Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
File: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft (raw, json)
Hash identifier: 6HVNvIULL6pZ0kV9KJax0Y2tH0dVGNjNiygA9/DrGyU=
Subject key identifier: 8F:5B:30:11:3F:29:9C:4E:C1:99:F0:2F:72:48:F1:BC:F7:4D:A8:52
Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Certificate serial: 019A2B1F355D1532A2AE1B0DE91E9D7BEF24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
Manifest number: 1144
Signing time: Tue 28 Oct 2025 14:00:56 +0000
Manifest this update: Tue 28 Oct 2025 14:00:56 +0000
Manifest next update: Wed 29 Oct 2025 14:00:56 +0000
Files and hashes: 1: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl (hash: Nn6msHxetrHxOMcoyOJswAMsutJHWMbf8zYzFAjmiaM=)
2: rYNJq30hG9TfQKEAUAnbb-JlarU.roa (hash: bobhiWtsSX2sPVTtreNAJF6ae9i50YxHtcGAHPsK84U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2b:1f:35:5d:15:32:a2:ae:1b:0d:e9:1e:9d:7b:ef:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Validity
Not Before: Oct 28 14:00:56 2025 GMT
Not After : Oct 29 14:00:56 2025 GMT
Subject: CN=8f5b30113f299c4ec199f02f7248f1bcf74da852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:36:27:69:65:b2:18:dd:d4:2e:50:1d:54:b6:
f6:2b:44:b8:5a:1f:aa:2d:e4:0a:d2:09:2a:c0:7c:
f8:e0:52:35:b3:da:97:38:58:ff:0c:ed:67:ed:10:
34:b5:1a:8b:15:b2:28:50:29:99:de:e8:0f:4d:13:
5d:17:00:2e:12:4c:be:b1:b7:2b:b6:fb:a5:3c:46:
62:3a:81:89:1a:33:de:83:4f:e6:71:c1:0d:fc:fc:
19:46:19:72:e8:e8:24:98:63:1f:d8:da:e2:42:8c:
84:5a:4c:65:46:87:86:cb:33:a7:37:48:7c:1c:b3:
9d:60:b5:82:5e:3c:aa:94:6b:84:5b:2a:50:78:2c:
c4:29:4e:64:36:d8:46:ab:8d:f3:f2:ea:2b:f2:76:
1a:aa:05:98:a0:f9:f0:a9:ec:7f:0f:1a:40:82:4d:
19:25:ed:d6:c3:b6:b8:fc:35:90:4e:24:a5:38:6d:
9a:92:9d:4f:cd:86:ee:e6:6d:a4:58:aa:89:c4:22:
ad:6f:66:7e:bd:20:73:2f:f8:6b:0f:0f:d7:bf:d2:
e7:b4:ab:05:bc:06:24:a5:ff:0a:27:28:77:3e:1d:
7c:c2:57:07:a6:3a:a1:63:25:76:21:60:d2:e0:58:
06:b0:c7:8a:74:f3:11:d4:2f:da:cb:e6:2b:0c:87:
c0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5B:30:11:3F:29:9C:4E:C1:99:F0:2F:72:48:F1:BC:F7:4D:A8:52
X509v3 Authority Key Identifier:
keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:cd:b4:82:3d:53:93:e8:0e:48:df:df:f6:30:54:09:be:58:
0f:69:b5:07:70:5a:18:fb:51:bf:6e:9c:ab:91:8f:0c:f2:b7:
87:fe:08:f6:0c:e5:c1:0e:f1:0d:8e:cc:4f:d7:11:08:c3:2b:
32:e8:23:5d:5e:c4:e7:d2:19:28:cb:f4:7f:55:46:ff:f3:a2:
97:70:70:f5:e5:f7:82:b9:c8:9f:17:3c:45:60:1c:e3:5c:f1:
8d:9c:c5:42:b5:b9:ff:7a:6c:bd:7e:af:a4:b8:84:67:48:de:
55:b5:e1:8e:a8:fc:2c:82:1d:db:ca:f1:71:00:75:70:fa:bd:
d8:a5:83:71:2d:03:44:30:10:ec:0e:21:5c:af:7c:8f:b6:3c:
be:3b:22:3c:e9:77:0d:40:d3:dd:40:09:a2:d5:8d:9c:ce:6c:
fa:29:5b:24:cb:48:28:d3:f3:12:4d:63:3e:d4:85:58:be:c0:
8f:85:30:28:77:21:c4:7b:40:bc:22:3c:1b:63:42:52:f2:9a:
24:25:db:7e:0c:5b:fc:d7:d3:e9:e2:29:77:a9:a5:a8:9e:cd:
87:17:70:6e:e3:0b:be:c5:dc:f8:19:5b:10:2b:c3:fd:bd:b9:
b1:02:4e:77:a3:f9:c2:8f:25:ad:99:b5:61:9b:86:2d:d7:86:
07:f3:ce:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 19:47:22 2025 by rpki-client