Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
File: KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft (raw, json)
Hash identifier: /EqYIpNnxAeTPFWjYzhPzAwYkUnrInJH/dN7dxv92Po=
Subject key identifier: 93:75:8B:E1:99:92:17:FF:36:54:00:55:CB:60:30:12:84:92:1F:DE
Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
Certificate issuer: /CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Certificate serial: 019A70DC60B9AD587A7B68528210A28A07B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
Manifest number: 171D
Signing time: Tue 11 Nov 2025 03:01:22 +0000
Manifest this update: Tue 11 Nov 2025 03:01:22 +0000
Manifest next update: Wed 12 Nov 2025 03:01:22 +0000
Files and hashes: 1: KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl (hash: K1Ufd2ZvvCeUANENo/dSwD45fZfXhgUdSzyovRMiXxA=)
2: hIS7p8oBVfka5-8RFV0HubayIdE.roa (hash: F5TIegvY+JSm5ZTBtrT5T05mvONHoneGNZ8NfzaAUc8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:dc:60:b9:ad:58:7a:7b:68:52:82:10:a2:8a:07:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Validity
Not Before: Nov 11 03:01:22 2025 GMT
Not After : Nov 12 03:01:22 2025 GMT
Subject: CN=93758be1999217ff36540055cb60301284921fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:c1:f4:4c:ed:06:ec:36:24:2b:95:76:6d:
de:f9:1c:3d:7a:94:97:8f:44:3e:f3:20:3f:bb:65:
9d:2d:de:1b:a3:f4:31:df:75:ee:a1:e4:dd:db:81:
ef:18:16:ef:59:c2:9c:34:33:59:e4:1f:23:c2:09:
7a:ec:fa:a0:c7:02:d7:62:ae:1b:5c:1f:81:d6:20:
97:cc:f7:52:c4:28:48:1d:ff:33:70:e7:65:5d:d6:
e3:5c:3d:b0:b4:52:e1:cb:62:58:5b:ef:fe:99:1f:
c1:b2:40:a0:d5:5e:52:09:ba:28:96:8f:b7:e8:69:
ce:f4:45:e8:66:1b:2a:04:8c:ac:62:24:29:ca:4f:
76:6a:e1:a7:ba:6c:79:3d:5a:b1:94:c4:67:0a:84:
03:3a:2f:10:76:eb:c2:64:14:e3:12:b5:99:e1:38:
fc:d4:ae:c8:d2:85:d3:29:e2:df:42:34:f7:ce:c0:
7c:1d:31:bc:0d:f6:20:24:83:fc:8d:8b:b5:24:0e:
e8:2f:d7:20:ed:ab:61:83:4d:4f:cd:3c:fa:8a:7f:
85:aa:65:41:da:6f:19:a1:cc:15:09:22:4f:1d:5d:
1d:08:5c:a4:a1:eb:8d:ba:ca:c5:c4:01:20:61:a9:
89:cc:14:2b:ee:84:42:c5:33:dd:65:05:18:04:ab:
7e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:75:8B:E1:99:92:17:FF:36:54:00:55:CB:60:30:12:84:92:1F:DE
X509v3 Authority Key Identifier:
keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:fb:f1:d2:3a:7f:c3:d8:2d:65:12:1d:7d:83:91:32:7f:a1:
b0:92:6f:f3:38:b6:ae:75:7f:15:db:c1:63:11:25:ad:ae:49:
96:e4:79:cf:27:b5:db:92:46:3d:0e:86:e7:ca:88:e0:6a:07:
c2:01:8c:78:7b:c7:61:0d:69:c6:ec:f9:ca:9e:92:64:78:c0:
0f:56:fe:9a:85:31:44:e6:61:53:2c:ea:01:03:7b:06:ef:56:
48:a5:de:71:72:73:55:8d:99:54:53:5e:c1:61:ae:c5:5e:5f:
f3:b6:32:5f:85:28:79:9c:05:8b:d1:77:07:8c:91:9a:0f:32:
9e:2f:c6:13:5a:1c:6a:45:9f:c7:35:06:2a:0c:15:eb:a2:63:
cc:20:56:52:53:49:05:ff:f4:cd:9a:ec:26:00:ec:79:1f:43:
08:ec:25:c1:22:dd:d6:52:b3:cb:ce:64:70:43:8a:91:cc:92:
16:cd:25:b2:13:dd:ba:30:98:88:4c:1b:17:01:2a:0a:b2:22:
7c:33:82:3b:c2:c3:34:26:8f:1d:31:ef:d9:ce:5c:ba:0f:8b:
49:b8:32:2e:c4:f9:78:30:19:bf:f2:80:b8:86:32:80:ac:c3:
7d:4d:ca:3c:62:3d:da:5b:38:c3:8b:85:39:ba:e5:bf:e4:5b:
76:6f:a3:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:13:51 2025 by rpki-client