Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
File: KMvNlssXsh1iT9IXD9DXCBY68j0.mft (raw, json)
Hash identifier: gPgPr9s8fwvsxsbZIagNNU1cwL10IR0zjhiTjFyZsvA=
Subject key identifier: 61:75:4A:B0:58:20:E6:7B:56:12:26:B1:EB:C6:9C:62:73:AC:1F:58
Authority key identifier: 28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
Certificate issuer: /CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Certificate serial: 0199FFC797E84E8023ADD55A9AC3270321B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
Manifest number: 100C
Signing time: Mon 20 Oct 2025 04:01:34 +0000
Manifest this update: Mon 20 Oct 2025 04:01:34 +0000
Manifest next update: Tue 21 Oct 2025 04:01:34 +0000
Files and hashes: 1: KMvNlssXsh1iT9IXD9DXCBY68j0.crl (hash: ZuFWHUMO5F8pFxFTwYZeLHoOpvKN6320FhGau4RGuOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:97:e8:4e:80:23:ad:d5:5a:9a:c3:27:03:21:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Validity
Not Before: Oct 20 04:01:34 2025 GMT
Not After : Oct 21 04:01:34 2025 GMT
Subject: CN=61754ab05820e67b561226b1ebc69c6273ac1f58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:83:8d:fc:ce:5e:10:98:5b:34:72:00:6d:24:
6a:94:fe:be:87:4a:3e:32:30:70:47:e1:6f:40:9d:
15:87:d5:18:e3:f4:d3:0e:e5:29:11:0d:4f:5c:4d:
a5:2d:ef:bc:a0:c9:d1:17:b9:bc:92:36:bc:18:9b:
d0:6d:65:d8:b0:8e:5d:78:81:38:ad:f2:44:b9:61:
91:19:02:48:2b:a2:5c:0d:7a:5d:44:f9:e2:4e:a4:
fa:ea:97:61:cc:81:55:c3:05:50:18:12:e9:30:d9:
9c:e0:e6:14:fa:38:b7:d8:df:e7:36:42:cb:13:57:
21:d7:73:2c:d5:6f:14:6e:06:01:48:36:72:e6:75:
04:cd:c2:0d:f3:c7:66:79:ac:40:89:01:14:4f:d7:
32:01:20:51:bc:20:67:01:2d:a9:1a:57:24:52:56:
02:d2:8f:b5:21:9b:3c:72:9a:a8:ac:1a:e1:19:17:
ae:64:be:b5:ed:2d:ff:17:9e:76:7f:ec:9c:d7:47:
dc:02:23:41:78:af:2e:d8:95:f4:9c:cb:a6:28:28:
66:5b:8f:17:73:0a:cf:6a:14:11:b4:4e:66:f9:86:
17:52:16:ac:2e:a3:ba:1b:72:c3:0f:bc:77:26:0f:
91:5a:3e:9c:6c:94:79:69:2e:ed:7b:02:f2:8a:33:
dc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:75:4A:B0:58:20:E6:7B:56:12:26:B1:EB:C6:9C:62:73:AC:1F:58
X509v3 Authority Key Identifier:
keyid:28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:a0:4d:04:32:9e:e9:4d:29:88:9e:05:ef:59:de:d8:b6:2b:
b5:a8:8d:a9:70:73:87:63:f7:e1:0d:30:60:6b:3a:99:fd:14:
8c:6e:12:91:6d:14:35:25:f6:88:26:bd:e0:c4:cb:be:38:b7:
34:4f:06:6e:e4:9b:16:41:44:0c:cf:ff:36:2f:55:2b:21:03:
80:3a:08:cf:6f:e6:06:16:d4:fa:7d:9b:47:93:e0:53:f1:27:
ac:95:e9:da:3a:5e:36:1b:e6:43:53:cc:3e:ff:57:88:6e:2c:
cb:98:ff:ef:d3:76:a0:d8:54:8e:a4:1a:1d:e3:f6:1d:75:a3:
81:13:ea:36:25:06:fc:f9:96:50:9b:1c:57:ef:29:ea:ec:88:
43:b9:2d:9a:62:d2:80:62:6b:34:d0:a4:4a:94:99:a5:72:8b:
b7:02:fb:55:4b:60:14:ec:10:f5:93:1b:b4:89:dd:59:27:f9:
85:c7:0b:50:aa:1a:16:9e:09:7f:69:4a:b3:f3:69:9d:8b:0e:
3d:61:da:73:69:54:5c:6c:b1:3e:2d:0c:6c:1c:e3:f1:9c:59:
06:d2:d1:6d:75:ea:31:58:a5:2d:72:3c:ec:e0:c4:ca:13:12:
dd:9c:67:c7:69:f4:ae:41:a2:3e:68:a0:2a:74:de:bd:9f:b9:
fa:db:e4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:24:13 2025 by rpki-client