Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: UcbNrBgx7MWK8OFYr3nm2brmy1mgnqW74sdC8Fb1D70=
Subject key identifier: 23:8A:7E:C5:2A:51:16:66:29:27:E2:9C:A9:A2:9B:1B:2C:94:E9:A8
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 0199FC591ED331C7B1689C89D18898D580D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 079F
Signing time: Sun 19 Oct 2025 12:02:02 +0000
Manifest this update: Sun 19 Oct 2025 12:02:02 +0000
Manifest next update: Mon 20 Oct 2025 12:02:02 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: D/7AZmZ7dx666n5vjkfhcyeCKI6NN4FZ8CcsaUEyCQk=)
2: wd_UoJqlC6X8mKMfS7O-YEGVRuo.roa (hash: xFPdoUnkz2JIkzmQ5taq1hUGjTFKvPuKX93R37CXGQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:59:1e:d3:31:c7:b1:68:9c:89:d1:88:98:d5:80:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: Oct 19 12:02:02 2025 GMT
Not After : Oct 20 12:02:02 2025 GMT
Subject: CN=238a7ec52a5116662927e29ca9a29b1b2c94e9a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b0:4e:e6:30:32:e7:fa:42:a0:5a:c1:e6:93:
f3:05:fd:0a:74:03:26:46:11:34:ca:4a:b8:98:87:
86:ab:8a:98:3d:71:36:ac:ce:14:aa:9f:61:4a:4f:
e8:5b:09:d5:07:21:32:71:89:fe:38:95:98:70:e3:
f9:2c:98:ed:f7:74:8d:b0:f1:9e:bf:bb:bb:11:d8:
98:6e:e3:bc:ae:3a:cd:01:d2:46:32:0d:4e:da:32:
54:84:fc:b3:0f:6f:95:2b:67:46:1e:43:8b:90:f2:
1d:8d:5c:4c:d6:ee:5b:30:07:20:83:f0:b9:ff:20:
96:e7:c1:3b:cd:8d:62:a9:ba:3f:96:31:e5:74:ac:
0f:7d:c9:20:6c:75:96:26:df:41:46:00:9b:84:48:
9c:0b:2d:69:9d:25:70:5f:a5:da:b3:13:4d:41:34:
64:4d:4c:98:99:e4:23:a2:6f:f0:8c:72:70:b2:21:
b5:3d:0c:73:ed:c1:18:1c:a9:eb:c1:78:77:0f:a0:
8f:72:0d:0a:a1:91:e6:d5:8c:d4:ea:38:1f:fa:c1:
4c:b2:84:89:c4:1f:cd:9b:b6:a3:51:cb:5e:a0:1b:
33:ca:6c:5e:11:59:2f:04:49:5d:4e:16:03:0a:27:
8b:d4:9b:41:71:7b:b2:a2:9c:8d:dd:04:9d:ce:d9:
de:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:8A:7E:C5:2A:51:16:66:29:27:E2:9C:A9:A2:9B:1B:2C:94:E9:A8
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:cf:17:2f:66:d1:67:d4:39:4a:01:4d:a1:7b:4f:27:11:f6:
d1:90:b9:9f:8e:84:46:50:d3:5f:04:0f:2b:89:c7:35:6e:f7:
2f:62:e4:b9:13:18:a9:e5:1a:a6:f9:a2:73:46:32:ed:b4:18:
9f:09:38:95:60:bf:a7:f4:7b:bc:96:d7:d9:3e:0b:5f:49:94:
ff:a2:e4:19:64:c4:a9:3d:8e:ee:2e:69:2c:a4:6e:2c:3f:ec:
7c:76:79:96:db:c0:d3:6a:17:83:a6:de:5d:6d:02:58:1a:cd:
40:09:77:ef:b7:80:25:ee:2b:1c:fc:a2:7b:fe:19:37:5c:3b:
38:1b:73:d5:a7:23:34:63:46:d3:08:fa:53:f5:07:d6:19:6f:
09:14:1e:dc:20:54:c0:29:ff:41:9e:0a:96:60:29:ed:44:45:
3a:5b:f2:f8:70:37:9a:c2:14:b3:ed:3d:78:67:a7:05:d6:2a:
f0:fd:51:c3:bb:63:fe:92:6c:2c:c3:20:d5:d6:8e:5e:ae:79:
da:6f:bd:68:de:bf:a5:2e:be:88:a2:a2:7a:d0:88:a5:fe:47:
31:e0:63:29:ea:2b:b7:c1:15:d0:8e:9f:2f:ad:85:a0:95:5b:
3f:ec:2d:aa:2c:d6:ba:87:15:45:69:9a:57:6f:b6:9b:4c:d3:
fa:14:60:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:03:05 2025 by rpki-client