Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
File: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft (raw, json)
Hash identifier: 0r5MwMlLg9VgbfbN/maqo1zyK658t2Q+0WjD2VnDdAU=
Subject key identifier: 91:71:01:7B:0E:DD:8E:49:23:6D:59:19:26:69:51:7A:97:FB:1C:76
Authority key identifier: 29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
Certificate issuer: /CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Certificate serial: 019A07801CA0BB967A277BDEDDA9C1B4B2A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
Manifest number: 02BD
Signing time: Tue 21 Oct 2025 16:00:27 +0000
Manifest this update: Tue 21 Oct 2025 16:00:27 +0000
Manifest next update: Wed 22 Oct 2025 16:00:27 +0000
Files and hashes: 1: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl (hash: grrbeWhJCSwYOVCL32I807noZcvdr4Kzh4x+M++f9h0=)
2: l2JOTmWwgvB0Noq1JM57zkDHT7E.roa (hash: fvF/3WFpXW+en1bZSjFDxni1bz8bZU75qvWIdCsVsmI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 16:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:07:80:1c:a0:bb:96:7a:27:7b:de:dd:a9:c1:b4:b2:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Validity
Not Before: Oct 21 16:00:27 2025 GMT
Not After : Oct 22 16:00:27 2025 GMT
Subject: CN=9171017b0edd8e49236d59192669517a97fb1c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8e:4f:c2:fd:9b:92:d0:90:38:92:74:16:cb:
93:89:a0:37:31:93:40:10:5a:1a:cd:e7:db:64:1e:
48:ee:1d:09:e7:87:fb:c9:b7:ff:1b:2f:2f:eb:29:
8e:9f:7f:96:10:f4:fe:d5:78:b0:d1:33:6c:9d:bc:
fa:5f:01:95:51:d8:9a:ba:c4:ea:1e:43:39:0f:2a:
a5:ca:cf:91:39:4b:8b:2c:83:71:bc:11:00:8a:77:
75:b2:b0:46:0e:d4:23:1d:5d:b0:64:24:e2:5b:5b:
f8:19:51:dc:cd:ed:e6:8f:ae:d2:12:0d:c9:e1:a7:
17:98:0d:16:19:ba:13:c4:74:46:2c:72:05:49:9c:
49:52:ec:a3:3e:75:b9:7b:30:50:b2:ff:92:15:c8:
7f:89:51:de:ab:a5:42:b0:52:44:ef:8c:b9:8b:19:
0c:48:50:be:ee:d9:df:64:2a:03:b1:ee:e3:bb:3c:
a0:05:64:d4:6d:67:c2:58:90:dc:a7:0c:3b:eb:ff:
15:b4:42:22:24:f5:b1:d8:c0:c0:21:7d:22:b8:4c:
78:75:03:0e:50:ca:f9:fc:ca:42:58:71:d0:58:d4:
f6:6d:08:8f:b4:db:64:bc:56:cc:51:80:63:4f:b6:
25:97:ce:83:64:20:f7:8e:88:e7:12:cf:be:43:6d:
ab:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:71:01:7B:0E:DD:8E:49:23:6D:59:19:26:69:51:7A:97:FB:1C:76
X509v3 Authority Key Identifier:
keyid:29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:c3:3e:17:03:9d:e5:56:98:66:8e:5f:6d:64:b4:26:be:bb:
75:e7:71:46:1d:02:d3:6a:da:3a:81:7f:40:95:0b:8e:1b:e2:
0d:1c:80:81:06:9e:67:15:b9:64:4b:97:08:ec:91:d3:bb:83:
7c:1e:3e:70:94:d0:d6:3d:0e:a9:07:1f:28:05:cf:cf:ca:c1:
0e:b4:d6:38:a7:91:65:6d:2b:46:56:73:aa:bc:86:35:06:4f:
9e:5f:19:38:47:3f:33:7c:fa:55:be:a8:f6:1e:0a:6b:98:50:
fc:08:ed:c7:e3:33:41:3a:51:18:d9:fa:81:fb:29:0d:4e:b5:
1a:aa:45:56:55:7a:9d:a3:89:87:ee:b0:d2:fc:38:b1:b6:a0:
1f:d0:69:c1:05:f8:24:10:38:87:b5:db:43:79:42:d0:5f:35:
61:61:8e:fc:a7:10:30:c5:2e:78:a5:64:1c:53:73:de:d7:0e:
4f:7d:1e:49:68:73:bb:cc:98:e0:d6:81:93:9d:77:d8:a1:c3:
f6:4e:ea:e9:ce:ef:92:d6:c4:a0:7c:1f:c4:d3:55:ea:b7:d0:
a4:d1:95:44:aa:8d:dd:96:de:86:b4:9e:66:2f:15:25:50:e9:
06:f8:d0:13:b4:4d:07:65:4c:fd:cb:90:90:3f:cb:1b:08:c1:
c3:02:b0:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 01:25:48 2025 by rpki-client