Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: 5Rqa+iMilURJhRH7cwQc1o3+PPT8BPT261R/Lf1tQxA=
Subject key identifier: E8:45:34:EE:37:1C:7D:98:0A:FA:E2:71:F8:18:45:8E:7D:98:A6:5A
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 019A2478162D5192031BF629B7EF825F0992
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 16F7
Signing time: Mon 27 Oct 2025 07:00:41 +0000
Manifest this update: Mon 27 Oct 2025 07:00:41 +0000
Manifest next update: Tue 28 Oct 2025 07:00:41 +0000
Files and hashes: 1: K-YJm4wOeLJG8aJ7KI41BLWAM-4.roa (hash: +ltmXAJQfzovJoKfgWj4x9gqmeiriedONmDgSBwWFc4=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: 2fOfYFZ9tLwPyDojh3oCEyABkHGe0ZwF2Qa4enwmuT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:78:16:2d:51:92:03:1b:f6:29:b7:ef:82:5f:09:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Oct 27 07:00:41 2025 GMT
Not After : Oct 28 07:00:41 2025 GMT
Subject: CN=e84534ee371c7d980afae271f818458e7d98a65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:cf:c1:3e:46:53:bd:81:80:fc:62:07:a9:
bc:24:8d:48:29:73:39:6c:93:60:c4:6a:97:e1:78:
28:81:66:5b:42:eb:d7:a4:7f:4a:38:8e:d0:56:e0:
01:65:7c:71:77:77:f8:bd:99:28:fa:00:1e:d8:ae:
de:7a:5f:23:59:1e:e1:55:28:ce:26:4b:e8:28:ea:
10:c4:23:b0:65:fc:3d:8a:07:6c:f1:fd:b7:2c:6e:
d6:3b:ef:a1:94:9a:57:db:3a:76:72:2f:de:75:c0:
02:2a:e1:a9:68:4e:df:3c:9b:c4:6d:24:31:cd:92:
7a:36:31:8a:3b:d0:db:ff:f3:1b:71:7d:31:03:3f:
bb:db:df:b8:40:23:a0:fc:5f:e9:47:d9:4f:b1:23:
72:82:d7:46:7e:ef:78:31:cc:ca:c4:c8:cc:5e:b4:
81:4c:93:c0:cf:7b:97:55:d9:74:90:09:a7:15:01:
9f:65:d6:e3:61:e7:ba:35:cf:ca:21:0c:b2:c5:f7:
01:f2:1b:3c:59:c8:ac:8f:77:40:56:c8:5d:c4:95:
a1:e5:06:38:77:0b:80:62:91:2f:f2:95:83:d8:2f:
9e:8b:a1:6f:f9:74:9d:96:a2:ac:6e:16:7c:0f:37:
ff:46:b7:9d:cb:e3:bc:bd:f8:4f:13:5b:30:5a:21:
55:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:45:34:EE:37:1C:7D:98:0A:FA:E2:71:F8:18:45:8E:7D:98:A6:5A
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:40:d2:7a:83:fe:67:fd:69:38:31:e2:a9:19:4a:3a:93:dc:
6b:34:8a:ee:8f:ce:3f:37:fc:3a:2d:4f:bc:29:67:88:91:b6:
a6:ef:87:c3:45:1a:63:ab:50:a6:c6:ae:2e:2d:f0:e4:fb:63:
f0:05:c4:3d:5c:db:97:1c:c7:8e:ea:97:e6:ba:0f:ff:80:4e:
ab:cf:90:d9:6b:fd:ae:fc:32:8c:be:44:da:8f:22:07:c6:21:
b8:0b:26:96:3a:b3:39:b6:b1:4d:d8:68:9f:a6:84:a0:96:41:
91:98:a9:10:d7:2b:be:6f:51:8b:09:39:f2:a9:1e:ed:21:07:
93:c4:83:fb:99:d0:82:ca:c4:a5:37:2f:ad:e7:46:f5:ab:7c:
73:10:7e:5f:a0:ca:ef:69:31:d0:c0:ad:09:86:cd:cc:6e:d6:
a2:50:0a:98:ef:af:3f:56:64:b1:d7:e7:09:b3:c4:e3:c7:d2:
19:88:51:9a:dc:b7:40:92:42:35:c8:0c:09:c3:3c:27:a6:e0:
fb:7c:ab:cf:fc:c7:c5:44:c1:9b:57:b6:fa:5e:2a:d5:cf:8a:
2c:45:5b:44:9a:12:0f:0f:3c:9b:f0:fa:af:4e:6b:b0:93:d3:
82:7b:ec:f8:81:ee:65:16:cf:65:8b:a3:f8:0c:47:d8:4e:a3:
a0:0b:f8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 14:55:16 2025 by rpki-client