Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: YSQAOvzv5RTaFoaSUNl3ZieqX2B31q1tFinET/BRiY0=
Subject key identifier: 6D:77:43:55:5B:95:E0:A8:12:B2:F9:5A:30:66:CE:20:13:E2:B1:E4
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019A706E3FFBC41ABA114E4D69684BDF9A41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 02DC
Signing time: Tue 11 Nov 2025 01:01:04 +0000
Manifest this update: Tue 11 Nov 2025 01:01:04 +0000
Manifest next update: Wed 12 Nov 2025 01:01:04 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: ZYo6K0yNEBoM3bj2gko/ElIEmnMMcAVWoJYU1FYN40w=)
2: q2_sbJziOr7rwxyhvKWnkNjMans.roa (hash: 0BH7DATsPfSUKJPP/TZdwOG931UfHO+OV4ftBhPZrwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6e:3f:fb:c4:1a:ba:11:4e:4d:69:68:4b:df:9a:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Nov 11 01:01:04 2025 GMT
Not After : Nov 12 01:01:04 2025 GMT
Subject: CN=6d7743555b95e0a812b2f95a3066ce2013e2b1e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ab:fe:0f:72:a3:04:4c:83:02:ec:f1:33:e0:
09:90:ff:a0:b6:2f:c5:68:65:42:4a:44:e3:f0:f5:
a0:04:3f:dd:dc:44:b6:d4:1a:c7:c2:83:9a:5c:d7:
b6:c4:25:b7:02:0c:78:ac:3d:f8:39:ae:d4:64:d5:
1e:2b:79:70:fb:26:a3:de:af:f5:16:38:82:32:b9:
81:b3:1e:73:dd:23:91:40:bd:4b:f7:e1:3e:2a:de:
36:26:ec:57:5f:78:53:2b:1c:17:a5:3d:a1:43:a7:
58:26:90:5f:87:24:a5:cd:1b:e4:3e:90:81:0d:79:
f8:eb:f9:fc:92:9c:75:46:39:ca:08:45:24:93:e4:
fc:37:66:e3:06:b1:49:a6:1c:b0:40:0f:5f:3f:b4:
1b:97:81:ae:e4:57:15:15:69:ca:c2:9f:15:93:8d:
3d:66:1a:de:f2:e1:01:12:02:e9:07:9c:ba:82:73:
75:2c:cb:37:ab:3f:78:7b:2d:7a:79:39:30:e8:58:
51:a2:40:51:32:ee:aa:c8:91:4a:09:3d:18:75:3b:
ad:c8:f0:21:d3:54:d4:72:05:a7:7b:c2:e2:2f:31:
28:f0:a4:a2:b7:97:d9:3a:43:35:ab:8d:2c:86:ac:
28:88:0e:e1:96:c6:d9:a6:f7:6c:58:43:28:3a:17:
40:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:77:43:55:5B:95:E0:A8:12:B2:F9:5A:30:66:CE:20:13:E2:B1:E4
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:18:96:d5:6c:be:c3:c5:fd:ef:27:2b:b9:6f:58:99:42:dc:
64:5d:bd:3f:56:8a:25:90:71:2a:4e:ae:7f:20:3f:e3:98:98:
12:86:fc:0d:da:e2:51:57:9d:04:b3:d1:ee:27:6b:df:70:a3:
46:51:2c:e1:fe:83:c3:71:73:f9:e2:ce:83:64:de:62:7d:3b:
2a:0d:9c:e6:62:0f:95:94:cb:f5:1c:6b:7e:04:27:73:b5:f3:
fb:9c:5b:25:27:62:66:d0:4b:2d:d0:11:b9:95:45:79:ff:ae:
c3:1d:25:c8:3d:be:95:68:1c:3e:e2:ff:d6:a6:b6:24:f1:bd:
c0:54:6a:ad:e1:44:e0:55:a4:dc:79:f9:4c:00:9f:65:bd:14:
b7:62:c8:b9:23:7b:f5:d4:b3:ef:19:ea:37:c5:d5:f1:46:d5:
90:7b:65:21:80:8c:2a:92:55:a6:4c:be:17:4e:f4:2a:c2:db:
55:b2:65:ac:49:3f:52:aa:1e:cd:be:a4:1f:fd:20:59:e7:b6:
17:27:14:91:e0:10:2f:a2:7e:40:48:2e:64:d6:37:9c:33:d5:
a1:b5:90:15:b7:b5:9c:63:a0:b0:0f:e4:64:01:4b:85:08:ac:
3d:e0:9f:9f:48:34:c8:7d:5d:63:43:39:bc:9f:7b:26:84:48:
6b:42:99:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:33:44 2025 by rpki-client