Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: IzUp3P5ZAOHZV/zhe0hOD1n1zd8zmrEfldXfOjCWvCA=
Subject key identifier: 00:2D:58:D4:7F:B8:B0:E2:3D:7F:F8:AD:E5:29:F6:63:B7:3D:20:11
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 019A1DD1430792BA1A6F54E78279D3BBF5B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 088D
Signing time: Sun 26 Oct 2025 00:00:44 +0000
Manifest this update: Sun 26 Oct 2025 00:00:44 +0000
Manifest next update: Mon 27 Oct 2025 00:00:44 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: bT31igcheVJTtigMg3Tyr8l3vbmOl5G5JxEsWVh678w=)
2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 26 Oct 2025 19:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1d:d1:43:07:92:ba:1a:6f:54:e7:82:79:d3:bb:f5:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: Oct 26 00:00:44 2025 GMT
Not After : Oct 27 00:00:44 2025 GMT
Subject: CN=002d58d47fb8b0e23d7ff8ade529f663b73d2011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b3:a9:00:55:fe:39:0a:41:a8:28:cc:a1:07:
a3:90:a9:6a:0a:1d:69:14:d1:c6:b3:d7:33:6c:cc:
70:dc:b8:e2:a1:25:66:09:98:5b:d8:99:6d:44:20:
13:56:ac:38:f9:46:67:db:f7:ea:d1:31:37:dd:95:
13:b3:bc:68:55:6f:7f:1c:10:5f:26:44:30:16:8e:
b8:54:70:01:92:a4:e7:9d:eb:2a:f6:7e:8b:b2:f6:
15:01:81:78:5a:13:5a:b7:94:ec:08:a1:9d:4f:9b:
21:01:ab:f5:76:ba:9a:8f:e4:99:04:8c:c6:17:02:
5c:a7:fe:3b:c2:d1:13:4c:e8:71:72:5b:e5:b5:32:
6e:41:94:07:ac:6b:28:73:05:18:22:8a:7a:47:f1:
34:4a:e0:00:26:e8:5d:36:14:11:9c:8c:02:d8:04:
e9:f3:98:5a:bb:2e:d1:0e:94:20:15:1b:81:b6:04:
ba:95:16:d9:31:ec:10:20:00:bc:1e:4d:ec:0f:0c:
c8:e5:d3:75:cd:ce:f2:31:6b:1f:3a:e7:7b:b6:0b:
1f:71:6b:4a:11:89:59:8a:57:58:03:dd:f3:fb:64:
4b:5b:df:c1:e4:fc:b5:2d:d2:dc:d5:4a:31:11:ce:
6d:dc:cf:ba:99:02:66:07:5d:98:12:41:b8:47:20:
f6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:2D:58:D4:7F:B8:B0:E2:3D:7F:F8:AD:E5:29:F6:63:B7:3D:20:11
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:28:13:01:e9:23:44:bf:89:78:c1:dd:97:ae:5e:24:f4:27:
2e:41:cf:df:f7:d1:d7:d0:9c:a4:0f:46:1c:dd:a8:c2:5a:32:
1c:5c:3a:2b:c1:5f:ea:c6:f4:5f:99:95:d1:15:8f:72:b2:e8:
77:d1:32:03:22:ae:0a:b7:86:b0:5a:b6:21:94:15:1c:7d:0e:
3b:47:4a:6b:d0:bf:38:38:37:d9:f9:4f:d0:2a:9f:5f:8a:d2:
5b:48:56:7c:ba:46:b2:f6:c1:e9:c7:5f:b0:e3:a8:75:be:5c:
29:2c:9f:1a:39:80:7b:01:8e:29:a1:ef:aa:df:47:c9:1b:81:
f9:59:f9:c3:9e:d6:ff:ac:9d:2a:a3:4d:c3:e1:c6:fe:89:2e:
01:4e:5f:e0:a9:58:0d:2a:be:86:c3:65:f3:f7:11:fc:20:57:
f0:6b:1d:e1:51:48:1b:28:b4:b3:2d:85:89:c0:60:30:47:14:
a2:62:39:05:7d:79:be:15:c0:6c:e9:8e:a6:cb:c9:9f:a0:3b:
1f:0c:87:e4:50:72:48:d4:19:d4:a9:2a:ff:8a:b2:da:6d:48:
6b:8c:52:08:0b:d0:e9:93:54:c2:9d:b3:ea:0b:4d:0b:c0:d6:
a9:99:e3:ff:a8:18:52:56:b7:dc:cb:24:10:5c:78:86:c1:e7:
47:4e:a2:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 02:54:07 2025 by rpki-client