Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
File: KdlQvBhFV79QTPK3yUp9zsCHbWY.mft (raw, json)
Hash identifier: sl79WGoUj9jqYbuReVamJ1gRe922Bldagh3HHVCC1xE=
Subject key identifier: BE:C4:40:AB:C8:28:C8:E7:B2:06:6C:9C:3C:E6:3C:E1:B2:DC:DF:A8
Authority key identifier: 29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
Certificate issuer: /CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Certificate serial: 019A71B930482EF0B6C645FC94D5154ED5DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 07:02:33 +0000
Manifest this update: Tue 11 Nov 2025 07:02:33 +0000
Manifest next update: Wed 12 Nov 2025 07:02:33 +0000
Files and hashes: 1: KdlQvBhFV79QTPK3yUp9zsCHbWY.crl (hash: G5raaLccP0v7tcyX8/2Cr8C/OWDpwv0i59H4xfBYqKc=)
2: zbr28h6G65Bn1Q6ZX_BmInmSKTE.roa (hash: ETLOFsK2osYgbAep7Hus0i1EKEQGmJzxLIzfnOkM508=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:30:48:2e:f0:b6:c6:45:fc:94:d5:15:4e:d5:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Validity
Not Before: Nov 11 07:02:33 2025 GMT
Not After : Nov 12 07:02:33 2025 GMT
Subject: CN=bec440abc828c8e7b2066c9c3ce63ce1b2dcdfa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:51:cf:bc:e0:a0:ca:61:1e:ce:bb:87:6f:1d:
45:1e:bd:f8:00:95:59:08:bd:67:1e:ca:1f:39:fc:
3c:b1:52:26:bb:58:7c:fc:0c:2c:85:df:46:74:7f:
73:f9:5a:e4:25:e6:25:21:42:42:b2:e1:a1:64:bc:
cf:58:c5:12:77:8a:83:4a:56:68:bc:50:0f:2d:78:
56:8e:0b:1a:cf:55:fa:6c:68:f6:80:cb:f6:36:77:
dd:84:d2:1b:53:6a:e0:d9:85:ec:99:50:bd:15:b5:
fe:5f:4f:37:02:07:96:d7:43:42:97:65:e9:ed:91:
a9:80:14:59:0d:62:f7:a2:fb:51:4e:78:d5:fb:70:
2f:ef:ce:83:88:07:5f:54:1f:9a:ad:f3:dc:cb:89:
5c:5c:1e:89:24:ca:bc:f2:46:11:0d:f7:f1:07:02:
74:da:68:26:68:64:65:49:85:a6:c5:76:a7:fd:a9:
76:a9:b3:94:10:44:d9:ce:d2:f2:d6:79:30:dd:79:
5c:63:e0:53:25:27:97:5c:f8:72:7d:7e:04:66:7f:
bd:84:97:c5:c5:81:6c:58:a6:fa:d1:42:dd:3c:bb:
ae:d4:81:d0:0e:3f:a1:da:b2:81:f9:bf:5f:b8:56:
4e:0d:b1:e1:12:2b:87:5a:09:c4:ca:05:a9:fa:53:
ab:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C4:40:AB:C8:28:C8:E7:B2:06:6C:9C:3C:E6:3C:E1:B2:DC:DF:A8
X509v3 Authority Key Identifier:
keyid:29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:49:49:c3:9e:b8:9e:db:70:65:db:c7:25:76:b7:6c:60:0f:
70:93:43:87:66:87:c4:12:34:c8:7b:fa:26:8b:ce:c8:7d:be:
bf:ed:22:09:b8:b3:2f:b4:9f:da:d1:8a:6c:b2:b6:6d:42:c0:
5a:51:88:6b:6c:00:56:8a:37:71:ff:25:e4:00:18:55:96:96:
f3:94:f8:12:c4:ed:49:f7:a4:27:49:a6:2d:91:d7:ef:53:d6:
12:58:8a:b3:a4:bf:26:fb:6d:4c:bd:8a:5e:a2:e5:30:68:99:
54:da:84:38:d6:01:12:9c:b2:a3:03:ec:0b:f2:d5:b5:78:2e:
f3:a0:d4:5f:fb:6e:f8:06:f2:d0:81:f4:dc:22:ae:6e:73:c3:
bd:e7:0d:11:dd:99:7d:00:88:dc:f5:2b:58:cd:18:0c:47:80:
a5:d7:65:07:7e:72:d3:47:51:e3:2c:30:f0:7a:f4:6f:49:f0:
29:36:45:6a:c1:2c:02:85:46:6e:7a:61:4c:4c:70:f0:8e:98:
e8:0a:ac:3f:34:bc:a3:a3:d7:34:ff:96:e7:d3:12:d7:0f:82:
88:9b:01:79:ed:2d:32:2c:89:8e:0b:2a:52:27:82:c0:d1:03:
81:5b:3a:8c:5e:ec:fb:f5:dd:a9:86:ca:fe:10:de:04:6d:76:
f9:f7:a4:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:41:02 2025 by rpki-client