5d:08:e4:42:88:a5:a7:24:f5:cd:4d:3b:9b:
ff:cc:d1:52:c1:38:04:27:6d:ce:9c:57:da:36:55:
29:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:78:FE:61:08:66:6B:04:1D:CA:D5:67:F8:91:C2:E4:7B:15:3E:54
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:a6:3b:52:d0:db:67:3a:85:2c:60:ac:fa:27:f5:af:cd:76:
47:54:33:a5:08:94:6c:1a:74:04:33:b8:6c:95:87:d6:51:8c:
41:ed:57:25:bb:46:9a:a2:38:52:13:61:d0:a5:37:9e:20:4d:
c4:01:24:11:b7:ae:68:d2:c7:9b:b3:24:bb:75:af:72:83:ab:
62:eb:44:8d:d9:03:07:0b:7f:3d:75:d0:d1:45:9d:0d:8f:f6:
cf:f2:c7:1e:05:75:bf:26:c1:6e:54:2c:82:80:19:f9:81:6d:
25:02:ea:2a:e3:be:ab:3b:76:cf:dc:aa:00:1e:ec:36:96:2b:
25:ac:89:61:cb:77:26:5f:e4:c1:37:3c:4e:5d:13:9a:68:f9:
52:31:e1:88:ba:a7:24:d1:9c:7a:65:61:dd:f4:5b:a9:95:ea:
ed:0f:9c:dd:39:a4:16:60:3e:6f:25:98:12:20:2e:1e:ee:af:
6c:7d:71:54:e7:cc:33:14:7c:da:d2:9f:98:52:c0:32:68:35:
a8:c9:d0:97:9c:71:cd:f9:63:1d:21:5a:b1:17:ec:c1:d1:b7:
13:d8:94:3e:c2:d7:ff:c4:b6:be:b8:36:67:99:04:3a:19:9a:
f3:b9:0a:90:5e:76:94:bb:ed:16:16:71:84:70:72:10:7d:9f:
03:4c:70:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:22:20 2025 by rpki-client