Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
File: ktf2mgS9nK1SOzn3ei3atEwpEZI.mft (raw, json)
Hash identifier: pxZyf+ua0ihLDBY0Q6z7YLTd7EZRZkTXjqR4MQAxj1o=
Subject key identifier: 68:48:9D:6C:4A:84:5E:A8:05:4D:23:F5:EB:23:1E:2C:D8:FA:E0:B9
Authority key identifier: 92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92
Certificate issuer: /CN=92d7f69a04bd9cad523b39f77a2ddab44c291192
Certificate serial: 0199FC21437784CD47C408F6281C881A256B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
Manifest number: 1673
Signing time: Sun 19 Oct 2025 11:01:02 +0000
Manifest this update: Sun 19 Oct 2025 11:01:02 +0000
Manifest next update: Mon 20 Oct 2025 11:01:02 +0000
Files and hashes: 1: ktf2mgS9nK1SOzn3ei3atEwpEZI.crl (hash: XRRdMvxWzaY45mlRw1Fefl84dCVTjFns2KWsq4flYFQ=)
2: tX7ugzTELMCfaa10qZ6cRQFzo6s.roa (hash: pM1f1c7cpi8tX6YPlXTmsRIvmuNbzIiqqMIx6Cp/Bqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:43:77:84:cd:47:c4:08:f6:28:1c:88:1a:25:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7f69a04bd9cad523b39f77a2ddab44c291192
Validity
Not Before: Oct 19 11:01:02 2025 GMT
Not After : Oct 20 11:01:02 2025 GMT
Subject: CN=68489d6c4a845ea8054d23f5eb231e2cd8fae0b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:db:3b:12:d0:6b:84:5c:fe:45:90:98:d0:d1:
3e:5e:bd:d4:73:77:99:50:23:a0:f4:d4:5c:2b:37:
dc:d0:74:b5:0d:2d:fc:ef:f0:b3:fa:d5:7b:70:ba:
48:2d:8c:b8:09:55:ae:b3:3d:57:a4:b0:14:4a:ec:
07:13:7f:58:7a:82:16:72:53:69:b9:54:b9:c6:04:
cc:21:d3:b3:ba:dd:76:2d:4e:d7:77:d4:79:59:f9:
a5:6f:a0:45:cd:24:2f:e2:f5:e3:79:54:79:69:02:
a2:15:d1:54:1d:35:4e:66:6d:12:70:3f:a6:f8:3e:
ab:64:97:fd:0a:5e:fb:ec:c5:66:5c:f4:88:4e:b3:
2f:63:9e:28:4f:c3:ee:41:1b:88:52:46:93:d7:08:
76:68:08:da:f9:6f:37:4e:f2:7e:75:53:79:a2:41:
9c:d5:f7:45:f8:97:63:6a:49:5c:8d:c0:2d:74:36:
82:b7:7f:6a:f9:b1:b7:46:5b:1a:72:57:e4:2e:13:
15:78:89:f9:87:a4:56:63:22:18:65:ce:7b:8d:5a:
b6:66:e4:b1:c5:fe:10:98:35:82:4c:14:5f:c7:79:
5c:22:68:ce:3b:96:68:67:60:47:5a:2b:12:fd:c9:
7e:7f:2d:0d:71:9f:16:cd:f3:9f:73:99:7f:c6:16:
1f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:48:9D:6C:4A:84:5E:A8:05:4D:23:F5:EB:23:1E:2C:D8:FA:E0:B9
X509v3 Authority Key Identifier:
keyid:92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:e8:4f:7c:c1:60:43:04:a9:e3:70:f0:73:ab:19:8f:78:be:
f3:c5:b9:71:74:a3:a0:d1:76:bf:db:cb:29:c8:2f:4e:c5:71:
44:21:a5:8c:01:ea:69:bc:62:a0:d1:7a:93:26:32:1b:c4:9e:
04:bd:3d:e2:ec:f7:52:90:61:f4:ae:e9:a6:e4:cf:3f:a3:37:
f6:8b:d7:b9:1c:8e:4c:8e:29:7c:1d:ff:9c:a9:91:62:ea:90:
1a:62:a9:83:9b:4e:69:c5:b0:81:19:29:4e:2d:88:ca:42:4a:
39:d1:6a:33:a8:f7:b2:73:1f:94:ca:26:c8:20:7a:57:9f:d6:
bc:d5:06:08:36:26:2f:b7:77:ef:52:35:84:0a:04:36:fe:0b:
84:a0:1a:aa:e2:cf:cf:d9:05:14:c7:5a:d1:99:6f:a7:c4:64:
a8:53:79:67:55:49:db:0e:3d:c9:08:28:08:3d:9c:cc:0c:53:
16:51:10:0f:5d:f0:02:16:02:02:14:61:ac:32:e6:0f:51:9d:
f8:bb:3b:9b:46:80:c7:74:93:1b:dc:3d:e2:19:92:b8:39:fe:
29:5c:1e:f8:f6:61:af:c5:b2:52:82:72:1c:5a:fe:c5:59:cb:
cb:f6:b2:89:c3:07:e1:42:66:12:0e:2f:73:c2:ad:91:8e:50:
42:d2:5c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:21 2025 by rpki-client