Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: R7lT1k8spoqDJQHc9uMTnglk/8XM+ntey1lCXr10UWY=
Subject key identifier: 8F:A2:84:A3:83:4E:34:1A:E9:74:9B:EC:CD:31:21:E6:5F:DC:A2:C2
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 019A293040FCE6F3E602BB5D1FB6FF19330D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0D8E
Signing time: Tue 28 Oct 2025 05:00:19 +0000
Manifest this update: Tue 28 Oct 2025 05:00:19 +0000
Manifest next update: Wed 29 Oct 2025 05:00:19 +0000
Files and hashes: 1: GDngKunQly0rXAZJTM9K6ouZldE.roa (hash: srWtclzCrCIl56nGBNOU8VqqYjtRTWRgnKIo2g1oYz4=)
2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: aNl7ldZzmtWDBLAkRRnmgSVG9Cjmf4LpJisuMs0b8RM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 05:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:29:30:40:fc:e6:f3:e6:02:bb:5d:1f:b6:ff:19:33:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: Oct 28 05:00:19 2025 GMT
Not After : Oct 29 05:00:19 2025 GMT
Subject: CN=8fa284a3834e341ae9749beccd3121e65fdca2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:22:04:e3:77:24:68:44:8d:a9:84:3f:f2:66:
cf:08:52:59:49:6f:63:e5:16:66:8a:1f:7f:77:59:
45:03:3e:59:fc:86:17:3a:00:38:88:cf:10:f3:04:
38:05:2e:8a:c1:96:2d:e7:26:0e:3b:93:a2:a3:77:
df:b2:5c:a4:63:dd:81:09:0e:ac:5f:11:35:f1:2e:
cc:3a:19:da:9e:db:e4:14:b3:97:6b:d9:c6:f6:62:
76:5d:22:20:29:69:b5:b7:19:75:37:0a:d4:02:49:
7b:25:9e:6c:e2:8d:a7:72:be:b7:95:23:2e:c9:81:
c8:50:2b:f0:2a:4d:16:79:ed:f1:b5:8b:13:fc:2b:
8d:10:56:e6:9b:93:97:43:41:be:2d:f5:f3:05:5b:
e0:52:8b:5e:35:22:5c:6d:4c:ba:ef:8b:6c:17:e3:
44:87:61:c2:25:40:0b:dd:0c:e4:64:29:d4:f4:07:
4d:05:0d:fb:54:45:64:45:ed:90:0c:10:7c:79:f5:
f6:f4:b1:e8:c1:8e:a3:2e:36:40:53:d2:55:9d:9f:
25:05:03:af:e0:7d:29:07:4c:af:96:d8:13:58:7e:
47:ad:ca:8e:55:98:46:d0:1d:f9:29:8b:43:67:00:
b5:59:b5:42:18:ea:87:f8:10:c4:26:02:dc:37:01:
31:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A2:84:A3:83:4E:34:1A:E9:74:9B:EC:CD:31:21:E6:5F:DC:A2:C2
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:03:d5:93:80:7a:68:54:09:40:77:ce:96:24:04:0f:2b:97:
ea:8e:72:81:3c:4d:c6:53:2d:c4:87:34:d3:fb:9d:72:c4:83:
4d:82:78:10:d2:aa:b5:ec:91:f3:c3:51:66:88:e3:c0:7b:d9:
a2:2f:b0:93:94:82:87:86:e5:43:de:bf:62:10:0d:ee:c4:0f:
1b:f9:04:64:3d:73:27:c1:82:2b:0a:ff:e3:f8:34:0c:3c:f5:
49:cc:da:ec:6e:a6:94:e2:6a:cf:3a:c3:1e:0b:98:77:77:97:
63:2f:50:ef:b2:8e:4a:87:b1:a8:e9:80:ff:2a:63:bd:87:07:
82:41:6f:bc:eb:61:e0:19:26:d1:10:53:ad:97:e5:60:50:14:
15:a6:e8:60:52:a5:bb:3c:21:8b:1c:e6:6b:bb:aa:ea:04:83:
f9:27:49:72:19:3c:b6:e6:85:e2:e3:fc:4c:df:43:e5:7d:50:
d2:13:e9:2f:c8:2a:54:87:ea:9c:6c:6d:9d:f0:9e:12:26:eb:
9c:00:65:f0:35:1a:37:c0:43:ee:e8:c4:d8:31:95:cd:3b:17:
af:d3:0e:f0:31:8e:d7:e6:6b:f5:a5:80:90:7f:d0:38:02:34:
3f:dd:21:9a:d1:79:43:09:87:86:65:6a:15:3f:d6:6e:67:ea:
6c:69:71:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 14:18:35 2025 by rpki-client