Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
File: KoyNUYbIdxRVvhMbDHz9ZufThlU.mft (raw, json)
Hash identifier: L32+AWxtbB0wWGyHXwiWKVwwc0IdkHxVUnM57czGtT4=
Subject key identifier: 9F:BE:97:DB:96:F5:82:B8:64:B2:A8:49:4C:8C:A4:63:03:A7:8F:A7
Authority key identifier: 2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55
Certificate issuer: /CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655
Certificate serial: 019A71B798ECEFE1BD1D5E9E6DF585FDAB58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
Manifest number: 0525
Signing time: Tue 11 Nov 2025 07:00:48 +0000
Manifest this update: Tue 11 Nov 2025 07:00:48 +0000
Manifest next update: Wed 12 Nov 2025 07:00:48 +0000
Files and hashes: 1: KoyNUYbIdxRVvhMbDHz9ZufThlU.crl (hash: NBp9Sx/hWV4BcottJX1BcgWWZzvnFjK1RKh3uXZ4RdQ=)
2: _L4_714o--k52AHUTKE5ELIZMFQ.roa (hash: ji6+L6kBm6VqOpTZxUmb7EEqHaNzozcu4JNvhJv1V2c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b7:98:ec:ef:e1:bd:1d:5e:9e:6d:f5:85:fd:ab:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655
Validity
Not Before: Nov 11 07:00:48 2025 GMT
Not After : Nov 12 07:00:48 2025 GMT
Subject: CN=9fbe97db96f582b864b2a8494c8ca46303a78fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7f:e0:51:a9:51:e0:83:33:0e:0b:81:93:d7:
ab:ea:49:cd:bf:e0:da:7e:ac:0c:1c:17:2d:ed:36:
34:0c:2f:b4:d5:b8:fa:ff:e5:d7:82:cb:f6:85:5f:
4d:ff:c4:4a:98:4b:14:fb:08:13:72:97:5a:eb:d6:
6c:bb:08:47:6f:1d:91:69:aa:ab:bb:67:ef:1a:9e:
01:29:97:78:29:2d:45:34:89:8c:34:51:ad:6a:0b:
bf:97:db:c0:26:1a:21:80:28:da:9e:98:da:96:b8:
ea:4c:bd:a2:64:79:2d:b5:d6:d8:79:a6:24:be:6c:
f5:e8:5e:da:7d:49:88:41:c4:62:71:b4:f5:1c:9a:
30:97:2f:85:81:29:37:37:b7:8d:00:57:80:3d:1c:
ea:60:e3:11:7c:d4:2d:f9:0d:e9:45:78:51:96:ed:
8b:8f:cb:59:84:aa:0f:84:e5:88:91:e4:1b:86:02:
ac:3a:62:8a:9e:8a:c6:d1:65:8c:e8:e6:d4:df:14:
9a:7f:8a:17:bb:3b:4e:4c:d4:40:34:08:b1:34:ed:
15:c1:e4:d4:21:d9:5e:a4:2a:1e:19:36:19:0b:18:
e4:c0:23:e7:e2:54:b2:72:48:e9:a2:94:d3:a8:e5:
29:68:06:7f:a6:08:25:17:13:4a:d5:f3:3a:63:a6:
7e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BE:97:DB:96:F5:82:B8:64:B2:A8:49:4C:8C:A4:63:03:A7:8F:A7
X509v3 Authority Key Identifier:
keyid:2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:32:66:50:1d:aa:a4:59:a7:f6:f0:5c:9c:5d:ef:3f:4e:8f:
f2:21:69:0f:d0:25:78:4b:31:e4:b7:89:d0:cc:bc:73:11:97:
5e:16:93:cb:8e:d8:03:af:4b:85:75:f3:44:7f:bf:48:1e:22:
76:de:70:7a:54:79:ed:64:c4:9e:25:cf:32:78:1c:4d:d5:e0:
9c:df:bd:da:03:b1:cc:ef:8b:b0:d3:29:87:92:b7:77:c3:ad:
3d:39:54:c1:34:f1:3b:25:33:59:9d:58:b4:34:79:6e:e7:84:
40:b9:65:fd:78:37:be:43:fa:fe:03:4a:34:6b:73:1b:ca:1c:
aa:35:35:62:db:bd:e8:66:ef:8d:03:14:fc:1e:35:d4:41:0f:
66:71:c1:14:b2:08:27:a2:9c:c9:ec:01:0c:2b:13:69:62:aa:
47:22:9f:2a:02:03:18:bf:d6:42:a9:12:46:77:bb:dd:48:77:
95:a3:cf:bc:fc:2e:47:1b:d5:8c:1d:c8:62:78:44:f9:91:01:
16:79:88:d5:72:a8:3d:c0:62:f0:d2:77:57:13:98:6b:61:64:
d6:e7:4d:b5:3d:8c:7c:00:e1:14:8c:59:ed:15:9b:bf:88:82:
09:af:18:08:49:dc:ce:2d:5f:f8:5b:9d:04:89:13:d0:9b:d0:
ea:e7:b0:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:14:21 2025 by rpki-client