Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
File: KT0QRM1I1hcW11ngIN29qoFNXNU.mft (raw, json)
Hash identifier: iEl0/dMtvENh5rMjs1W7+B2bAhAxSf+1iUV9A6gXwwU=
Subject key identifier: 49:3A:2B:DD:90:50:2E:B3:34:36:11:32:27:FA:C7:36:47:DD:72:78
Authority key identifier: 29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
Certificate issuer: /CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Certificate serial: 01992FA335F3497E30FF332BDC114F2ACFDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
Manifest number: 0E7F
Signing time: Tue 09 Sep 2025 18:00:49 +0000
Manifest this update: Tue 09 Sep 2025 18:00:49 +0000
Manifest next update: Wed 10 Sep 2025 18:00:49 +0000
Files and hashes: 1: KT0QRM1I1hcW11ngIN29qoFNXNU.crl (hash: yQTA+dSm3EWGull9s/8EtCrEhXeJUqHr491qzkSP8lk=)
2: dJ6Z6uHBiaScsgFwBNYwQYgTmkk.roa (hash: A47IWxTys6UPyaxxT7KgUDJag9HKcyHJ4nrmIQJOjaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 18:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:2f:a3:35:f3:49:7e:30:ff:33:2b:dc:11:4f:2a:cf:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Validity
Not Before: Sep 9 18:00:49 2025 GMT
Not After : Sep 10 18:00:49 2025 GMT
Subject: CN=493a2bdd90502eb33436113227fac73647dd7278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:51:10:52:5d:5c:e8:29:7f:f8:4b:a7:5d:
c4:4a:08:40:3b:92:1a:6d:cb:2d:a6:b9:fb:78:b5:
b8:3a:cd:1e:1c:7b:75:b2:55:00:50:fd:83:c7:eb:
7c:be:bb:79:16:e0:22:8c:ba:28:c2:89:70:df:d5:
f6:83:c5:8a:93:01:dd:5b:93:a9:7f:67:7b:c8:c3:
17:0c:38:a9:cc:19:7e:08:4f:8a:e5:34:37:9c:43:
5c:0c:ed:cb:5c:d1:f2:80:fa:f9:d8:e0:f8:31:4e:
be:a4:df:b2:ba:06:c7:b8:19:6c:89:c3:bb:8b:70:
1c:24:d2:9c:df:12:09:c7:f5:10:47:11:cc:8f:37:
8a:9d:cb:78:ef:f4:35:28:8f:53:ac:e8:1b:33:db:
ef:87:85:f8:8e:b2:26:c2:06:c9:6c:02:0a:7b:4c:
36:3a:5c:ba:ba:5a:0b:1c:5d:33:84:0c:79:69:cd:
bc:25:81:d3:6e:53:16:6f:83:78:1c:4b:54:60:2f:
b3:89:29:a0:e8:77:41:08:7b:e4:35:b0:7c:17:09:
1d:f8:7e:de:f7:79:4a:2f:06:16:2b:e1:81:c0:6b:
7d:55:46:38:84:b1:6d:8d:1f:c0:8b:ff:a3:0f:c3:
f9:3d:29:58:50:cc:d2:a5:c6:e5:fb:de:6c:96:fc:
5b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3A:2B:DD:90:50:2E:B3:34:36:11:32:27:FA:C7:36:47:DD:72:78
X509v3 Authority Key Identifier:
keyid:29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:36:f6:d9:51:e5:18:db:68:71:a7:76:7a:3b:4a:52:ac:ca:
96:d8:9a:aa:5e:e7:36:f3:f1:cb:cf:63:bc:a9:b3:5b:95:e6:
08:82:3f:0c:30:81:15:9d:e3:7e:9e:29:fb:45:1e:2a:0d:b3:
71:f5:96:ef:52:c8:dd:3d:81:2f:e3:3d:e8:ac:2a:03:2c:72:
b5:98:e8:04:3c:9b:44:ac:88:ff:9d:c8:e1:11:fc:5d:b6:b9:
2c:9f:83:c3:b1:de:0e:36:f0:1b:d3:dd:0f:60:99:25:56:2a:
4a:f0:87:b3:81:9d:85:0d:83:9e:27:2d:83:72:a8:a4:b2:dc:
05:90:dd:2f:7f:23:00:ff:bc:cd:84:41:6e:c0:df:fb:ac:82:
4c:b1:31:85:d4:2a:19:ee:61:a9:03:be:ac:34:af:c5:55:64:
95:5e:04:dd:80:02:f1:b7:29:b5:04:ed:6e:d9:a7:4d:e3:e4:
61:c1:cf:c2:ad:d9:e4:a5:c2:7e:27:d1:3a:44:c1:48:65:f2:
21:9c:d7:04:8c:45:4a:7a:9e:f2:ea:fe:13:84:b2:2b:c3:2c:
d0:f2:bd:4f:dd:82:fe:6f:96:62:18:2a:6d:0b:94:e1:44:30:
ff:6d:4a:3e:32:98:9f:05:22:c1:70:86:e8:70:5a:02:f8:ff:
3d:8e:1f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 03:34:16 2025 by rpki-client