Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
File: KNX3dyLGFlf4HJ965JznKbWA9ng.mft (raw, json)
Hash identifier: W1j1FAB9ifo2gOI3cmzqAw5sZXtjYGhmqP9XyZuGAM0=
Subject key identifier: 1E:FB:05:E7:44:AF:5A:30:52:60:DA:BA:B2:8C:6C:F5:F7:90:FA:0F
Authority key identifier: 28:D5:F7:77:22:C6:16:57:F8:1C:9F:7A:E4:9C:E7:29:B5:80:F6:78
Certificate issuer: /CN=28d5f77722c61657f81c9f7ae49ce729b580f678
Certificate serial: 0199FFC865A7397B7C2BB596294178526FAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
Manifest number: 16E1
Signing time: Mon 20 Oct 2025 04:02:27 +0000
Manifest this update: Mon 20 Oct 2025 04:02:27 +0000
Manifest next update: Tue 21 Oct 2025 04:02:27 +0000
Files and hashes: 1: KNX3dyLGFlf4HJ965JznKbWA9ng.crl (hash: 3178RUBO+tlITwTmAPiiVKIH5fKYMFe+aHw3/CC5Nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:65:a7:39:7b:7c:2b:b5:96:29:41:78:52:6f:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28d5f77722c61657f81c9f7ae49ce729b580f678
Validity
Not Before: Oct 20 04:02:27 2025 GMT
Not After : Oct 21 04:02:27 2025 GMT
Subject: CN=1efb05e744af5a305260dabab28c6cf5f790fa0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a3:51:78:d1:33:af:47:c7:91:a9:4d:b5:07:
df:05:37:77:b3:06:10:56:0f:e9:5a:b7:bb:65:c3:
52:34:06:94:49:40:f5:8d:2a:72:f5:4d:d4:29:eb:
63:20:a2:07:c7:d1:97:a9:99:48:65:86:b9:9f:38:
c0:a6:8b:07:05:01:a9:58:82:61:c4:28:ac:cb:9f:
e1:3c:e1:cf:4f:dc:bd:e5:02:29:f9:ae:a1:3b:1c:
57:dc:4b:e1:64:80:19:3b:ec:32:40:78:cb:cb:42:
01:6f:28:a7:48:66:09:f1:63:cc:8f:8b:ae:eb:4d:
55:e8:e6:98:19:e1:d2:10:8c:7e:6f:e5:08:96:94:
94:56:d1:5b:7a:d2:2d:67:36:24:a9:23:b8:c6:cf:
59:ca:c3:67:27:b1:16:6c:3f:95:7d:40:b5:af:c2:
f7:70:2e:16:17:6c:a6:95:ed:72:08:d6:e8:ad:a8:
f2:d4:36:0b:59:59:b9:4b:01:7b:39:6b:38:81:2e:
bc:76:f7:6a:2d:3a:bc:20:39:6f:50:c4:2f:0b:69:
e1:12:3b:7c:c5:10:44:da:6c:94:9e:04:77:2c:21:
82:fb:02:f6:f2:cd:4e:3c:d7:80:18:7f:12:60:88:
c3:24:68:8c:81:52:0e:24:47:10:64:59:89:f4:94:
58:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FB:05:E7:44:AF:5A:30:52:60:DA:BA:B2:8C:6C:F5:F7:90:FA:0F
X509v3 Authority Key Identifier:
keyid:28:D5:F7:77:22:C6:16:57:F8:1C:9F:7A:E4:9C:E7:29:B5:80:F6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:da:f5:17:a8:34:c8:20:ce:92:d4:1e:99:3e:69:95:76:50:
c6:af:59:c1:e7:d6:f3:e7:83:5e:1f:53:68:09:b7:b8:0f:5d:
b6:d6:2d:ac:c2:ec:b5:2e:2d:05:ce:1b:a9:4e:48:d0:47:19:
f0:b7:bb:cc:8e:30:e2:2e:aa:f7:4a:6a:ac:d9:74:fa:98:2f:
57:33:f2:2f:af:db:d3:1e:ac:5f:dd:89:08:49:6d:65:88:ae:
8d:ca:92:40:92:1d:60:eb:e3:8e:6c:c1:b2:e1:3b:6b:22:9b:
f4:b3:58:72:33:b7:28:1d:f6:30:1d:63:64:9d:1b:fe:45:7d:
e7:e1:48:16:f9:bc:a7:59:e9:ee:7b:f6:0f:19:03:98:d2:13:
00:76:f5:15:5a:00:12:30:f3:52:8c:4b:76:e7:34:67:34:6a:
03:c3:66:a7:9a:d6:28:20:8b:a4:3b:04:8a:2d:b0:cf:97:fd:
6f:fb:cd:c1:60:3f:1f:43:9d:59:43:bd:e1:ab:6f:5f:71:c4:
4d:87:12:5c:24:d1:6a:0c:3d:9d:ab:1e:73:2f:92:1f:1d:54:
7d:f2:82:66:2d:f8:b8:c1:76:3a:02:9a:2f:5a:29:b5:3a:a2:
7a:47:0f:3e:1c:e3:b3:80:26:b3:d9:80:90:7c:f9:8d:6f:1d:
1f:b6:88:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:24:00 2025 by rpki-client