Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: uFLee0R7P1jJDDhyv3ILLYyQhjYEvpOX4k+0zYk/V4Q=
Subject key identifier: 6E:D5:99:5C:9A:44:84:BA:40:57:3C:CF:5D:49:34:10:02:B0:F3:84
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 019A706E54AA10C9C52BEF015093B8777412
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 08EB
Signing time: Tue 11 Nov 2025 01:01:10 +0000
Manifest this update: Tue 11 Nov 2025 01:01:10 +0000
Manifest next update: Wed 12 Nov 2025 01:01:10 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: zXh7OjUHssYYmxbQINwjzYxjs8TpxN+IruB5RvNRDxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:6e:54:aa:10:c9:c5:2b:ef:01:50:93:b8:77:74:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Nov 11 01:01:10 2025 GMT
Not After : Nov 12 01:01:10 2025 GMT
Subject: CN=6ed5995c9a4484ba40573ccf5d49341002b0f384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:56:9e:5c:17:01:48:a6:08:24:0e:c0:0f:ae:
23:4c:49:1d:a9:d3:c7:48:db:29:9e:1b:b0:a5:25:
3d:ff:26:dd:af:2b:05:bc:dd:c1:27:76:d2:45:b4:
0f:d5:88:fd:c9:a0:e7:96:91:a9:20:e7:d9:bf:4b:
3a:ae:e8:13:3c:fa:7a:97:12:6c:1d:d2:a9:5f:34:
13:f6:7e:b9:48:f3:c7:b9:a2:5b:dc:bf:98:64:8b:
b2:f7:35:c1:0a:76:f7:c5:c2:02:32:5f:61:de:42:
a7:b6:3f:58:83:b4:54:3c:35:c3:6e:61:2b:bc:bf:
ab:83:3f:39:f0:00:dd:21:01:2b:5b:12:54:0e:7f:
c3:d9:76:13:58:01:a1:99:8e:83:e5:2b:91:b9:b2:
53:26:25:6a:1c:cc:a1:27:2e:94:58:0b:60:20:f3:
be:5e:e1:c8:b9:7b:14:b2:65:84:c8:d2:48:1b:30:
d2:a2:ab:ec:fe:51:09:92:88:1c:98:0f:61:56:18:
1e:97:6a:2a:75:6a:d6:91:d6:19:45:af:28:c3:96:
51:2b:c8:06:e5:9f:12:88:77:13:17:7d:c9:65:81:
11:ac:2c:57:7c:03:3d:09:20:f3:18:c5:1e:fa:e6:
cb:14:9a:3f:f8:79:fb:94:b3:70:f9:03:39:ed:a3:
a2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D5:99:5C:9A:44:84:BA:40:57:3C:CF:5D:49:34:10:02:B0:F3:84
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:b2:7f:a3:33:23:ae:0b:20:81:70:70:9d:90:3c:eb:86:c6:
8d:33:e9:b1:33:02:4e:e7:36:29:30:68:07:00:2c:d5:6a:9d:
42:7c:ed:e4:dc:69:f5:4a:ce:06:15:38:5c:e4:4d:f6:c3:5a:
46:8e:65:dd:86:41:36:2f:52:09:33:67:e8:ed:c0:eb:56:3c:
48:69:58:6d:88:80:a0:3a:ad:c7:a2:15:48:88:27:c4:93:38:
0b:a2:e1:92:8a:d1:e8:44:c1:30:2d:cb:29:e1:ea:65:b4:46:
f9:19:e1:cd:68:e8:fc:4f:b8:29:1c:2e:30:c3:46:71:1a:c5:
5d:c2:51:8d:da:82:c5:1b:7c:ba:f2:2f:7a:b9:f3:c0:1d:bc:
b8:44:1f:bb:0f:3e:da:b7:86:c5:47:9f:90:54:8f:8a:a8:51:
0d:bd:c9:75:49:4a:b1:11:a0:5e:06:c1:9a:58:b6:c3:9f:22:
56:ac:e1:86:42:56:c9:51:5e:9f:c9:ec:47:e8:a0:76:11:67:
93:05:cf:af:4c:4a:a7:cd:4d:e1:30:d1:ce:a1:1c:cb:d4:65:
c8:0b:48:02:4f:8b:c0:3b:0d:c3:91:9f:85:65:1e:6c:dd:66:
cb:c2:4c:74:3d:9a:24:67:e9:cc:8f:e9:30:e6:d4:24:8c:81:
c8:64:65:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:35:11 2025 by rpki-client