Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
File: KgV9tw5HTrSgd_oT875N17Y4C1Q.mft (raw, json)
Hash identifier: 7sT50LbYJ7LZG+3N+mVLtsInPSw2anSEDvyFDEDTLzM=
Subject key identifier: D3:65:20:9E:53:E0:F2:83:61:A4:97:37:26:A1:D1:0E:6B:2B:20:61
Authority key identifier: 2A:05:7D:B7:0E:47:4E:B4:A0:77:FA:13:F3:BE:4D:D7:B6:38:0B:54
Certificate issuer: /CN=2a057db70e474eb4a077fa13f3be4dd7b6380b54
Certificate serial: 0199FBB372A4B6D37E76ACE92A02ECE05FBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
Manifest number: 10DA
Signing time: Sun 19 Oct 2025 09:01:05 +0000
Manifest this update: Sun 19 Oct 2025 09:01:05 +0000
Manifest next update: Mon 20 Oct 2025 09:01:05 +0000
Files and hashes: 1: KgV9tw5HTrSgd_oT875N17Y4C1Q.crl (hash: uJNPdXh7EZ1gDC1z7HAx3zhfk3/DchG5Y851QiKxI84=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:b3:72:a4:b6:d3:7e:76:ac:e9:2a:02:ec:e0:5f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a057db70e474eb4a077fa13f3be4dd7b6380b54
Validity
Not Before: Oct 19 09:01:05 2025 GMT
Not After : Oct 20 09:01:05 2025 GMT
Subject: CN=d365209e53e0f28361a4973726a1d10e6b2b2061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:99:81:14:71:7f:62:26:b6:41:d0:7c:47:cd:
5d:40:62:c8:e0:9a:4c:e5:a2:56:66:e4:b2:31:76:
d2:43:03:0d:29:7c:cf:7e:1e:b8:a0:c9:4f:95:d3:
15:13:c2:33:ce:d8:4a:ba:71:fc:d1:07:ef:cc:78:
b8:5c:b9:e3:64:aa:e4:61:a2:f1:92:f2:51:d2:cc:
b1:5a:ab:2c:75:9e:5e:4f:5d:2c:45:8b:6c:05:c7:
0f:4d:16:54:d0:d3:77:4d:10:0f:4a:15:03:25:10:
91:55:cc:54:95:7a:8d:ca:ff:ad:b6:a8:b9:bb:ea:
97:51:bb:64:5a:29:23:40:a3:2c:94:5a:d2:a6:cc:
ec:c5:2b:f1:1a:e8:fb:3b:4f:74:04:0d:90:64:f5:
52:e6:46:6a:fb:30:67:c5:fc:a8:7b:22:e3:b1:10:
6a:52:b0:c3:0f:aa:b8:af:58:98:9e:9c:73:15:f5:
88:8b:56:9d:8e:e8:fc:a7:bf:03:9d:07:2d:f7:7a:
f2:18:49:81:e4:ae:ec:39:3e:5d:08:1e:d1:c1:6b:
2e:3e:91:c7:4c:d5:ec:d8:7f:67:97:6d:8b:11:c2:
1a:4e:65:83:e8:e1:f0:4a:94:df:e9:6c:90:23:d4:
9d:f0:f0:41:d2:6e:12:47:5f:14:02:53:7a:af:e4:
13:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:65:20:9E:53:E0:F2:83:61:A4:97:37:26:A1:D1:0E:6B:2B:20:61
X509v3 Authority Key Identifier:
keyid:2A:05:7D:B7:0E:47:4E:B4:A0:77:FA:13:F3:BE:4D:D7:B6:38:0B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:0e:26:41:36:26:e1:15:5c:5e:f9:b5:f1:db:ac:1c:e9:7f:
0b:2a:87:b5:4a:14:13:86:7a:5a:5e:0e:7f:0a:85:56:84:d6:
e4:2f:47:49:cc:07:70:a2:f7:ec:34:fa:c0:38:e3:58:08:41:
5a:3f:ec:ab:03:87:0a:e0:76:77:8a:c0:a8:c1:82:a1:43:99:
ac:30:8a:31:48:53:6f:12:d2:53:76:38:ee:23:73:a1:b2:d4:
9c:92:a7:de:ee:8c:2f:6d:5f:8d:e9:c9:8b:f6:ca:2b:ea:63:
f6:3e:e0:6d:63:ac:64:6f:e6:aa:48:93:4c:ae:14:7c:f0:f4:
b6:f5:88:39:df:2f:a3:7d:2a:51:8b:4d:d8:92:e8:37:ca:e4:
ad:c9:50:3f:ca:24:4f:2e:cc:33:b7:f0:0d:a2:55:89:98:ce:
a0:0d:8d:87:9d:de:c1:ea:f5:8b:cb:55:43:3c:3e:01:89:bf:
8e:a4:98:c5:cf:87:dd:04:a0:46:e6:d3:ae:42:b2:89:bb:92:
c7:a4:76:64:3b:6c:66:dd:61:be:2d:1f:a1:bd:ec:6c:38:c6:
54:69:07:97:66:18:ed:c9:70:68:44:19:70:ac:36:ea:07:23:
f5:ef:69:12:cc:ac:20:df:26:c5:3f:bc:e9:c1:ef:5f:a0:15:
dd:f5:7e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:18 2025 by rpki-client