Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
File: KgGcraFj42jMM2J2PyBrPerE0yA.mft (raw, json)
Hash identifier: +yFaLpS56H1RfEvfaKyY3KilRXrTXFtqFY+oWrIZlWc=
Subject key identifier: F0:1C:17:D9:DF:8F:9E:4A:8F:12:50:10:1A:78:D7:DC:14:D2:D2:9F
Authority key identifier: 2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
Certificate issuer: /CN=2a019cada163e368cc3362763f206b3deac4d320
Certificate serial: 019A51F5A8684C2E2F73747F293D12B0DD38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
Manifest number: 0C7D
Signing time: Wed 05 Nov 2025 03:00:45 +0000
Manifest this update: Wed 05 Nov 2025 03:00:45 +0000
Manifest next update: Thu 06 Nov 2025 03:00:45 +0000
Files and hashes: 1: KgGcraFj42jMM2J2PyBrPerE0yA.crl (hash: iXfP0tnO2bt57FczCCsaV+zqZaqmaaRMJ1AvbgRzICQ=)
2: aZtA3Tb82BUczOl9SsTYverE7lI.roa (hash: LK8Z2BqrNCcDSNuABGRySwkLhGqKgLJf/sHl1VyEOIw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:f5:a8:68:4c:2e:2f:73:74:7f:29:3d:12:b0:dd:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a019cada163e368cc3362763f206b3deac4d320
Validity
Not Before: Nov 5 03:00:45 2025 GMT
Not After : Nov 6 03:00:45 2025 GMT
Subject: CN=f01c17d9df8f9e4a8f1250101a78d7dc14d2d29f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0f:51:94:f5:03:4f:c2:f3:f9:3d:71:5d:75:
90:73:6b:f4:7c:5a:44:44:e6:ca:e9:47:1a:4f:6f:
36:7b:3c:69:2b:b0:9d:7a:81:c6:6e:e3:3a:06:d9:
3d:ac:8c:d3:c2:b2:0a:4c:d0:e2:c4:68:dc:bc:5e:
0a:e5:42:b0:04:1e:8b:a3:1d:1d:be:1a:ac:91:13:
68:a8:ea:5c:49:43:fd:ef:5e:4b:4a:8b:64:46:79:
47:93:83:fc:2a:cd:be:79:19:0d:80:d8:59:e3:43:
61:15:81:aa:8a:d9:e6:89:5d:d7:cd:55:15:ec:01:
c0:7b:c1:25:e5:5a:73:91:5a:ef:71:1a:70:49:67:
df:e3:97:3b:03:1c:f2:74:8b:bf:ee:29:da:fa:38:
71:b4:60:1e:06:64:c1:99:5f:ea:97:1d:eb:2b:98:
98:48:0c:c3:8d:6a:6d:b8:3d:85:d7:7f:d2:01:e9:
f9:8e:e7:2e:a7:e4:7a:e7:4f:22:dd:2f:4a:f6:01:
d7:1d:28:98:25:c1:20:ad:83:33:76:4c:b8:b2:cb:
b7:04:b7:4e:6b:12:0d:d0:2e:21:5b:3d:53:96:09:
c1:a2:96:c4:c3:c8:09:6b:eb:83:05:a5:20:00:65:
6a:7a:99:31:72:84:0b:ce:4e:19:ae:c8:22:f9:f4:
43:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1C:17:D9:DF:8F:9E:4A:8F:12:50:10:1A:78:D7:DC:14:D2:D2:9F
X509v3 Authority Key Identifier:
keyid:2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:f5:1d:62:52:ad:a6:96:87:db:84:22:3e:8d:c2:cd:5e:a0:
9b:91:7a:93:f5:ca:03:20:c6:c0:0d:0a:28:b9:9d:02:7f:a7:
9a:97:13:47:19:fd:35:5c:8d:18:b3:52:ff:c6:39:10:bf:74:
a5:44:0a:e6:bb:b4:3c:8c:ed:b0:ba:6d:0d:d2:11:3a:6a:6c:
56:22:b9:05:59:c0:89:90:27:d7:94:37:4a:02:63:4e:48:32:
d4:37:1b:0b:8a:55:56:03:7d:17:40:c5:c7:9e:f7:e4:a9:09:
7a:b6:1b:34:f5:d7:91:0f:8b:b4:44:c2:f9:28:72:f2:fb:c7:
ae:3a:82:22:71:88:f4:52:ad:8a:53:74:82:56:5f:1b:0c:f5:
a0:fd:66:b7:3f:9d:85:54:a2:78:a1:ac:fa:0f:4a:f4:78:1e:
af:d0:9b:b4:03:15:ba:9c:f0:72:28:37:c9:dd:b3:5d:2e:93:
8a:ac:10:d4:c0:84:18:9b:fe:d4:06:ac:e8:7f:c9:87:93:17:
49:99:77:a6:ec:be:45:5d:c1:70:3f:e8:f2:9e:0c:f8:80:2c:
bf:ec:f4:26:ca:ad:73:7c:ef:6c:0b:d0:ab:17:10:84:9e:3e:
41:0d:0a:91:eb:2c:57:63:cb:58:9d:71:a8:be:5e:7c:e6:54:
3c:41:ed:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:02:36 2025 by rpki-client