Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
File: KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft (raw, json)
Hash identifier: DTiDS0wQJpNKJX+caDg/7FDJzcqs09PAneZKJXRU/1o=
Subject key identifier: E6:A0:B8:49:A3:ED:0D:D6:F7:62:3F:99:DD:2F:22:B4:D7:21:06:C2
Authority key identifier: 29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
Certificate issuer: /CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Certificate serial: 019A4EF489422365659F5DEE183EF74D8033
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
Manifest number: 099B
Signing time: Tue 04 Nov 2025 13:00:40 +0000
Manifest this update: Tue 04 Nov 2025 13:00:40 +0000
Manifest next update: Wed 05 Nov 2025 13:00:40 +0000
Files and hashes: 1: IrS-qV3W0Ik-KE138sR-ycmjsj0.roa (hash: ZrhZqy7V3sNpl24EYUX1sc+YyDytYvN7JDm/U17ihTc=)
2: KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl (hash: d6p8fopepEKs4g2EYoUr7/zrv496IX1fMp6C027Xr4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:89:42:23:65:65:9f:5d:ee:18:3e:f7:4d:80:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297a4229714f34e29d3d92b25f7b59c748f0dfc6
Validity
Not Before: Nov 4 13:00:40 2025 GMT
Not After : Nov 5 13:00:40 2025 GMT
Subject: CN=e6a0b849a3ed0dd6f7623f99dd2f22b4d72106c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0f:9d:38:55:d6:9b:12:f1:e2:bf:a3:cd:a0:
5c:01:5d:79:ca:fd:7a:01:6a:2f:d1:15:94:5f:f6:
9d:02:e8:af:18:2d:ce:2f:0c:c2:07:07:9d:9c:0e:
55:a2:da:ca:ad:ef:21:d4:d9:53:d8:b8:37:bf:81:
d3:33:f1:40:82:72:8b:bf:ae:89:8f:11:5d:e0:24:
fd:c1:62:f2:90:1c:14:1a:93:24:30:9d:20:5e:77:
80:1f:d7:05:5b:e0:a0:1a:1c:3e:bc:37:97:50:c1:
84:90:44:69:a0:5a:7d:60:8f:bc:08:e0:9a:6a:5a:
af:be:7e:a0:1d:bb:49:74:6a:d1:13:2a:3e:96:e0:
fa:d3:0d:c5:1c:5d:17:57:8a:34:87:b1:74:68:8e:
2f:0c:ec:67:07:be:a3:df:fa:9c:7c:bf:40:1c:9e:
dd:f5:e2:68:68:7b:99:b4:ba:0a:03:4c:11:48:61:
15:9a:67:ff:5e:5e:39:e0:45:86:01:81:32:77:27:
c9:b5:9a:a3:77:73:ac:d1:ec:42:65:53:f1:6d:87:
4c:02:b4:4b:99:ae:23:78:7e:2c:a5:88:99:3f:47:
d2:a0:7a:ee:66:10:75:15:03:cc:6e:bc:43:4b:d8:
19:88:af:2c:63:cb:52:b7:2f:71:57:33:f9:7a:22:
e4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A0:B8:49:A3:ED:0D:D6:F7:62:3F:99:DD:2F:22:B4:D7:21:06:C2
X509v3 Authority Key Identifier:
keyid:29:7A:42:29:71:4F:34:E2:9D:3D:92:B2:5F:7B:59:C7:48:F0:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXpCKXFPNOKdPZKyX3tZx0jw38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/1d72ce-be4c-4498-a823-3aebc9f817ce/1/KXpCKXFPNOKdPZKyX3tZx0jw38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:57:e3:92:c4:78:68:36:7f:a7:96:24:ef:0a:9f:c3:ba:b4:
2b:eb:c4:2e:ac:c5:82:fa:7e:4d:78:c7:f2:5b:0e:04:97:b7:
79:ea:2a:07:28:65:01:b2:b2:5f:69:cb:fd:37:53:79:41:41:
56:fe:e5:2a:dd:7f:a1:36:51:59:e7:09:39:fe:f3:bd:e6:b1:
16:11:09:92:95:f9:03:d7:7b:59:29:de:a3:c8:75:00:8f:a9:
05:86:83:77:d3:3f:b5:0b:be:c2:37:23:c1:d2:88:49:9f:0a:
47:b8:c0:e6:37:ef:fa:4e:62:3c:07:ff:f0:f3:7f:0e:c8:79:
7e:cd:40:f4:79:d2:52:70:91:dc:22:64:6c:42:90:17:a4:8e:
61:4b:7f:31:44:db:f7:ec:b4:98:b2:9d:9e:48:e7:85:60:46:
ba:b0:18:33:62:e4:c0:66:37:1d:d8:b1:e6:0b:60:65:57:77:
6e:5a:4b:72:8b:b5:c2:f6:44:f8:c7:ef:49:23:5a:c6:14:7b:
e6:fa:b1:0a:1b:27:d5:69:11:76:d9:c1:5f:b3:5f:a6:e5:ca:
1b:75:a0:58:97:83:1f:7d:2f:3d:a4:5d:1c:fe:a0:55:57:0a:
c0:93:eb:14:8b:26:d2:aa:bd:39:be:0b:8b:28:9d:df:96:b1:
96:8c:e7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:46 2025 by rpki-client