Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: zdvgGLVHxOKVuaLMMsro8BvGtsqX8+k9vtSXiCswx/0=
Subject key identifier: 90:3A:E6:25:3E:8A:0F:F7:4D:9D:37:F9:1B:7E:37:51:57:63:B1:DB
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 0199FFC85BBDC25BCF743F1A47411DA2A1A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 16E4
Signing time: Mon 20 Oct 2025 04:02:24 +0000
Manifest this update: Mon 20 Oct 2025 04:02:24 +0000
Manifest next update: Tue 21 Oct 2025 04:02:24 +0000
Files and hashes: 1: K-YJm4wOeLJG8aJ7KI41BLWAM-4.roa (hash: +ltmXAJQfzovJoKfgWj4x9gqmeiriedONmDgSBwWFc4=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: 1dQrB7P/KWIhc1k+2qaRho/AvGvx9eX37ATGHrVIN58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:5b:bd:c2:5b:cf:74:3f:1a:47:41:1d:a2:a1:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Oct 20 04:02:24 2025 GMT
Not After : Oct 21 04:02:24 2025 GMT
Subject: CN=903ae6253e8a0ff74d9d37f91b7e37515763b1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fa:4b:a6:5b:38:7a:4b:1f:28:50:50:b5:af:
62:bf:4d:d7:68:50:b6:66:1a:17:33:da:d5:a5:1b:
0c:eb:08:85:35:9c:80:1f:11:4f:e6:7a:09:ec:8a:
ba:0e:36:eb:c5:55:98:fe:bf:a7:7a:e8:dd:ca:84:
f0:d2:b4:22:cf:5d:58:4c:cc:c7:0d:88:f6:7d:05:
e8:18:c3:7f:97:97:29:53:e1:f3:c4:d8:eb:ed:92:
85:de:29:f6:b0:95:d2:4f:86:3f:ca:a6:80:16:fc:
d9:3e:86:e0:bb:3c:bc:3a:b5:0e:a7:16:86:52:74:
2f:43:d1:b6:41:0e:87:42:5c:40:c8:6f:06:1f:40:
13:6c:c8:8d:b1:c2:96:80:d9:3b:b3:df:63:f3:f9:
a3:76:52:c5:e6:eb:89:34:17:85:ff:57:56:4c:ce:
4e:04:79:9e:e8:ff:86:01:f0:ba:8e:db:9d:4f:6f:
79:ce:f1:8e:fb:6c:fb:4c:c9:d9:30:e9:ec:95:da:
03:55:f7:33:1a:20:e9:e4:76:6c:02:a9:44:bf:66:
f2:d7:58:cd:ef:d3:5e:c9:9c:97:e2:9d:26:9a:75:
af:3c:27:05:55:16:a5:87:1d:c7:04:68:03:0c:e0:
7f:92:97:a1:d8:c6:27:30:8a:fc:93:2c:97:cd:8a:
94:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3A:E6:25:3E:8A:0F:F7:4D:9D:37:F9:1B:7E:37:51:57:63:B1:DB
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:8f:54:db:05:2a:3d:e6:70:84:2e:88:01:c2:0c:72:72:09:
97:be:96:ef:d0:2f:6d:f0:22:7f:d8:32:80:33:4d:e9:3c:fa:
8d:f6:e7:9f:5d:b4:d6:7c:1a:27:8e:58:5f:92:34:f5:a7:e7:
81:da:24:84:95:eb:fb:11:38:3e:01:64:a9:af:fb:b7:60:b0:
e6:dd:64:84:f5:b2:c8:3c:eb:c7:ab:29:38:c9:e7:83:d2:ea:
74:f4:b3:e9:c4:d6:36:8a:ec:97:99:ad:06:c1:da:06:f7:c1:
11:fb:7e:e0:fb:6d:67:d6:8a:30:0f:ff:6d:53:b6:52:02:13:
b7:8d:c2:c5:ff:62:a1:7f:7d:0f:3f:95:3b:a7:31:76:60:23:
4e:6e:69:5d:a7:28:b4:16:ee:40:3b:9c:be:84:b0:ef:a4:3d:
fd:87:d6:82:59:5d:9d:aa:16:cb:fb:fd:84:12:9c:27:20:c8:
3c:b2:fe:42:fd:2e:4b:7b:12:8e:4c:d2:e4:ba:da:9b:08:a2:
fa:a5:83:f6:88:c9:f8:2d:3a:67:88:3e:5d:0e:4a:2a:82:30:
e8:2a:1a:ec:bb:40:e4:95:5a:f4:fd:ef:d5:ac:f6:b0:cc:36:
fc:15:c3:76:73:13:5e:31:2d:32:f5:11:93:41:28:f8:1a:8a:
13:cd:91:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:38:52 2025 by rpki-client