Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
File: klA6rxJq980DHKw84eOYwXS4LgI.mft (raw, json)
Hash identifier: NIyDkORMTpzd17nFr+mNxxHkLr5jzsAd6apg4iR9LD4=
Subject key identifier: 76:E0:B6:BE:81:78:91:1C:17:FA:C8:18:E0:70:18:E0:FC:D4:A6:C2
Authority key identifier: 92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
Certificate issuer: /CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Certificate serial: 019A7149F6880CDDE67F3D2CAA735AFBEC84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
Manifest number: 0E82
Signing time: Tue 11 Nov 2025 05:01:03 +0000
Manifest this update: Tue 11 Nov 2025 05:01:03 +0000
Manifest next update: Wed 12 Nov 2025 05:01:03 +0000
Files and hashes: 1: LyKlqkZe1vL0FqTF3iiSvFK7hTQ.roa (hash: 2Vj99SsHB7IFNM1FIg40rxpKy12rqtdylkU9a0vtpMc=)
2: klA6rxJq980DHKw84eOYwXS4LgI.crl (hash: Gsrb5F8LGZrnc7y9ETnZmCRe7l8rw0zP1OWOtjgtEoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:f6:88:0c:dd:e6:7f:3d:2c:aa:73:5a:fb:ec:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Validity
Not Before: Nov 11 05:01:03 2025 GMT
Not After : Nov 12 05:01:03 2025 GMT
Subject: CN=76e0b6be8178911c17fac818e07018e0fcd4a6c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ee:58:01:0c:3a:33:6c:cb:03:55:80:b6:c1:
e5:8d:f7:e7:07:9c:ab:9a:a7:49:23:14:cd:6b:80:
b8:23:8b:49:d5:c5:54:fe:64:30:32:13:b2:52:9c:
ed:c7:72:be:fb:07:ea:d9:3f:51:61:5b:e5:75:8e:
73:a1:9a:a4:f7:d3:2d:59:e6:f6:2b:32:1d:91:6f:
55:cd:16:10:77:32:88:df:b0:40:25:d1:80:39:56:
48:19:5d:f2:f6:09:7e:16:c9:2f:ae:38:1e:54:b8:
af:55:76:0c:f7:9d:99:e0:94:95:c1:3b:22:f2:57:
10:fb:31:09:07:8c:40:6b:aa:65:ec:35:24:e9:ed:
bb:e7:b6:92:d2:dc:3a:cc:8d:5d:65:a1:e7:1b:50:
ce:00:b0:ed:79:ad:94:0e:67:59:0a:53:2f:bf:7a:
37:8f:2c:c4:45:4c:1f:82:ac:1c:da:bb:f0:c1:d3:
db:d6:44:f3:ce:65:76:5a:58:d5:39:92:58:b5:f1:
be:ec:16:bd:c9:57:9f:8a:f0:97:01:80:35:ed:85:
ca:c6:89:f4:28:d7:71:06:b2:8d:13:61:c3:9a:5b:
2c:f4:01:70:15:31:0a:3a:e4:f9:db:35:b5:df:89:
8c:24:c6:67:c5:00:49:ca:15:e4:79:10:28:bb:a3:
bd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E0:B6:BE:81:78:91:1C:17:FA:C8:18:E0:70:18:E0:FC:D4:A6:C2
X509v3 Authority Key Identifier:
keyid:92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:f9:2d:20:6b:03:ca:77:2c:01:7b:65:ec:60:39:33:0d:e0:
ee:c1:3b:9e:40:d1:c3:57:f1:ea:ce:d0:f0:7f:2c:17:1f:50:
aa:ff:88:f6:2b:b2:bc:4d:11:6e:fc:aa:f8:67:98:94:78:12:
1e:67:cf:39:b7:c2:39:87:b0:4e:38:af:5f:06:9e:6a:c8:4f:
ef:5d:4d:8b:fb:bf:dd:4b:52:f7:82:1b:82:73:b9:c0:31:23:
a3:5a:be:af:2d:8b:fe:c2:e3:fb:c0:95:0a:4b:17:ab:8f:2d:
7d:9e:54:ec:86:f9:fa:ce:91:d6:11:71:57:7e:d1:88:e5:e1:
64:92:b2:43:2e:53:12:f0:07:01:e4:9b:2c:89:83:7b:79:82:
d1:e9:7f:94:a2:8c:0f:27:87:ff:7d:7e:22:2a:9c:df:53:bf:
8e:3f:68:f6:fe:59:0b:e5:76:a5:ef:5a:cd:63:f3:18:4a:6e:
de:d5:b7:ca:bb:45:e8:b3:6f:2a:1d:6f:f8:71:ef:d7:e7:84:
aa:6f:34:4b:52:11:92:25:c9:7f:98:bb:28:7c:1c:d8:d2:3d:
bb:9b:58:1b:5f:16:df:9a:13:53:e4:53:d9:2e:8f:80:69:8c:
3a:cc:90:2a:b3:69:fa:8e:75:0c:34:29:15:23:72:e0:e3:4b:
c4:60:af:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 14:18:29 2025 by rpki-client