Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: DeKUDRB2iC3boda+LMXpI4RN2KlPKq+qRC72xe1Qpek=
Subject key identifier: 65:51:7E:2F:CC:FF:9F:B2:B7:FA:D9:F9:27:2D:7B:E3:19:34:67:34
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 0199FCC69FAEEDBE29937A41A5A7D1BF5835
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0D77
Signing time: Sun 19 Oct 2025 14:01:39 +0000
Manifest this update: Sun 19 Oct 2025 14:01:39 +0000
Manifest next update: Mon 20 Oct 2025 14:01:39 +0000
Files and hashes: 1: GDngKunQly0rXAZJTM9K6ouZldE.roa (hash: srWtclzCrCIl56nGBNOU8VqqYjtRTWRgnKIo2g1oYz4=)
2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: JE8+gh9v5nP7pid8ZGEfkRV7t2s0lWaS4cq+wKrgei8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:9f:ae:ed:be:29:93:7a:41:a5:a7:d1:bf:58:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: Oct 19 14:01:39 2025 GMT
Not After : Oct 20 14:01:39 2025 GMT
Subject: CN=65517e2fccff9fb2b7fad9f9272d7be319346734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:28:66:f1:1f:1b:12:3f:cb:5e:19:26:02:df:
cc:4f:25:57:a0:4f:4e:13:83:18:84:c3:9b:6f:17:
5e:4e:3a:9a:f2:ee:3a:7a:3d:58:87:8d:4f:af:0d:
a7:43:de:86:42:f0:77:b8:f5:0b:28:70:96:5e:3d:
e0:0b:6f:a5:91:05:2f:5e:9d:73:16:7f:20:9b:ab:
ce:8e:1e:b5:be:d0:72:f0:fe:39:62:c8:f2:c6:bb:
8e:2c:88:56:65:a3:bd:25:ac:2e:ce:eb:00:54:69:
43:54:08:f9:9b:e3:00:9c:a0:f4:ab:7b:58:a9:4b:
82:55:3d:67:55:6d:49:94:6b:73:4d:41:20:04:f8:
a3:ae:f3:b9:f2:fb:b4:c4:a0:94:5b:81:3b:00:e3:
ed:a9:bb:db:e6:2f:55:b6:63:b6:48:d8:43:bc:a0:
32:49:a0:ad:12:9d:62:90:44:5a:70:60:9e:2f:79:
12:10:30:fe:85:4c:ec:d8:7e:d7:f2:54:3e:ee:90:
01:67:6e:a9:15:32:ef:b3:22:19:b6:d3:25:e7:3b:
7b:4c:be:41:71:d8:e6:21:be:74:3d:16:7e:a7:32:
5e:eb:35:5d:30:16:7e:d2:be:e0:fc:b8:81:bb:23:
d0:2a:0d:78:9b:0c:58:c4:7c:32:b7:b7:50:3f:9c:
18:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:51:7E:2F:CC:FF:9F:B2:B7:FA:D9:F9:27:2D:7B:E3:19:34:67:34
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:aa:20:28:5d:6b:f5:00:0c:90:35:ce:52:da:73:8d:e7:c4:
01:d7:6a:f2:5b:15:70:6e:2d:df:56:f7:11:cc:d7:9f:5e:b9:
4b:b1:c5:90:b2:6c:41:38:3b:2e:85:38:77:8f:2a:42:90:c2:
a8:ac:e4:b0:49:0c:a6:47:bc:79:90:12:e9:3f:ff:c7:b9:f4:
21:f2:b6:9c:d6:2f:c4:69:5c:80:7a:d3:24:c1:14:d9:e3:63:
f3:cc:50:e5:c0:4f:8a:96:d3:db:09:08:00:8a:72:d9:e1:1c:
72:82:86:18:f8:7a:ce:ba:70:af:2f:89:3f:f5:80:3a:02:27:
96:94:c3:e4:c6:f3:a3:b2:ef:7b:92:81:68:30:7a:94:93:af:
35:50:63:69:d8:18:17:16:94:f5:82:0d:2c:d6:ef:ab:84:2a:
8f:c7:59:fb:d8:8a:23:d7:6b:c5:26:3c:77:3e:24:c9:14:45:
ff:a9:7d:52:5e:38:e6:91:90:3f:0f:9e:00:ca:c2:f5:ca:7b:
74:2c:13:dc:bc:3c:15:a6:c3:3b:71:77:ea:3c:1f:f0:31:a2:
0b:8c:3f:e9:88:44:6c:f5:9f:3a:fa:bb:30:98:14:27:f7:8a:
ee:1c:20:5b:30:1f:5b:19:bc:76:88:3f:bb:60:45:3e:7a:41:
1c:c7:1c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:45:33 2025 by rpki-client