Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
File: klbr9muA8IE1hY0UTO1veFg09fQ.mft (raw, json)
Hash identifier: LXZ80Sgk08f+1d81LBGaqPt6m6+E3Yfyrv/J0Iha6Gc=
Subject key identifier: 37:DA:FA:AD:C8:1B:81:5F:6A:1A:17:34:D6:1C:A7:48:66:49:11:74
Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4
Certificate serial: 019933499D81E7B3694C66927976EB6D2D47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
Manifest number: 167A
Signing time: Wed 10 Sep 2025 11:01:26 +0000
Manifest this update: Wed 10 Sep 2025 11:01:26 +0000
Manifest next update: Thu 11 Sep 2025 11:01:26 +0000
Files and hashes: 1: 0cwv1kps50n5fxH17jZ6DrIm1N0.roa (hash: undM2lyLTll3NMITFEXa/JcW5GP1KelrAOfh7Rau6zQ=)
2: DFcDai4MmMP-4I9ZmvHSmiuuiVo.roa (hash: P1EgClV7bkG9omjLGc5Uu3/ShqO9L3Dji7Yyz/EuHLk=)
3: V_xEHpefO5u5KSTu-XYSWan-kRo.roa (hash: jYILx7U+IDJR4gLw2si3w1xLilgSY3Xi257sg6Z15eA=)
4: Z26jB8MmkVPCobutKSYkZRRffSw.roa (hash: jtYR3qZJ5WEi/+pEZva2m9kUb9g5HMevovBDi8SuUfU=)
5: e1u7bA6PuDBeHm9U9nKjSLDhACw.roa (hash: DvBt+9eFN/dfM+tx+F5jn+yDWZNZsODtMhC5M+LFI08=)
6: klbr9muA8IE1hY0UTO1veFg09fQ.crl (hash: 2g0yYKT4jMSS1yBa0OQB9JS8gyfrTLrOcKvUEg+11uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:33:49:9d:81:e7:b3:69:4c:66:92:79:76:eb:6d:2d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4
Validity
Not Before: Sep 10 11:01:26 2025 GMT
Not After : Sep 11 11:01:26 2025 GMT
Subject: CN=37dafaadc81b815f6a1a1734d61ca74866491174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a2:76:ed:cb:e4:a8:d9:ce:c2:26:75:a9:92:
1f:75:29:b8:ca:96:44:5f:68:1d:d3:1a:b6:8e:d7:
e4:ca:79:e1:77:d8:d0:5f:63:06:c0:aa:6c:60:98:
b5:fd:e9:e4:75:3e:db:ef:a6:32:93:b2:13:9b:1d:
f8:5b:bb:4d:f6:bd:e1:89:f7:46:c1:2a:03:3a:7a:
94:8e:a6:39:57:0e:41:5a:6c:82:59:7e:db:c0:40:
2b:fb:a9:bb:34:51:5f:2f:18:f0:79:de:28:76:e2:
de:88:83:f9:87:b2:dc:3c:aa:4d:1c:98:46:f9:3a:
cf:62:d7:51:77:34:70:de:2c:17:4f:d3:46:bb:c8:
1f:81:c6:15:9b:4c:d5:9d:ea:03:a8:e2:49:64:3e:
cb:2c:52:57:d7:c2:fe:cf:41:54:e1:0e:a1:54:b0:
67:44:fc:e4:44:a3:4d:34:23:0c:0f:0c:a3:64:79:
90:aa:df:01:88:4b:cc:3e:11:97:2a:65:40:60:3f:
1e:f8:22:13:8e:90:76:32:10:af:8c:4a:ae:e3:03:
33:30:fb:74:99:cf:23:d6:c3:cc:4c:95:b7:d8:34:
97:25:6b:87:5d:84:f2:88:5f:87:c2:34:0f:4a:96:
95:9c:2a:d1:f2:21:28:92:0e:63:2c:ea:33:b2:a4:
37:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DA:FA:AD:C8:1B:81:5F:6A:1A:17:34:D6:1C:A7:48:66:49:11:74
X509v3 Authority Key Identifier:
keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:11:23:43:c9:6f:c0:93:e0:06:68:17:41:8d:1f:1f:4e:ca:
09:e5:60:2a:35:aa:62:b5:9e:21:b0:95:d3:60:90:ed:18:86:
bd:b5:3c:11:b1:7b:02:e6:e7:79:29:81:f6:f6:7e:f0:64:f4:
6c:fa:8b:2c:23:50:a3:c7:93:34:39:28:f2:83:94:12:d2:07:
43:c8:13:23:87:0a:28:39:76:ec:90:49:d2:e4:8c:32:bf:f5:
df:9f:d7:9f:4b:3c:aa:bf:01:df:80:44:03:ef:bf:34:35:b9:
cd:aa:dd:35:0a:ed:b6:67:2d:cf:c4:a4:90:5f:32:b3:cf:6f:
76:02:f8:c3:f5:e5:ed:1a:8f:e4:5e:6f:b1:10:4b:65:36:6f:
1a:ea:fb:e8:88:39:44:9a:fe:03:70:57:58:c1:4c:dc:de:23:
d1:3e:7f:21:8c:a3:fc:41:83:72:04:da:85:49:e1:ce:d3:ed:
d6:01:ef:62:df:6b:23:c0:25:4d:7e:7d:32:e4:84:d0:e2:ed:
87:f2:a1:ad:9c:ee:96:ec:1a:18:1b:11:15:a4:ca:f5:25:e5:
23:4e:39:4f:c4:be:e0:6b:78:c5:55:06:3f:a9:e3:13:82:1e:
ea:93:03:98:b4:1b:50:5e:24:fc:fa:24:9b:2e:4c:21:8b:e7:
b7:35:7a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 15:42:35 2025 by rpki-client