Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
File: klbr9muA8IE1hY0UTO1veFg09fQ.mft (raw, json)
Hash identifier: AOL9Y1lCE4Me0XlR0C+FqhMSoJ5UDuRXIORWGH+XOv0=
Subject key identifier: 3A:99:FF:25:25:9D:12:27:89:FB:FC:E0:5B:44:72:29:8E:D1:19:0F
Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4
Certificate serial: 019A2A79A153F313F84F208EEF3800D73076
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
Manifest number: 16FA
Signing time: Tue 28 Oct 2025 11:00:05 +0000
Manifest this update: Tue 28 Oct 2025 11:00:05 +0000
Manifest next update: Wed 29 Oct 2025 11:00:05 +0000
Files and hashes: 1: 0cwv1kps50n5fxH17jZ6DrIm1N0.roa (hash: undM2lyLTll3NMITFEXa/JcW5GP1KelrAOfh7Rau6zQ=)
2: DFcDai4MmMP-4I9ZmvHSmiuuiVo.roa (hash: P1EgClV7bkG9omjLGc5Uu3/ShqO9L3Dji7Yyz/EuHLk=)
3: V_xEHpefO5u5KSTu-XYSWan-kRo.roa (hash: jYILx7U+IDJR4gLw2si3w1xLilgSY3Xi257sg6Z15eA=)
4: Z26jB8MmkVPCobutKSYkZRRffSw.roa (hash: jtYR3qZJ5WEi/+pEZva2m9kUb9g5HMevovBDi8SuUfU=)
5: e1u7bA6PuDBeHm9U9nKjSLDhACw.roa (hash: DvBt+9eFN/dfM+tx+F5jn+yDWZNZsODtMhC5M+LFI08=)
6: klbr9muA8IE1hY0UTO1veFg09fQ.crl (hash: GwyShl6EqfnIL70t2Q266oG1KQ2Dj/TvFxAc9+tvoF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:79:a1:53:f3:13:f8:4f:20:8e:ef:38:00:d7:30:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4
Validity
Not Before: Oct 28 11:00:05 2025 GMT
Not After : Oct 29 11:00:05 2025 GMT
Subject: CN=3a99ff25259d122789fbfce05b4472298ed1190f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:28:8d:17:db:40:9c:76:37:af:ed:14:8a:cc:
a9:55:8c:5b:d3:57:01:15:24:ac:77:2d:d3:11:fb:
e0:10:e0:48:3d:d9:11:b5:a6:b0:88:d3:8e:6d:fe:
13:8d:0e:a0:13:31:e0:07:c2:f5:d2:9e:b4:7c:65:
57:7f:d5:02:7b:38:f9:3b:1e:ca:53:7d:44:22:c6:
dc:46:c5:d9:b0:00:a6:a6:4f:05:0e:2c:69:6d:a8:
13:b5:80:10:53:93:e2:c9:1a:a1:28:89:17:c6:94:
d3:35:e1:ae:9a:4e:d1:a3:68:f9:86:cc:98:c3:a2:
c7:e4:1a:31:4a:31:83:66:5f:4a:58:f2:33:f3:9a:
a3:b1:6c:6f:2e:f0:e8:c1:c2:0e:ff:4d:33:2c:e9:
12:98:df:59:47:6b:85:4e:8d:83:c7:55:76:e0:49:
a5:f6:39:68:88:54:0c:43:48:cc:6c:0b:4d:60:f6:
14:52:0d:06:bd:7f:cf:43:9f:5a:fa:28:12:74:01:
41:36:cd:c6:17:29:47:a0:68:13:58:7e:e6:d9:3c:
87:46:e4:92:25:f7:41:f5:e9:e1:53:46:de:5e:9d:
a6:80:dd:b3:84:86:13:f5:45:1f:e1:35:97:6d:72:
e2:0a:1d:bf:a2:e3:25:15:d3:fc:92:18:1d:40:12:
61:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:99:FF:25:25:9D:12:27:89:FB:FC:E0:5B:44:72:29:8E:D1:19:0F
X509v3 Authority Key Identifier:
keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:96:e4:c9:4d:a4:f6:a4:08:79:ff:81:8c:c8:85:b3:4b:43:
1c:49:4d:38:f4:f9:48:63:b4:42:ad:d8:1a:5a:65:7c:3a:ce:
3a:f0:b0:e5:b3:10:6e:5a:85:cf:9c:af:30:4a:0f:aa:5b:20:
01:87:d2:9e:ba:b0:cf:35:d3:75:a2:73:9a:d7:52:13:3c:8d:
40:8d:41:65:cc:6d:73:27:54:46:ee:9d:51:b1:ba:d1:69:be:
8b:c3:0c:b0:a5:b6:ac:31:b0:30:a8:2f:3e:46:d0:e1:b5:7b:
fb:13:0b:b3:34:be:73:0b:32:7b:86:69:ff:04:36:b3:cc:8c:
ef:a9:1e:8e:a5:10:9e:6b:ae:e5:50:ea:0f:b0:9a:f0:8b:b4:
b3:46:d1:ae:b1:d0:19:12:cc:23:01:05:6c:66:3a:d6:62:9e:
84:44:4d:3f:ed:c7:55:11:5f:c9:f2:57:e2:21:23:90:d0:dc:
c0:7f:44:8c:66:6c:f3:b9:ff:c3:fa:01:e9:92:1e:7e:9a:da:
ed:55:b6:0f:36:9b:aa:22:0a:f7:e6:38:98:57:7e:6f:80:25:
eb:2f:21:03:36:ef:c1:41:b1:e1:ac:8c:34:1b:be:fb:1c:63:
a3:9f:db:f2:f9:3b:c7:12:b8:f2:2f:28:59:3f:b4:50:50:f4:
b0:85:6b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 14:14:38 2025 by rpki-client