Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
File: KD3ro7EwXJpI03S6Rzab8fgn7gg.mft (raw, json)
Hash identifier: it0JZTil92oiq28O8adzmPHaHZyTyO8CIakQUHyYL3A=
Subject key identifier: E2:A7:91:81:E9:95:AF:8A:E0:06:0A:1E:90:B8:52:B1:31:0E:8C:DA
Authority key identifier: 28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
Certificate issuer: /CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Certificate serial: 019A70A5769919961765CCD5E1B16B4D6AD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
Manifest number: 0A6C
Signing time: Tue 11 Nov 2025 02:01:23 +0000
Manifest this update: Tue 11 Nov 2025 02:01:23 +0000
Manifest next update: Wed 12 Nov 2025 02:01:23 +0000
Files and hashes: 1: KD3ro7EwXJpI03S6Rzab8fgn7gg.crl (hash: gVPcRWBswrTgasl1G7KtCXerr2bxidBfxNwJPQeptUg=)
2: hy1vd6FMybZThTm3SvjJ_hE7qn4.roa (hash: vLPWUWT2tszs2HUF2XNEiqkWjYMRC5uDHz+kbz1YJLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:76:99:19:96:17:65:cc:d5:e1:b1:6b:4d:6a:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Validity
Not Before: Nov 11 02:01:23 2025 GMT
Not After : Nov 12 02:01:23 2025 GMT
Subject: CN=e2a79181e995af8ae0060a1e90b852b1310e8cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d1:4a:5e:c1:ed:fd:b0:22:bf:4e:1d:02:cd:
21:9f:bc:de:05:15:fa:1b:01:61:5f:a2:ea:d1:56:
93:d3:96:8e:ef:49:20:b1:2b:10:ef:a0:29:00:6b:
54:74:9a:36:f8:15:0b:ab:29:cc:39:16:6f:ca:23:
a6:28:4d:fb:8c:b4:46:b5:5d:ff:8b:b3:fa:83:82:
02:38:3d:2d:23:c7:b6:43:36:1f:79:36:8c:ce:ac:
19:2b:38:9e:79:94:c4:fc:ab:5b:2f:f7:34:b8:32:
46:f4:be:6d:87:54:36:f4:9a:65:61:0f:bd:f6:56:
ec:f9:92:79:37:fb:42:e3:3d:16:cf:31:9c:d1:98:
d5:26:9b:0d:5f:f3:9b:d8:bd:b4:14:64:ab:e0:ca:
73:6b:f3:d2:b9:6d:ae:4d:63:71:32:6f:ce:3a:ab:
4d:08:14:67:f1:7a:11:c2:7c:1c:f8:08:1e:3d:3d:
da:c8:0f:ed:42:c7:05:55:93:dc:bf:90:a1:6f:7d:
5c:e7:d6:f7:3d:49:23:a3:d2:40:36:8f:90:98:39:
83:d8:a4:15:1f:87:d0:56:70:39:f2:03:f0:b2:08:
27:f4:c7:a8:6d:11:47:4f:7a:c6:ed:a1:16:46:7e:
d0:0e:28:26:40:a0:b0:72:5c:7c:c8:d2:b0:22:a8:
06:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A7:91:81:E9:95:AF:8A:E0:06:0A:1E:90:B8:52:B1:31:0E:8C:DA
X509v3 Authority Key Identifier:
keyid:28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:00:2f:fa:43:95:b5:9f:35:b4:bf:13:db:64:9f:af:4b:98:
6c:d6:d4:18:de:16:f9:c0:0b:95:48:5c:d4:3f:9b:1e:a3:61:
74:1c:08:51:71:65:21:ce:97:83:f1:cd:5b:f0:99:43:6a:f6:
ff:a7:d7:b4:05:71:ca:54:9e:44:a6:6e:47:d6:75:ef:03:e7:
74:3b:2b:55:4f:85:c6:76:0c:fb:8f:b1:fa:e2:f4:ef:54:37:
9f:bb:15:38:75:5f:0f:f6:25:98:0e:70:d0:e5:0b:ca:94:5a:
cf:aa:dc:e4:86:5a:99:9c:98:1e:84:08:99:f0:6b:7c:9e:a2:
95:c9:bc:0b:91:ce:08:38:a4:92:30:3a:37:fa:62:09:fb:a3:
58:9e:40:da:b0:da:80:ec:e9:73:c6:20:fd:50:40:cf:2f:a9:
d6:8f:05:be:1b:52:e3:01:78:a9:dd:1d:ae:6a:8b:6c:a9:af:
8a:bf:f6:c1:37:6f:d5:99:58:a3:7a:33:6a:b2:b3:c4:2c:4a:
fb:cb:ee:f7:45:3d:1a:8b:64:8f:12:c1:5c:80:88:41:0e:6d:
da:97:2c:17:bb:e7:0e:06:33:24:5f:30:fe:94:17:7e:fd:89:
25:cb:9a:d8:9a:83:a3:99:6b:32:75:be:f7:01:a6:f0:6b:0e:
01:02:17:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:41 2025 by rpki-client