Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
File: K2ePFPiyKI1JVXym-xvfR5OSfc4.mft (raw, json)
Hash identifier: QQDj4BIdj7MafBDrHlKEd8EgGm8He1wMjnXZZtgMugM=
Subject key identifier: 97:4F:0E:8A:74:D8:5D:51:F2:BC:D6:0B:B6:D0:D9:37:34:CF:63:F9
Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Certificate serial: 0199FB45F42879AAFFAA55C0563CA16F3F63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
Manifest number: 0EAE
Signing time: Sun 19 Oct 2025 07:01:29 +0000
Manifest this update: Sun 19 Oct 2025 07:01:29 +0000
Manifest next update: Mon 20 Oct 2025 07:01:29 +0000
Files and hashes: 1: F4GHMtEvNm46dM5TWDxthbQ6BA4.roa (hash: KVVBBRsYRigOW/uzk41RjMrk4PM1I4rBXcib4AOOQeA=)
2: K2ePFPiyKI1JVXym-xvfR5OSfc4.crl (hash: y97U9hI6p1SQFZuSkF75w8ULANNFBlKHdNK5IoKBZPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:f4:28:79:aa:ff:aa:55:c0:56:3c:a1:6f:3f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Validity
Not Before: Oct 19 07:01:29 2025 GMT
Not After : Oct 20 07:01:29 2025 GMT
Subject: CN=974f0e8a74d85d51f2bcd60bb6d0d93734cf63f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0d:66:5d:57:93:2b:52:d2:a3:21:90:65:3c:
22:47:7c:f7:72:e0:aa:36:5d:6c:ac:a5:41:01:78:
fa:cf:4f:5f:7a:81:4e:d3:8e:7d:22:e0:35:06:8d:
3c:4e:14:a2:4f:e3:d8:fe:9a:2c:e1:b7:b8:40:19:
6b:a9:13:31:27:07:a6:ac:9a:ff:2d:02:99:ae:80:
4b:1d:19:fe:11:92:bd:0d:8c:ec:2c:e1:18:1e:45:
7a:95:63:b0:f7:ec:49:96:01:9c:90:cb:c8:92:c7:
bc:d1:dd:74:ee:54:9c:f4:26:26:c3:63:8d:b8:84:
b8:c2:b2:95:37:e5:43:4e:e4:22:68:d9:b6:78:ff:
74:10:e3:9a:e8:19:9b:83:f5:48:4c:96:e2:bf:a6:
2b:22:1a:9d:9a:b0:8e:f6:4d:61:e8:b5:d1:be:1d:
a4:1f:97:dc:3e:46:e7:04:8a:4e:2e:06:62:e3:7b:
3a:91:2f:73:f4:06:3f:85:58:2f:23:b5:c0:f8:9c:
88:56:c0:88:a7:cf:5f:0c:7d:a2:a6:bf:2c:f9:8c:
50:e9:05:f2:aa:95:ad:a6:00:e5:4f:f7:e5:ce:bc:
7d:bf:98:fa:cf:31:f2:6e:dc:a9:c4:20:1c:dd:00:
f2:f6:01:28:a6:81:57:b8:e7:04:a8:fd:aa:db:9c:
c8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:4F:0E:8A:74:D8:5D:51:F2:BC:D6:0B:B6:D0:D9:37:34:CF:63:F9
X509v3 Authority Key Identifier:
keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:15:c6:9d:05:bc:f1:e1:77:c3:61:3f:d0:14:f7:4f:4b:55:
25:73:35:da:51:fd:39:49:6f:4b:b5:87:2e:8e:43:ca:34:bc:
bd:b2:cc:9b:94:25:1e:92:8d:99:dc:75:00:77:91:c9:aa:b5:
08:2a:3d:79:4d:8e:e0:7d:45:52:80:81:14:cd:ca:10:e1:6a:
c9:b5:ee:f1:5e:9a:7c:8b:2a:41:41:91:6e:fa:93:42:cb:15:
31:21:aa:d8:2b:70:00:3a:3f:80:88:78:c0:51:82:97:43:f7:
8d:4f:af:5e:a7:16:22:d2:2b:a6:e1:21:55:b3:96:fd:d7:e2:
01:3a:f5:7d:8b:59:ce:58:08:1c:97:c2:f2:74:4c:fb:85:dd:
8d:02:ef:c4:cd:5b:67:11:21:96:84:d3:55:6a:f5:e0:e6:2f:
ce:48:98:f5:4c:05:62:84:1a:5f:2b:4c:10:8c:00:98:f4:5b:
3b:49:f7:73:9b:8f:19:78:c7:4b:5a:c1:58:15:80:ac:ea:c3:
9b:ab:03:8e:57:6d:44:cf:90:43:b2:b6:2b:cc:7a:61:7b:36:
90:43:71:fe:0b:af:31:e5:5a:16:31:c1:fa:88:bf:6a:f9:12:
55:94:34:2f:d2:9f:16:b8:51:70:c3:f1:50:fc:c3:ad:57:fd:
27:78:d0:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:29:35 2025 by rpki-client