Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
File: KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft (raw, json)
Hash identifier: cnJJkHNFnYgCOyoIjHHRU4v7EZqk9n3oraLznhFmpsw=
Subject key identifier: C1:74:24:79:37:6B:D8:7E:79:97:7A:DA:28:98:AF:03:0C:20:6F:6D
Authority key identifier: 29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39
Certificate issuer: /CN=29b1210ec9105c717d098f9f0d00d9dea2322539
Certificate serial: 0199FC58CDD64072F481A519CCE36A99724C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
Manifest number: 13B4
Signing time: Sun 19 Oct 2025 12:01:42 +0000
Manifest this update: Sun 19 Oct 2025 12:01:42 +0000
Manifest next update: Mon 20 Oct 2025 12:01:42 +0000
Files and hashes: 1: KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl (hash: WBNedxPC/nIi6OMiNoBZxCMLuRAZfrYvI3bm3gartMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:cd:d6:40:72:f4:81:a5:19:cc:e3:6a:99:72:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b1210ec9105c717d098f9f0d00d9dea2322539
Validity
Not Before: Oct 19 12:01:42 2025 GMT
Not After : Oct 20 12:01:42 2025 GMT
Subject: CN=c1742479376bd87e79977ada2898af030c206f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4d:4e:92:1c:be:43:c0:de:50:2e:29:0f:ae:
e7:eb:f9:f0:bb:b5:e5:7e:01:de:e1:c9:bb:d4:91:
a2:d7:21:6c:c4:2b:0f:0d:6b:a3:11:83:8d:d3:be:
ad:a6:09:26:d1:e1:f1:4e:2a:1e:50:25:95:5d:66:
38:24:bd:ed:51:2f:49:bd:4c:09:58:7f:dc:57:e9:
86:23:8b:f4:e9:19:18:f4:df:5a:e3:1a:57:4a:cf:
bd:30:5a:c6:f9:a8:62:8e:94:5b:28:63:f4:c7:e8:
b1:c9:1c:1e:2f:58:94:f1:00:22:6a:d1:ed:f3:7b:
96:2e:e9:79:d6:e0:3c:f9:71:c6:0e:1f:71:98:d3:
39:24:49:51:c4:4a:ad:65:bd:d6:62:8e:1a:2e:07:
a6:86:ad:15:02:cf:e1:e0:71:8f:f7:81:66:38:e5:
77:98:ca:3f:b8:26:5e:dd:b2:40:1b:8a:1d:a7:4b:
38:5c:b2:95:61:04:fe:e8:6e:5c:f1:c3:b1:c9:ef:
99:75:4b:c5:ad:6b:7b:ad:c8:dd:14:94:be:7d:f9:
ca:4b:3f:b6:68:7a:8e:43:91:c9:08:d4:19:cb:c1:
31:4b:dd:aa:36:0a:6a:89:c0:df:b1:02:65:4b:4a:
fe:6c:f5:11:65:c5:ba:11:86:9c:c5:9a:5b:2e:c9:
64:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:74:24:79:37:6B:D8:7E:79:97:7A:DA:28:98:AF:03:0C:20:6F:6D
X509v3 Authority Key Identifier:
keyid:29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:9c:e9:fe:8f:55:52:6e:68:4d:22:48:58:3a:99:16:be:e3:
ab:85:76:56:38:59:61:2c:30:f7:e1:6d:bd:b4:49:f9:99:27:
ac:b9:95:a0:e5:42:c7:10:2c:b3:26:e9:ff:b1:1c:bf:80:b4:
b3:13:46:b2:7a:7a:3e:9c:44:db:0e:9c:fd:0c:69:f6:2a:6a:
5f:e1:f9:bb:07:d2:9f:8c:ee:87:2c:b8:83:54:06:32:50:4d:
76:6f:4c:c2:1e:a2:64:47:96:0e:85:40:a1:a4:3b:fa:35:6f:
2f:9b:f4:be:12:b0:71:bf:03:32:3e:38:e0:ca:c1:65:4a:8a:
43:cf:41:fb:d9:a0:03:07:a9:1d:24:6e:0c:66:b6:41:d1:31:
4b:44:62:2a:31:d7:d3:d5:6a:89:19:a8:7f:13:00:30:84:56:
0a:58:09:6f:fc:d8:0a:2d:0a:72:47:55:06:2c:35:06:29:4d:
b3:49:19:7c:c5:97:99:dd:d4:b8:98:4b:7f:fd:c0:7c:bc:71:
21:7a:71:a9:74:03:64:c8:86:b0:ce:ba:bd:44:b8:96:c2:4c:
17:3f:d0:86:c9:45:0c:65:fc:22:74:b5:7f:2b:f5:1e:46:f0:
c3:5c:ea:20:44:5d:db:76:fa:22:d9:36:d3:23:70:d5:78:34:
fc:80:b1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:29 2025 by rpki-client