Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: 9Uh9gZBmfyPF0ZxaUYxGUGc47QbuKjyyo73/e0J9STU=
Subject key identifier: B8:5E:37:91:BA:67:54:16:D0:76:1A:5D:9A:D8:F9:A6:E6:ED:C5:41
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 019A0D4CB070F6B0E51F0572C72529CC45A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 107B
Signing time: Wed 22 Oct 2025 19:02:00 +0000
Manifest this update: Wed 22 Oct 2025 19:02:00 +0000
Manifest next update: Thu 23 Oct 2025 19:02:00 +0000
Files and hashes: 1: 79LYqjKNTJN0ouKGzdcbqvTlAUQ.roa (hash: ql/wdfFz1qsER0EkZDThbVWptAlBg9mw+jziuKWlZyc=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: toLGRh6gVAe4uLup/vRMHKVgrj0obXwoTn8aCYhd8I0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 19:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0d:4c:b0:70:f6:b0:e5:1f:05:72:c7:25:29:cc:45:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Oct 22 19:02:00 2025 GMT
Not After : Oct 23 19:02:00 2025 GMT
Subject: CN=b85e3791ba675416d0761a5d9ad8f9a6e6edc541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:49:e3:0b:8e:ff:5a:5e:70:a8:df:19:ba:e6:
10:91:3f:4d:f3:79:81:25:d2:7b:12:91:83:36:8c:
8a:1d:4a:ea:87:ac:a9:c2:63:98:22:11:dd:99:b0:
13:ca:97:67:cf:12:0f:06:7b:a0:a3:e5:18:aa:9d:
17:a2:89:51:4c:f2:ee:a6:9f:8f:84:d4:b0:bd:b3:
c3:f1:44:19:05:86:bc:19:25:21:51:bb:32:bf:59:
82:8d:26:0a:24:f7:b2:d1:7f:a1:ed:77:63:b0:59:
0e:92:fc:1c:e6:b9:a9:78:72:5e:b1:bb:e0:73:54:
49:be:6b:f6:26:8d:34:ea:ab:87:5b:3f:e9:cd:ab:
08:77:83:7c:7e:d9:95:c2:41:26:c3:30:48:29:e7:
bf:6a:0f:c2:84:45:37:72:d1:03:f4:10:c9:dc:0c:
97:84:10:7f:28:12:8a:b9:07:fa:55:20:d4:31:79:
b9:10:2e:98:83:77:af:36:e3:19:b0:2d:10:3e:58:
03:9f:00:92:f5:47:e2:f7:2d:71:db:f4:94:e6:d9:
72:f2:ce:c2:3c:86:01:ca:fb:a4:ab:42:17:e6:43:
78:e2:e6:6a:c8:05:c9:1c:23:bd:c0:b5:96:3a:f5:
83:48:94:aa:3e:f7:43:aa:b6:9f:69:0a:64:1f:ed:
fa:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:5E:37:91:BA:67:54:16:D0:76:1A:5D:9A:D8:F9:A6:E6:ED:C5:41
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:f0:3a:33:c1:62:d4:f9:61:bb:bb:75:dd:8c:1b:aa:44:b2:
e5:28:54:05:40:16:85:78:c8:fd:9a:cd:5a:54:fe:17:03:25:
b8:d2:1e:e3:27:61:f0:31:46:ad:e2:55:c5:0d:19:07:6f:fc:
cc:00:30:55:ef:29:b0:01:c5:3d:46:98:f2:ba:bb:ba:27:72:
cd:2b:51:37:4d:39:b1:e9:19:3f:92:d9:bf:98:5c:79:f3:9d:
02:00:04:9e:2c:0c:10:d3:fb:1d:54:21:05:b6:72:3e:fe:7a:
13:f2:11:4e:30:74:00:f0:ad:ea:d3:c5:23:f4:03:fa:e1:1d:
00:a0:69:e4:ce:58:69:b2:f5:f0:5d:89:34:8f:31:71:b0:d2:
99:dd:41:78:01:c1:f0:26:96:37:d0:3b:88:16:ee:7e:16:e9:
74:68:be:9f:dd:55:0b:1e:a8:2d:12:8b:1f:0f:5d:08:01:51:
10:65:11:ed:f9:4c:3f:03:2c:a3:f7:9c:32:84:7b:a9:8c:18:
e5:ee:9a:a3:bd:a7:dd:ec:7f:bc:f4:bc:d5:bf:2c:dd:df:59:
5a:ca:f8:5b:18:6d:3c:a1:3b:3b:c6:cb:09:16:ac:8e:fa:cf:
63:1f:9d:04:13:78:13:90:23:de:1b:46:3d:a2:87:7a:8e:bf:
48:59:8c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 04:08:58 2025 by rpki-client