Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: i4Nwei/+hgK0HI8EDaVN6YvcaqqooWvEM0ngk9umfP8=
Subject key identifier: 41:E8:DB:AE:B7:CD:37:57:28:2D:AB:64:5D:E9:41:AF:7E:D1:BD:C9
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 019A209B5D1482AD6F90876942BFADD7D8C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 05F0
Signing time: Sun 26 Oct 2025 13:00:44 +0000
Manifest this update: Sun 26 Oct 2025 13:00:44 +0000
Manifest next update: Mon 27 Oct 2025 13:00:44 +0000
Files and hashes: 1: U5Y7YWVXNPPm9KoqmwsivloXzrs.roa (hash: ca5vcs2GJ+zXpmrDaBzBSEBE+1Vnejqdln+cTCo9uxU=)
2: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: CcpyUZJiYR/xTfiEAw34g+rYVepFZeLXdnfJD2i87As=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 12:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:9b:5d:14:82:ad:6f:90:87:69:42:bf:ad:d7:d8:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: Oct 26 13:00:44 2025 GMT
Not After : Oct 27 13:00:44 2025 GMT
Subject: CN=41e8dbaeb7cd3757282dab645de941af7ed1bdc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:99:17:36:57:ff:c7:d4:31:ed:fb:02:8c:36:
1f:ac:e9:ab:fd:b0:1d:4f:cd:d7:39:34:ed:0f:01:
c8:79:31:87:70:af:ff:d1:72:e8:be:6b:20:59:a4:
62:18:ef:04:54:23:90:79:f8:49:1b:7f:ab:79:67:
c5:62:f6:53:76:6d:44:0a:bb:f9:15:8d:b4:8c:86:
f1:a0:1c:fc:de:1b:76:e2:3f:1b:4c:79:d4:32:fe:
b2:00:64:cb:86:ed:ae:86:0f:56:d7:50:d6:d9:a1:
0e:33:00:2b:25:2a:b8:d5:5c:0e:ef:3c:81:bd:a9:
e9:ab:d4:34:10:13:9e:86:f8:f2:b7:7f:e6:d9:0f:
78:51:46:30:fb:23:4b:bf:47:d7:94:f5:68:26:12:
7a:ff:0b:ff:0c:3e:27:43:4e:f4:76:fc:4a:2b:28:
ca:27:02:67:c5:6d:30:97:ec:c4:10:ad:9f:23:73:
63:01:81:b2:dd:d7:fa:ba:f1:b1:2a:66:c0:12:0c:
41:fd:f3:c4:04:00:3e:b5:f6:5d:f4:a5:1c:bc:92:
35:f3:3f:63:a4:a8:2d:70:57:fd:22:83:59:88:82:
ee:ba:22:d2:98:17:45:d1:16:06:9a:7e:ae:36:2c:
6a:3e:57:c0:1a:e6:2d:ce:f1:9a:c3:8d:49:77:b8:
9a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E8:DB:AE:B7:CD:37:57:28:2D:AB:64:5D:E9:41:AF:7E:D1:BD:C9
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:57:f6:b6:b1:99:74:df:ff:16:96:75:bb:3b:a4:9e:b6:01:
97:5f:97:78:54:f2:9d:1d:67:c8:97:f4:ba:e1:54:2e:34:db:
3d:b2:0a:6e:36:4c:ca:a5:5a:34:0f:e8:9e:c3:47:8e:4e:98:
71:34:ee:10:6f:ea:a0:5b:25:f9:95:f4:cf:d1:63:fd:e2:0f:
ed:82:f0:0b:9f:4e:c3:ac:ce:3b:d4:2e:18:5c:0a:38:64:ee:
e1:58:a2:33:fb:27:fe:84:23:17:a4:fc:b4:64:71:05:48:87:
f6:d8:be:f7:ad:ee:0b:02:cc:c9:e9:9e:60:91:92:17:aa:7c:
c0:01:c6:9a:dc:bc:96:83:98:9d:e7:5d:5a:6b:24:15:d1:97:
02:73:e4:ab:87:47:8c:d9:91:14:d8:7c:0b:73:28:18:cc:4e:
df:90:60:b4:92:da:34:26:ce:05:5b:a6:1c:32:1e:4b:cc:3f:
41:27:8f:cc:c2:5a:5f:ab:42:a5:5c:d9:5d:e1:5d:ba:90:31:
a1:9d:dc:8a:8c:28:a7:02:ea:24:31:99:9e:45:b9:02:af:91:
85:d6:3c:c9:07:a6:ea:0e:96:a1:87:31:8b:20:f2:7d:d6:f8:
8e:9f:87:57:7f:0d:da:ec:05:a5:24:1e:3a:7e:95:ef:15:77:
7a:60:b8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 20:34:30 2025 by rpki-client