Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: G0AeRFmhLHzzS2RMvznz5WtdOaJUJFtkPbRZX6DE7LE=
Subject key identifier: A0:C2:42:D0:75:FE:3B:41:86:2F:F2:65:BD:B1:64:EF:93:D9:F9:E7
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 0199FB0F24053D773549AC4539C9F87F0973
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 087B
Signing time: Sun 19 Oct 2025 06:01:37 +0000
Manifest this update: Sun 19 Oct 2025 06:01:37 +0000
Manifest next update: Mon 20 Oct 2025 06:01:37 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: Q+JHxXEBJTYZV8pA+CXedEf/DH5R7ET8lNAU3t08WDQ=)
2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:24:05:3d:77:35:49:ac:45:39:c9:f8:7f:09:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: Oct 19 06:01:37 2025 GMT
Not After : Oct 20 06:01:37 2025 GMT
Subject: CN=a0c242d075fe3b41862ff265bdb164ef93d9f9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:47:d3:49:34:be:7f:4b:9b:72:bc:d5:5c:
39:fc:e1:1b:39:70:c5:9d:7c:2b:6b:68:2d:4f:45:
ce:07:da:f0:78:c7:2a:55:7c:3b:a8:bd:5e:17:da:
90:88:42:82:ad:17:75:4c:1d:ea:9b:ed:aa:d9:93:
f5:02:83:24:3e:2d:c0:b9:6a:35:2c:6a:f2:6d:76:
2e:c6:88:2f:e6:de:a9:65:f4:ad:15:33:9b:bc:1d:
40:ac:f4:9a:ef:41:c3:4c:28:d8:d0:32:58:6d:e4:
09:f5:66:69:1c:f1:57:27:cd:69:3e:ef:f8:82:e6:
26:b3:a5:bf:e1:c7:fa:c6:89:12:06:f9:d8:e9:ad:
64:80:69:94:db:5b:fb:9a:b2:52:ea:83:96:04:7e:
b1:66:35:4c:9c:67:30:1a:3e:e1:3d:99:15:29:4b:
eb:22:d8:a2:2b:c9:e4:53:ff:e5:3a:08:7e:a7:31:
86:85:73:29:ab:fe:68:cb:f5:5b:03:72:e2:a7:7c:
1f:fb:cc:ca:7d:7a:ac:27:95:67:65:09:08:e7:c4:
14:38:a2:cd:1d:89:0e:29:64:cb:34:95:b5:73:bc:
b9:4f:0c:23:84:a9:cf:fc:d3:71:96:51:8a:52:26:
cd:a3:04:9d:05:01:95:76:91:13:4e:d7:b2:5d:a2:
be:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C2:42:D0:75:FE:3B:41:86:2F:F2:65:BD:B1:64:EF:93:D9:F9:E7
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:dc:44:84:1a:db:80:7c:2c:95:11:70:8c:8d:5a:b2:a2:4c:
61:cc:6e:05:1c:44:24:d1:6d:28:35:a8:d8:89:36:73:54:2a:
a1:c2:4c:61:19:38:6b:d5:00:e9:fd:2f:bb:05:26:30:1e:e0:
b8:5f:62:d7:1f:62:cb:87:57:30:11:0e:35:66:b9:87:70:b5:
43:0f:6f:81:be:81:cc:8f:8f:75:21:8b:71:75:f5:95:74:f8:
f9:83:9d:db:c9:6c:29:c7:a4:15:97:39:b5:02:6f:cf:9e:84:
35:c2:83:95:fa:c6:21:59:da:fc:af:05:11:9b:7b:ae:7b:02:
90:40:26:85:58:05:9c:7a:44:5b:80:00:24:f4:9e:9a:36:3c:
39:35:f7:a1:3a:7c:3a:06:4d:ad:ea:07:5e:98:fb:f9:39:4e:
0f:c1:c5:30:cf:a3:57:e0:74:00:2c:f0:99:08:5c:9e:bd:e7:
97:86:e2:0e:db:6c:c0:a4:cb:e1:0e:52:d2:26:ae:3d:65:7b:
15:59:95:4d:af:50:c9:22:37:2f:3a:cd:ae:e9:3f:2a:cf:2c:
24:a8:25:7e:f5:8a:1f:8b:ae:52:ca:0d:1a:81:c1:2c:23:a6:
b2:80:0d:2f:64:90:58:e3:89:5a:19:89:02:1b:94:7c:11:6d:
49:c7:1e:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:01 2025 by rpki-client