Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json)
Hash identifier: pdJjr0W5Bel1nHyn+6dZDhOO7fAAAFAIxNMHUXe5xPM=
Subject key identifier: AD:E3:58:AF:5D:58:40:7D:A8:A9:87:41:07:0D:E2:58:F9:89:BA:18
Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3
Certificate serial: 019A4D74144298AE39B7A389778BCD9308D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
Manifest number: 0FA9
Signing time: Tue 04 Nov 2025 06:00:44 +0000
Manifest this update: Tue 04 Nov 2025 06:00:44 +0000
Manifest next update: Wed 05 Nov 2025 06:00:44 +0000
Files and hashes: 1: 9Bw4s7L1PZyJ0cmK8dHggvZkyc8.roa (hash: k8G5zSf+pp8Di/1i1Rk8bBBXkqYoG95ba1/+ZDXAe1E=)
2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: 5lBFnCPJGT4t15bQmqIw9dO5c+CemmjajXlDJcsSSsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:74:14:42:98:ae:39:b7:a3:89:77:8b:cd:93:08:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3
Validity
Not Before: Nov 4 06:00:44 2025 GMT
Not After : Nov 5 06:00:44 2025 GMT
Subject: CN=ade358af5d58407da8a98741070de258f989ba18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:dd:f5:c9:9e:b0:7b:c2:32:de:eb:e9:c8:16:
4f:3f:b6:68:4e:4d:05:38:3a:9c:07:ad:1e:4f:68:
22:4e:2c:7f:85:43:0f:af:85:42:81:53:60:f8:6f:
68:ff:06:07:e2:f4:7c:e9:5a:50:08:81:34:94:f5:
e9:9f:08:df:82:68:ee:27:1d:dd:c0:eb:6d:8d:a0:
58:7b:3e:bb:dd:40:25:8f:92:01:44:98:cb:93:0f:
e0:b0:4b:e9:8a:19:7e:24:f7:8b:c0:21:08:4e:ee:
aa:4d:dc:4c:8d:d7:2d:e8:e9:15:11:65:34:40:2d:
e3:46:44:8b:89:b7:2c:e6:84:50:2b:09:39:cc:60:
64:c5:46:c5:1e:9b:8f:6b:f8:6a:f8:ff:c1:7e:c7:
10:b3:5b:75:30:00:4e:c1:36:5d:90:e6:67:1c:05:
26:e8:5f:ab:44:51:a0:91:58:60:e9:d2:82:fd:18:
65:10:23:2c:e8:e4:10:a3:2e:3e:d0:a9:82:25:82:
61:65:98:5f:53:90:55:93:92:85:68:4b:92:fa:20:
5e:30:6f:33:d0:f1:ce:a2:05:8f:2e:5e:31:49:48:
06:ba:56:5a:ee:a9:ba:f0:0c:f2:a1:4b:3d:86:6b:
ec:a9:ec:c1:1c:2a:c8:77:25:a7:50:a2:39:f4:f1:
9f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:E3:58:AF:5D:58:40:7D:A8:A9:87:41:07:0D:E2:58:F9:89:BA:18
X509v3 Authority Key Identifier:
keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:80:e9:e9:a2:64:18:5e:85:ba:6d:aa:65:8f:5e:84:a7:6e:
a3:b0:03:6a:07:97:f3:7a:f0:45:1a:48:29:36:f0:7a:8b:f4:
06:17:14:7e:08:c0:15:d2:f4:19:63:90:71:4d:b3:ee:fb:14:
62:31:56:e7:37:ec:14:cf:85:d9:bc:d5:61:e3:79:57:9c:d4:
31:6e:9d:dd:e7:40:0a:59:d3:27:8f:5d:38:f3:96:44:43:85:
8f:ee:63:69:7b:57:8a:e8:8c:4f:31:b4:ae:b3:c1:f5:e4:01:
9b:ce:58:1f:e9:d9:ff:7e:3b:54:44:5e:a4:2b:cc:b8:45:c6:
1f:83:98:48:5b:90:e1:bf:03:40:0a:5d:fc:ab:98:d2:76:a5:
42:98:a4:33:52:8c:83:6c:11:d0:b4:43:a8:86:69:73:da:e3:
c6:1c:ea:37:22:86:b1:d1:37:63:58:59:37:99:ba:b3:f9:e9:
9a:96:33:22:4a:28:37:ae:42:fc:9b:81:c3:c9:80:8b:a0:39:
7f:4e:c7:27:3c:26:80:f0:ed:ab:ef:99:82:9f:d8:f4:df:ac:
4f:93:c9:19:75:1a:b1:99:ac:c9:c6:37:84:d4:a9:b6:98:e4:
bd:a0:79:c5:1d:5e:d2:f8:b5:01:4b:fd:ea:2e:7a:6a:7c:f6:
72:e2:4b:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:21:18 2025 by rpki-client