Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.mft
File: kwd6mXyVvQGmTUCK_PVU2ItNteU.mft (raw, json)
Hash identifier: RkfJmxQUnaWNBWT0KPQsRihEQYBuKngpzQ+BGluJbkY=
Subject key identifier: 29:E4:CB:F4:5E:5F:64:EA:15:40:1F:4E:3A:1A:F6:6A:53:48:70:3D
Authority key identifier: 93:07:7A:99:7C:95:BD:01:A6:4D:40:8A:FC:F5:54:D8:8B:4D:B5:E5
Certificate issuer: /CN=93077a997c95bd01a64d408afcf554d88b4db5e5
Certificate serial: 019A7149F9B0B4ECEF6351EF8B49344B5175
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwd6mXyVvQGmTUCK_PVU2ItNteU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.mft
Manifest number: 0609
Signing time: Tue 11 Nov 2025 05:01:04 +0000
Manifest this update: Tue 11 Nov 2025 05:01:04 +0000
Manifest next update: Wed 12 Nov 2025 05:01:04 +0000
Files and hashes: 1: kwd6mXyVvQGmTUCK_PVU2ItNteU.crl (hash: Peb8OfoOuie8/wX12UpNtNYgix//IjmSZyV0fwHNdVk=)
2: uYWwRm4H6YcSfThBlj9ZG4s8g-o.roa (hash: k7HHEyNrsyk4kGL9qKSfgAwu15JappUHRUGh3h3zAJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwd6mXyVvQGmTUCK_PVU2ItNteU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:f9:b0:b4:ec:ef:63:51:ef:8b:49:34:4b:51:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93077a997c95bd01a64d408afcf554d88b4db5e5
Validity
Not Before: Nov 11 05:01:04 2025 GMT
Not After : Nov 12 05:01:04 2025 GMT
Subject: CN=29e4cbf45e5f64ea15401f4e3a1af66a5348703d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:33:26:4e:18:ed:54:ef:f2:23:12:05:17:13:
54:26:d8:e4:e9:f5:1d:2f:0c:28:0d:e2:ec:6e:be:
8b:35:cb:6b:48:1b:f4:f4:51:9d:1b:5c:17:d6:94:
9a:ed:f3:0d:01:97:b4:98:03:e9:54:97:12:68:49:
db:74:d1:f9:e1:c1:98:90:a0:35:12:5e:6e:26:53:
b6:c9:c4:86:cf:88:d5:81:1a:e6:5d:76:66:ef:2f:
d8:66:7c:1e:0f:a6:3b:b5:46:87:99:75:03:80:e5:
70:d5:96:d4:93:5d:be:ea:b0:12:01:91:fb:b7:6e:
5d:f8:3e:92:6b:5e:41:22:e8:27:b3:ad:8d:80:98:
52:81:f9:b3:03:73:46:80:98:02:a8:41:d2:af:ae:
fd:f6:ba:0c:54:0c:40:af:7e:35:0b:23:de:67:71:
e8:c6:db:71:64:07:97:08:cd:7b:8d:a8:c5:a8:28:
7b:91:17:e1:8b:bd:d4:0e:1d:3a:cf:07:cf:f0:c9:
de:35:85:2a:ee:10:99:c6:9c:70:da:70:d5:c8:4b:
48:f3:39:5f:20:87:c2:1d:52:ee:24:5a:0e:33:2b:
f5:66:22:f0:93:b5:f2:82:fb:4f:ad:d2:6b:13:cc:
dc:3c:0d:02:85:98:8b:f8:f2:7b:8a:a9:80:9a:15:
4a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E4:CB:F4:5E:5F:64:EA:15:40:1F:4E:3A:1A:F6:6A:53:48:70:3D
X509v3 Authority Key Identifier:
keyid:93:07:7A:99:7C:95:BD:01:A6:4D:40:8A:FC:F5:54:D8:8B:4D:B5:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwd6mXyVvQGmTUCK_PVU2ItNteU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/1bac01-212c-4f4c-8d3a-65257b1fec6d/1/kwd6mXyVvQGmTUCK_PVU2ItNteU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:ee:1c:db:23:d2:3f:7c:c2:45:2a:6f:58:6e:79:ce:e5:cc:
12:1c:4e:41:1f:72:4a:4b:0b:b2:60:1e:e7:88:e5:15:8f:63:
25:b7:e5:4c:1b:ec:40:89:9e:8b:e1:2a:ad:6f:0c:c1:4a:0e:
b4:d1:1a:68:b3:84:f4:68:39:59:d7:71:d9:53:01:4f:dc:bd:
06:32:ed:41:8f:d9:06:02:8d:d0:a8:c9:70:24:49:9b:56:90:
c3:17:47:92:19:ca:4e:f0:ab:ce:d8:c8:05:6e:94:1c:2b:9f:
19:45:22:7c:b4:da:b4:31:37:78:96:ff:04:4e:e7:45:43:b2:
d9:42:5a:15:23:26:b3:02:c0:90:6d:24:b2:b0:be:28:66:ee:
d8:4d:be:e6:7c:65:2b:93:a3:38:c2:2b:66:64:c8:72:65:9d:
30:c2:54:46:b8:e8:d2:9d:6a:38:25:7e:9b:45:d1:38:da:22:
3b:e9:2c:7c:49:41:9b:74:b2:e3:ce:8c:16:ea:2e:db:e1:04:
e6:83:80:35:41:0e:b9:c0:57:75:03:89:6a:d5:7b:a2:14:e7:
ba:af:58:dd:f0:bc:c9:ff:da:b3:32:69:3a:bb:5d:86:e0:bf:
b6:89:cb:11:86:fa:e5:41:f7:10:6d:63:38:98:3b:96:ba:48:
53:df:58:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:18:16 2025 by rpki-client