Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
File: kLCsKbEI83Ixb79OqT4UhzGkxOk.mft (raw, json)
Hash identifier: XkjLwXaibMaTxvy9OoOXproDdDzCb/Plt9mQRwBlfso=
Subject key identifier: 33:7C:9B:AF:E0:73:73:28:1E:45:39:DF:0E:DC:74:6C:01:9B:5F:02
Authority key identifier: 90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
Certificate issuer: /CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Certificate serial: 019A4EF4BF436F24D63C4DBB8A71E06F9E04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
Manifest number: 1710
Signing time: Tue 04 Nov 2025 13:00:53 +0000
Manifest this update: Tue 04 Nov 2025 13:00:53 +0000
Manifest next update: Wed 05 Nov 2025 13:00:53 +0000
Files and hashes: 1: E7tuzODCvj1Y4rQf0ix9lEI7vNs.roa (hash: 7tjdPPhW07eifJoW12vu1rvxuuaPJc8oBZTFD5/C/EY=)
2: kLCsKbEI83Ixb79OqT4UhzGkxOk.crl (hash: PxThma+F/zOe6V4f7mwrIF4SIl9vL4ilzRKDKrxs0H8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:bf:43:6f:24:d6:3c:4d:bb:8a:71:e0:6f:9e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Validity
Not Before: Nov 4 13:00:53 2025 GMT
Not After : Nov 5 13:00:53 2025 GMT
Subject: CN=337c9bafe07373281e4539df0edc746c019b5f02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:47:b7:1b:bb:ce:b6:c1:51:f8:27:52:75:1b:
d5:37:f0:00:e7:ed:1c:d3:94:2a:93:11:64:ae:19:
9c:9f:ec:30:fa:a9:31:d5:73:ee:d8:f5:c4:db:dc:
43:08:1d:dd:56:d4:2c:39:12:00:02:51:5e:16:d2:
82:dc:55:c4:c3:36:82:28:5b:e6:c2:64:4b:8e:93:
ba:45:11:1c:a2:b6:9b:3a:9e:51:51:96:b0:57:63:
3d:97:4e:88:9a:49:82:28:28:3e:72:87:37:8a:6a:
47:f6:f7:38:63:cb:86:29:2e:b6:bc:33:d8:0d:fd:
3f:83:b5:3d:2d:3a:e1:8b:3f:3f:15:33:f2:2d:e4:
03:59:9c:a8:6c:91:95:f9:0c:b1:73:76:e4:59:f8:
46:90:11:ea:f3:ec:19:6e:c4:7b:b6:35:2d:b9:57:
30:10:e5:ff:82:55:60:2f:8f:af:b5:8a:38:3e:6f:
c4:3b:5c:e0:9c:e1:bb:e2:aa:b2:16:e5:97:87:01:
9d:bb:63:b2:c1:c2:38:a8:17:7a:9f:4e:3c:52:1b:
a3:08:8d:4d:7c:4d:e1:bf:84:d8:27:cb:26:7c:55:
aa:ba:89:c6:4a:f7:8e:ae:4b:93:dc:12:bf:c6:c1:
76:7d:d5:c4:0a:3f:b5:b5:ba:df:9b:54:21:88:bd:
53:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:7C:9B:AF:E0:73:73:28:1E:45:39:DF:0E:DC:74:6C:01:9B:5F:02
X509v3 Authority Key Identifier:
keyid:90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:ee:74:50:d4:92:20:37:0c:67:a9:6c:eb:11:dd:38:d9:67:
7b:65:4b:51:eb:6e:2b:ec:33:07:92:5c:6a:1c:7c:e9:8e:ed:
93:97:f2:26:38:d1:ab:6b:23:74:af:21:aa:c4:85:01:8f:dc:
c0:9a:95:7c:bb:e0:ff:41:64:13:27:40:81:de:52:97:fe:da:
b3:17:4f:90:02:96:0e:3a:7f:0a:62:a2:c1:e0:7e:f9:f1:58:
e3:c4:ae:78:cd:7e:5f:21:82:d3:2b:8c:aa:65:7d:c3:10:b0:
cd:a9:93:fd:4c:bd:b8:b7:34:89:bf:03:ae:21:06:b6:43:05:
b3:72:9c:b7:18:ca:85:91:3c:e6:25:b2:2e:56:33:6c:58:81:
0b:aa:0e:44:05:45:b7:94:df:8d:d7:76:fc:d6:0e:74:2a:df:
cf:32:26:23:1f:bd:fd:d6:dd:03:f4:c7:56:32:41:b8:88:03:
bd:8a:d7:5d:a3:07:5d:66:b9:7d:1f:37:40:91:35:13:d4:19:
3d:17:97:89:3b:ae:52:13:9a:25:d8:fb:7a:7c:77:8f:b3:e5:
26:48:38:18:f6:a1:99:1f:d6:96:b3:52:ca:0a:e1:e6:36:4e:
8e:07:e3:0c:ee:9e:73:1d:88:9f:bf:54:a4:d0:24:fa:37:22:
20:4a:e7:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:32 2025 by rpki-client