Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: Srp9lMqL9ke8b3i8DQpsLUb5QjvrJ0q+y1tCY4P6Uq0=
Subject key identifier: 43:EF:E8:E9:2C:87:B6:39:40:52:D5:C8:04:E2:0B:04:E2:65:16:7D
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 0199FE7E10260988E84B814DE78AB982114C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 04BF
Signing time: Sun 19 Oct 2025 22:01:38 +0000
Manifest this update: Sun 19 Oct 2025 22:01:38 +0000
Manifest next update: Mon 20 Oct 2025 22:01:38 +0000
Files and hashes: 1: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: 8cyVPgHIKA4V7bK5lM15IZ82xFlHa0ivbZkiPHAybMI=)
2: o05sdzj6m4fQO6_WrgnQWVEGn8s.roa (hash: 4PZyqJElCUrsee8Vele9Jxa/SXWOHXm1LP7RgEQB9SY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:7e:10:26:09:88:e8:4b:81:4d:e7:8a:b9:82:11:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: Oct 19 22:01:38 2025 GMT
Not After : Oct 20 22:01:38 2025 GMT
Subject: CN=43efe8e92c87b6394052d5c804e20b04e265167d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ea:28:4a:38:dd:d6:42:04:b4:21:46:72:e3:
1e:98:f6:9e:a6:d5:54:4f:ef:fc:af:00:14:53:af:
c0:d9:0c:ad:aa:d5:1d:d9:b2:88:0f:86:e2:c9:f9:
b3:6d:5a:e1:7a:83:62:fb:27:7d:6a:ab:e1:ab:b7:
74:00:82:45:98:b4:3d:79:2c:49:c7:18:15:8f:9d:
75:28:a0:8c:77:8c:b5:53:44:65:5e:2a:70:78:3f:
8d:97:8b:6b:d7:72:84:0e:f6:b5:ff:53:a8:76:9e:
99:e1:48:89:b5:83:65:cb:37:7b:84:54:bc:1c:23:
d6:4b:89:70:89:8e:de:60:92:4a:c3:b6:31:54:c2:
9e:5d:56:b8:a9:a0:3a:53:6d:bf:03:35:ca:95:86:
67:49:c6:50:be:46:76:d5:c5:05:d2:55:7e:fb:ac:
9b:4a:a7:a1:85:24:73:f1:2b:98:76:29:47:d2:5c:
ef:e5:3b:2e:30:b2:58:8e:6c:9e:8f:4b:35:8a:64:
e5:61:6e:59:ca:fa:68:10:00:80:1e:f5:7e:94:d8:
7d:31:b9:80:df:df:9e:3f:9f:29:69:6b:75:22:84:
85:55:e0:c3:35:dc:34:a8:2a:fb:15:43:72:33:18:
54:91:1a:12:57:13:6a:1c:29:45:40:22:61:9a:2a:
7a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:EF:E8:E9:2C:87:B6:39:40:52:D5:C8:04:E2:0B:04:E2:65:16:7D
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:52:e3:18:bc:c0:79:8e:8d:97:1e:fb:bf:6b:12:31:91:42:
50:ee:65:54:47:ad:0c:71:ce:de:04:9c:40:ce:79:f0:8c:3e:
48:24:58:1a:83:56:24:53:68:e4:37:a3:23:a0:32:64:76:51:
21:1e:2d:b8:a2:e5:14:15:9c:cb:68:81:4e:14:93:d3:88:48:
88:31:5a:a7:70:62:fa:ee:6a:3b:e3:ab:a7:cc:7f:97:3c:30:
27:7b:5b:03:74:fc:99:32:e6:45:14:ca:10:11:9b:dc:0c:aa:
db:89:59:0a:de:2d:ae:b1:03:ed:8c:e6:a6:1e:0b:48:67:c1:
60:db:06:3a:2c:db:60:57:63:49:f4:a0:9c:5e:6f:13:99:92:
57:d2:8e:33:3b:02:61:d1:34:b9:1c:11:0b:02:24:0e:9d:14:
bb:04:96:a2:e5:1a:8c:52:21:d1:c3:84:29:f5:f1:e4:54:f0:
4d:1b:79:ff:61:10:f9:a7:b5:cc:54:3b:46:32:85:74:be:3e:
6b:76:b7:4b:6c:b1:c2:fd:9c:a0:78:e2:b6:e8:dc:69:68:df:
ea:1f:9a:dd:ab:64:5a:41:e6:72:a3:11:96:b1:e4:99:c2:40:
9f:0c:f9:48:fd:99:19:b6:1a:62:6f:54:c9:7d:02:af:ad:e8:
73:f9:59:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:40:22 2025 by rpki-client