Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
File: K5didVR7dd8rBMT5spHAcQxQd0A.mft (raw, json)
Hash identifier: roDtLPzOpT46sNgTS6UMjMalp01j4gxFaub2WfDNWAI=
Subject key identifier: 15:75:BF:CF:D0:9D:30:FE:D6:CD:71:44:87:F4:F1:0F:84:93:7A:EB
Authority key identifier: 2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
Certificate issuer: /CN=2b976275547b75df2b04c4f9b291c0710c507740
Certificate serial: 019A24781428CF3C443856C8D65535CDD128
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
Manifest number: 16F9
Signing time: Mon 27 Oct 2025 07:00:40 +0000
Manifest this update: Mon 27 Oct 2025 07:00:40 +0000
Manifest next update: Tue 28 Oct 2025 07:00:40 +0000
Files and hashes: 1: K5didVR7dd8rBMT5spHAcQxQd0A.crl (hash: nnC4AEzqLe27vnSSVt8cYcYQtso5wlzKBDx8XxbM++Y=)
2: LM4PEm0ffK75EUFTgpXPbuoAKZ8.roa (hash: d7gyd2tIHJ6HJ/7vl5EHNlkX+eVBttxlbWWHGFZ3xxQ=)
3: _w36PBooYvePauBkPOTldD_qNZc.roa (hash: hpJoX8luKbQz9GDhdRpg1rk5Zn+lxQz5UWYQbVjTs1Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:78:14:28:cf:3c:44:38:56:c8:d6:55:35:cd:d1:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b976275547b75df2b04c4f9b291c0710c507740
Validity
Not Before: Oct 27 07:00:40 2025 GMT
Not After : Oct 28 07:00:40 2025 GMT
Subject: CN=1575bfcfd09d30fed6cd714487f4f10f84937aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:aa:77:b9:c9:ac:ba:47:a3:52:a2:be:7b:e9:
2b:8a:2b:b9:25:19:b6:3d:c3:f1:c4:e1:69:28:aa:
0b:c9:7b:a9:fb:bb:21:36:df:bb:dd:dc:20:02:08:
74:d8:24:6c:94:b3:74:bd:ac:99:f7:56:77:a0:17:
eb:96:29:50:10:4d:a1:28:04:f6:84:b8:da:e4:5f:
e1:a5:b2:5b:48:13:54:2b:bd:f9:51:7f:9f:dc:a7:
81:11:92:2e:2a:f1:0c:3d:2a:a4:44:eb:d6:4b:dd:
98:b9:db:8d:13:c7:6b:8d:55:e2:d7:95:19:b4:d9:
35:97:7d:5f:70:e0:a7:d3:80:09:6f:a1:3e:9c:87:
87:9c:a8:e4:5a:f8:9d:01:41:25:d1:41:86:87:53:
88:2b:4c:05:4f:94:df:68:f9:2f:d5:79:77:1b:e8:
af:b3:93:3c:6e:4f:8d:ef:0e:73:27:c6:e9:8a:56:
4f:dd:77:2b:fb:32:3f:27:f9:29:06:63:99:e2:a4:
ec:ac:76:df:47:76:ad:42:2b:b3:93:64:2b:28:d9:
84:eb:d0:51:af:a1:9d:ea:9f:ab:1a:35:20:b2:1b:
56:0f:d2:da:af:d8:fb:96:65:de:c8:b9:0e:e3:64:
82:c0:f4:9f:f5:95:e2:98:ce:3e:11:8c:22:61:a3:
b6:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:75:BF:CF:D0:9D:30:FE:D6:CD:71:44:87:F4:F1:0F:84:93:7A:EB
X509v3 Authority Key Identifier:
keyid:2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:2e:49:83:78:d2:60:f1:b0:54:18:85:88:44:46:1f:d3:a6:
b1:e7:40:ee:fb:b3:69:04:20:b7:d5:68:09:ab:7c:82:fe:44:
9e:27:1c:4e:01:b7:34:cb:89:ac:2c:eb:79:46:0e:bc:3e:db:
c1:af:4e:ed:96:f9:16:b5:e5:89:eb:b7:74:92:b5:09:12:5e:
d3:b4:49:ac:a3:d2:79:50:f1:74:08:8e:0d:16:83:27:44:8a:
2b:5b:0e:a4:24:b7:a5:56:a5:cd:8b:5c:a3:81:b6:7c:e2:05:
8f:e5:a3:1d:71:f9:7e:17:13:ef:61:eb:4f:15:0b:dd:4d:f8:
e7:d7:c9:1c:4d:31:2e:77:49:0e:2a:18:da:b2:af:fd:80:74:
42:e4:0a:fe:d1:ea:12:74:a9:3a:5f:48:2d:4d:44:68:11:e3:
c6:3e:df:67:45:c0:00:4b:d0:6f:0c:ba:af:40:cb:d4:38:90:
6c:72:a9:7e:96:f6:fe:40:5f:38:50:2f:a5:1e:de:10:b4:a5:
34:33:b5:c6:9f:fa:a6:34:3a:d2:4e:6a:d6:7c:31:66:f5:13:
90:18:ba:4b:03:f0:21:f2:8b:28:79:4b:9c:ab:f3:80:3f:e5:
e6:41:36:2a:6b:78:fd:cd:bd:0f:07:98:b8:cb:d1:88:a6:8f:
5a:23:79:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:05:27 2025 by rpki-client