Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: +UUCkt5EOvA1oxsxre83nwEvdZ0FQiw9MkEPm/BywxM=
Subject key identifier: 19:6F:91:7F:82:5A:62:32:66:E6:49:F6:B2:2F:F2:70:F1:20:F8:49
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 0199FC8F59FCB0DE1A6F37D6D9DC2F248CA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 08AF
Signing time: Sun 19 Oct 2025 13:01:16 +0000
Manifest this update: Sun 19 Oct 2025 13:01:16 +0000
Manifest next update: Mon 20 Oct 2025 13:01:16 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: L6jc/G8aTKdM6Q0cUqm8gZPMexrSGItcupxAAnL2gKQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:59:fc:b0:de:1a:6f:37:d6:d9:dc:2f:24:8c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Oct 19 13:01:16 2025 GMT
Not After : Oct 20 13:01:16 2025 GMT
Subject: CN=196f917f825a623266e649f6b22ff270f120f849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bf:83:5e:71:4f:e4:e1:1c:cd:03:a7:51:35:
30:0e:c4:63:e8:77:d5:eb:c9:ba:63:ee:80:bc:4b:
a0:f1:73:3f:aa:3c:2a:d4:c4:d1:89:87:38:28:f0:
2b:c6:0b:c0:29:c8:8e:cb:fa:3f:b6:2c:13:62:5c:
c4:f8:22:11:73:38:28:a2:37:f1:c0:81:e8:f3:82:
56:ce:63:b0:94:15:dc:45:04:07:47:97:fd:e5:1c:
79:28:85:a0:3c:51:ae:f5:98:85:5e:fa:af:15:bf:
ff:b4:39:79:c8:e7:de:fc:cd:a4:e0:97:11:0d:7f:
a5:0a:dd:bc:a6:98:32:96:f9:2b:87:33:be:d3:45:
68:73:f9:07:ef:8e:dd:4b:8b:54:34:32:86:25:c2:
01:68:ee:59:e7:06:0b:f9:f1:e0:3f:b2:e5:da:cf:
5c:63:65:88:08:b7:4e:23:26:98:96:64:51:e8:17:
ff:2b:84:cb:d0:07:4b:af:f4:22:cb:6d:89:1c:5e:
27:94:85:a0:fd:9b:7c:24:d7:9e:8f:d1:00:a1:4b:
e8:74:e5:9b:94:cf:d3:82:d9:51:74:37:ba:da:12:
f9:b4:f9:a2:17:46:77:79:a2:3e:2a:23:b8:eb:5f:
7d:32:9a:4a:74:5e:e2:77:87:50:f4:85:7d:f0:ce:
e4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:6F:91:7F:82:5A:62:32:66:E6:49:F6:B2:2F:F2:70:F1:20:F8:49
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:99:d9:84:01:b6:b2:98:3c:35:6f:0e:3e:98:ac:8a:b1:71:
eb:e3:f6:8d:49:e5:6f:95:89:d6:e4:6a:31:1f:7d:9e:43:8e:
bb:41:94:a5:16:7f:fd:76:46:c5:6a:6e:6e:60:6c:37:1a:7d:
81:e3:94:44:14:61:98:a5:ea:aa:c0:ba:fc:13:75:b1:c0:1d:
8e:15:34:eb:8a:2f:32:58:d3:58:40:ac:c2:98:a4:cb:21:f9:
8d:ac:d8:37:60:d0:7f:76:c6:29:01:cc:44:f3:1f:79:4f:b2:
f7:b6:30:c7:83:40:e5:e4:1c:46:e9:5b:14:76:36:55:3b:a4:
36:43:d6:35:f3:69:76:4c:91:42:ec:4b:3a:fb:77:ce:65:f8:
26:6c:30:a6:41:4f:42:c3:15:06:38:7e:a0:a1:56:7d:50:55:
1b:08:e7:95:06:b1:77:d5:3f:21:f4:ba:67:c5:fd:14:25:f4:
21:68:c1:31:d5:6a:05:8b:be:6c:3b:f6:50:fb:60:ee:9f:ff:
70:6b:76:f0:d5:72:46:c4:9d:1b:f2:b2:63:30:51:bb:5c:dc:
69:0e:74:24:8b:37:0c:de:33:a5:a8:7b:f3:5b:33:82:0b:de:
09:01:44:27:ce:b3:ae:02:36:0f:e3:fa:8d:d0:2d:e2:ee:ec:
1d:47:05:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:12:59 2025 by rpki-client