Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: arbXetouD3RlkImLLo0wcGgL4D3A1j7sW9tOYrppxHQ=
Subject key identifier: 97:EF:11:C7:A3:08:EE:5C:8F:0F:B7:DA:18:4E:E6:C1:07:5F:C7:01
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 019A24AED5F7F0B4F9A69E1E0F7A1184C2CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 170B
Signing time: Mon 27 Oct 2025 08:00:28 +0000
Manifest this update: Mon 27 Oct 2025 08:00:28 +0000
Manifest next update: Tue 28 Oct 2025 08:00:28 +0000
Files and hashes: 1: 0_EpdViy3Y27mqejc66l1--sjBk.roa (hash: 5pxFxSH3+mNeuLlB3lfUr3Q81qL23oDYt7nqdhFYvqU=)
2: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: nG7LFyygDcWrU719KvpYsX/z917AIEQ6X9ZIQvKrP4c=)
3: LcFyOrobUrG-q36ENaVBWkIxyec.roa (hash: aiGhAwWl1vo/+1mZ5amS0ElRqf0Ru78HcL61kI16D7M=)
4: mJjYnvCF0aJWwcOO87dJLulTej8.roa (hash: cyYF0//qn6HDiGNvk9163fm1e6ldk0sS9GYuhZI3HqU=)
5: oOM7QrbyKmK3sX9tSspvcF4LQYc.roa (hash: FI0q4cfrXLcPzOiQWzP6cR+1RIpvdT5irQXBJq3jipE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:ae:d5:f7:f0:b4:f9:a6:9e:1e:0f:7a:11:84:c2:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Oct 27 08:00:28 2025 GMT
Not After : Oct 28 08:00:28 2025 GMT
Subject: CN=97ef11c7a308ee5c8f0fb7da184ee6c1075fc701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:54:e4:b3:2e:0a:67:6d:a3:fb:2a:d8:20:00:
97:55:39:80:a7:47:b8:45:aa:b7:50:2c:f8:7c:ee:
42:50:80:7d:31:44:e8:50:ee:45:43:80:34:b6:04:
b7:f3:1f:01:f9:41:01:82:49:90:a9:0a:27:1b:82:
95:2a:29:76:6d:21:d0:98:ae:e2:9f:db:a0:f0:c1:
04:80:09:16:ec:6b:15:94:13:96:f6:15:13:94:5e:
30:c2:f7:90:35:e6:3f:79:5a:db:d4:45:bb:11:80:
a9:0d:b6:38:67:a8:3e:4f:cd:80:36:28:94:b0:ca:
45:02:ea:be:eb:f0:41:28:82:71:fa:9a:20:98:ac:
f1:3d:90:17:57:90:63:fa:85:6e:ff:c5:76:e1:82:
a6:65:9b:d0:af:9b:a5:d8:e5:53:81:e1:1a:30:e0:
42:92:9e:49:e8:94:bc:81:a2:0b:43:71:8a:fd:94:
ce:8d:65:9f:e0:6e:63:3d:e5:a8:b1:e7:25:f6:fd:
e5:e7:56:35:ce:ff:ac:e5:28:57:a3:2f:5b:bf:c6:
0c:b1:53:c8:f5:eb:d1:a5:13:1b:1c:85:f5:24:fb:
41:76:5c:a3:a7:c7:60:ff:34:52:e4:8d:1b:58:d0:
64:5c:71:20:3a:93:3d:74:ab:98:1e:c3:79:c2:c3:
ab:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:EF:11:C7:A3:08:EE:5C:8F:0F:B7:DA:18:4E:E6:C1:07:5F:C7:01
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:4e:b7:cc:c7:7e:05:4d:a9:c3:e7:2f:d8:51:9e:e2:b0:f0:
85:6d:f7:82:8e:4c:6a:bb:a2:b1:f9:74:06:61:9b:35:fd:5e:
98:3e:dc:b8:3c:3d:cf:88:e4:80:71:06:8a:75:3a:28:dd:0e:
db:32:0b:08:c7:dd:d8:90:ae:58:26:57:e8:a8:1a:91:01:5d:
29:cd:9a:a1:d5:fd:65:ea:9a:c4:45:b4:35:b9:19:89:78:a5:
6a:a3:35:e8:0d:82:e8:e1:da:23:db:f0:c1:91:ec:19:08:f0:
cf:a5:8a:97:eb:72:92:09:0c:dc:4a:c9:be:a5:77:79:a3:35:
86:da:f9:b4:a0:26:c7:d7:08:43:8a:14:c3:6f:4f:90:55:ae:
db:71:2d:0c:24:28:c3:84:c8:6f:e4:2a:c6:06:31:60:3b:f3:
ae:4b:87:63:d2:94:72:3f:92:73:5a:7d:53:d7:ae:08:80:67:
24:31:5d:de:1e:c3:31:83:2c:21:74:e2:45:be:66:d6:80:9d:
90:be:fc:ed:0e:c8:da:98:0b:6e:69:92:e2:23:e4:5e:32:1b:
bf:f4:ef:ff:3e:86:84:e7:22:ae:6b:39:50:fb:3d:86:cf:67:
4d:0d:ec:a5:8e:92:94:d6:1c:c0:78:e1:e1:3f:47:ba:3d:79:
13:1d:f0:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 14:07:13 2025 by rpki-client