Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: tgtU+e9Ed7W0d3uOSXvGw2nMf7MVHzfsqQI3wKMMxb4=
Subject key identifier: F6:35:9E:DC:A1:E7:15:B8:36:BA:69:91:C6:72:D2:EC:DB:30:86:43
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 019A7149B2D8213D5B6302F4164AC92A91C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 0B6A
Signing time: Tue 11 Nov 2025 05:00:46 +0000
Manifest this update: Tue 11 Nov 2025 05:00:46 +0000
Manifest next update: Wed 12 Nov 2025 05:00:46 +0000
Files and hashes: 1: 1gJl5QGcLnfhKR4ZX5vkhukZyTU.roa (hash: NMFFqW5s2zQQWT6VrzvJinnOwTRcu4h6yTFNCCxpjXA=)
2: HlpYPKfUTSJ7pDq2oQziu1OJN70.roa (hash: 2/lnsP1apTOPlsNH0YhFprUwFbQM2G9j3yZLF5vZFt4=)
3: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: n7ItGw1Y3e3wRzcBIsgDdKiPXsoI6v6rOFWD+BF2CfA=)
4: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (hash: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:b2:d8:21:3d:5b:63:02:f4:16:4a:c9:2a:91:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Nov 11 05:00:46 2025 GMT
Not After : Nov 12 05:00:46 2025 GMT
Subject: CN=f6359edca1e715b836ba6991c672d2ecdb308643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ec:55:38:8a:2a:d2:d4:3e:ae:fa:f2:5f:d0:
40:6e:15:7e:ba:40:ac:7a:01:6b:95:85:3e:03:3b:
85:26:88:df:60:91:c4:e3:65:83:0a:62:c2:17:aa:
dc:c9:22:51:ed:99:d9:f8:44:1b:17:9e:15:75:46:
9d:c9:44:27:08:d7:38:7d:15:0a:52:c7:39:ed:f5:
7b:49:d2:68:02:30:e9:86:16:8b:51:0d:5e:9a:7a:
6d:5e:09:3d:10:91:57:32:56:c8:2c:84:d3:8c:15:
0d:98:36:ad:e4:64:b9:08:66:33:86:46:4a:66:71:
af:f4:ae:19:53:a0:e7:ea:aa:37:81:d2:58:74:ef:
2c:e0:c2:c3:77:bd:db:8e:05:1a:b2:e4:ec:22:a7:
5a:01:e0:46:38:e2:09:c1:30:13:ad:0d:1e:b6:03:
d6:ef:44:65:29:60:8a:ea:20:33:00:40:7e:e6:34:
f4:82:e0:17:75:d2:ab:20:7a:59:38:00:30:65:27:
97:5e:47:ce:dd:68:db:77:27:e9:da:b1:bb:1c:72:
2b:47:ab:43:09:75:b7:51:b4:02:a8:7b:5a:32:c2:
3f:15:db:32:fe:4d:cf:5b:4d:53:88:33:8e:6a:fb:
79:7d:ba:2a:38:32:3d:dd:39:e6:6f:01:d3:7e:c2:
0e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:35:9E:DC:A1:E7:15:B8:36:BA:69:91:C6:72:D2:EC:DB:30:86:43
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:44:52:35:a2:44:f0:1d:30:47:fb:61:f5:57:01:df:18:55:
88:be:59:3b:75:a4:01:bb:fa:7a:d7:93:f7:ad:f0:bb:00:b1:
77:bf:03:b9:06:1e:73:0a:2f:a0:d1:31:09:5f:0f:5c:12:6c:
38:93:b2:2c:92:ee:4a:a0:5c:ea:58:0c:52:59:14:cc:13:60:
c0:72:7f:c4:a9:2f:b2:fe:49:1d:13:31:e1:f2:05:4e:2c:56:
a5:39:e6:ed:66:6e:92:ba:53:2b:e7:88:d4:68:f0:4b:83:d4:
3f:38:41:b6:b4:36:ee:9c:d3:57:9b:f6:f1:50:e4:6e:91:26:
d2:29:7e:17:28:b5:18:c8:84:5b:93:a8:dc:f2:ba:19:61:3e:
70:a8:1d:fc:8d:a4:aa:2d:29:0c:cb:f0:54:12:0a:77:85:41:
69:cf:05:34:e5:be:c2:3c:c4:bd:fb:8f:c0:ac:c8:69:f7:5c:
a6:5a:bf:86:b1:01:b1:b0:5c:67:4d:d9:29:44:68:0b:62:39:
31:55:08:63:7f:7d:01:42:59:eb:02:8a:f2:1d:da:b2:0b:9f:
22:16:3a:be:dd:6c:05:01:e3:e5:a5:35:3d:d1:bc:8f:0f:1f:
fb:0c:1a:42:9b:e7:96:62:57:76:87:4c:54:2b:e5:34:ab:b4:
ce:5e:20:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:55 2025 by rpki-client