Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
File: K_CgGXhoxtjDTdFrP0TezF5CNvU.mft (raw, json)
Hash identifier: hMOpqQsGztdga+izO7qnpLi1EkHwcx+QPfbk3rKQc2M=
Subject key identifier: 33:E5:23:C4:94:63:E3:A8:C1:3F:C0:CC:8C:52:2A:8A:A3:1E:E4:11
Authority key identifier: 2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
Certificate issuer: /CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Certificate serial: 0199FBEB79267AEC4B1AFEEA314F2342F118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
Manifest number: 0E9A
Signing time: Sun 19 Oct 2025 10:02:16 +0000
Manifest this update: Sun 19 Oct 2025 10:02:16 +0000
Manifest next update: Mon 20 Oct 2025 10:02:16 +0000
Files and hashes: 1: K_CgGXhoxtjDTdFrP0TezF5CNvU.crl (hash: 4LhNp5J3UAgyYHorzVB77QjfaQeCsWp+VoUoJOz5ZAM=)
2: cwewYqqUz_DTY7N101NBNvby5-A.roa (hash: 12Ilbr32JYBfPHCal30nzRY5XUe8GWiDmB7OIucWhgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:79:26:7a:ec:4b:1a:fe:ea:31:4f:23:42:f1:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Validity
Not Before: Oct 19 10:02:16 2025 GMT
Not After : Oct 20 10:02:16 2025 GMT
Subject: CN=33e523c49463e3a8c13fc0cc8c522a8aa31ee411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e7:e2:4a:47:b8:48:3d:a1:24:1a:8a:df:f4:
3f:8c:cc:a9:10:49:69:2f:45:a5:39:2e:91:6a:72:
67:44:0a:d0:ef:f6:27:ba:1a:d3:2f:9a:6e:a2:9c:
77:7a:fd:33:72:cb:99:0a:ae:f8:fd:c7:d2:9f:f7:
af:13:c1:78:43:cd:1f:d8:ec:47:dc:0e:4c:70:2d:
4a:c1:86:98:a3:b3:7c:dc:d6:6f:12:a9:f8:3b:d7:
2a:50:7b:8c:f3:cd:53:06:e6:19:30:94:ed:a2:5b:
17:40:9d:21:9f:42:67:53:b1:8f:ef:db:41:91:9c:
2b:c0:c0:ce:1d:77:cd:8d:18:1c:c4:cf:7f:22:b6:
84:7c:32:15:e8:55:79:1e:3c:5e:5f:5e:e0:0b:6f:
4e:93:73:44:c1:89:9e:f0:df:cd:b1:60:10:63:d3:
eb:c7:8c:7f:b9:4e:d1:5f:4d:01:3e:0c:3a:60:f3:
4b:b8:ec:e1:58:b8:c7:da:c5:ca:ec:68:11:51:61:
c1:c6:60:62:08:91:99:90:fa:c4:de:1e:f8:85:7e:
3c:65:90:1f:93:87:e1:ef:6a:3b:ba:a8:3c:49:dd:
45:83:f5:bd:72:7f:39:f5:05:22:21:01:c0:40:a7:
15:56:b7:5b:5f:81:28:5d:67:bb:34:80:c8:92:c2:
44:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E5:23:C4:94:63:E3:A8:C1:3F:C0:CC:8C:52:2A:8A:A3:1E:E4:11
X509v3 Authority Key Identifier:
keyid:2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:76:56:f9:d7:23:b3:ff:e5:7b:51:5c:ce:63:31:cb:c4:49:
ca:87:e2:81:c7:f5:6d:30:df:8a:ee:a4:a2:61:03:d5:ff:54:
24:66:70:a6:f8:f4:dc:79:f9:82:8c:be:ff:e8:ee:12:cd:66:
59:9a:e1:13:21:fc:62:28:5b:56:09:9f:c2:6b:ce:54:12:e6:
36:ce:ad:40:16:bc:16:68:7e:6b:9c:d3:77:e1:d7:8a:82:69:
09:6e:13:1b:13:5e:70:8b:fc:16:1b:c3:68:25:51:81:db:e8:
23:8f:35:11:f1:3e:fc:6c:7b:77:33:56:f6:99:e6:be:f8:09:
e7:e3:d5:bb:d1:de:5a:3f:40:3e:cb:6d:c4:23:b2:5d:0f:5e:
bc:c0:f6:13:c0:0d:61:54:0b:3a:3f:ec:c0:d2:df:05:e9:e0:
74:1b:57:61:73:4d:93:92:2e:2d:6c:db:db:6b:99:cd:d8:0f:
1e:26:a4:82:df:25:d7:fc:c3:3a:c6:81:ee:6d:ea:db:17:2f:
98:9b:6d:37:68:95:6c:21:12:76:f2:02:29:a3:00:93:c4:a9:
84:58:69:c9:4f:c2:57:e6:c9:52:8c:0f:3f:87:97:5a:9c:0e:
52:73:4b:30:a8:c7:f6:0d:e3:c3:6a:0d:0f:71:a2:61:54:31:
ea:7a:31:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:37:12 2025 by rpki-client