Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
File: KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft (raw, json)
Hash identifier: sqfIM+t/9rxNHO9Vj54z1Kqkbp4ZrLVhFN3ya8YkRDo=
Subject key identifier: 7C:76:B1:74:27:E9:BC:E1:47:01:29:86:81:9C:24:8C:60:82:99:2E
Authority key identifier: 28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
Certificate issuer: /CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Certificate serial: 0199FBEABDC233E02F57A9A9B26A5FFAD092
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
Manifest number: 0BC8
Signing time: Sun 19 Oct 2025 10:01:29 +0000
Manifest this update: Sun 19 Oct 2025 10:01:29 +0000
Manifest next update: Mon 20 Oct 2025 10:01:29 +0000
Files and hashes: 1: 0i9Bsr9ABLnx3mgPWtu21_vME3g.roa (hash: TMrcqTSOi1Ov7CcLLSWohgeiaaCi8xEADwSrQIF/DCo=)
2: KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl (hash: Gr6He6lAjSipHYuBC18h9Zh18Z/P1DUMDqg94l8qtRg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:bd:c2:33:e0:2f:57:a9:a9:b2:6a:5f:fa:d0:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Validity
Not Before: Oct 19 10:01:29 2025 GMT
Not After : Oct 20 10:01:29 2025 GMT
Subject: CN=7c76b17427e9bce147012986819c248c6082992e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:fc:66:60:b0:e9:8d:f7:b9:31:e4:10:a4:83:
79:e0:6d:81:42:6a:2e:4a:9b:2b:a6:37:12:d9:df:
55:fb:35:ce:fc:3c:4c:e1:06:12:f1:43:a0:7f:29:
82:3c:c1:9e:e0:e2:12:5f:69:35:4a:e7:12:08:1c:
44:a9:69:e2:14:05:c6:c7:a7:03:01:3c:58:80:d0:
94:51:51:01:4b:e5:55:c9:62:0d:12:b2:e2:de:49:
d8:e9:4d:af:47:ec:63:c2:5d:00:9f:55:b9:9d:ac:
8d:ec:f5:b3:4b:50:5f:b7:a6:72:84:bb:08:f0:dc:
dc:9e:10:5c:5c:fb:ad:86:0b:c4:68:c9:45:2d:aa:
f6:fa:49:4b:1a:0a:49:02:11:c1:67:bf:18:62:5d:
cb:31:7c:c4:de:36:c5:1a:31:5d:6a:f2:13:1d:03:
9d:7a:47:15:e1:ae:3e:41:10:c6:9a:c6:de:0d:b7:
79:81:22:fa:72:77:8d:c8:a9:87:d6:12:ef:42:83:
84:82:46:bc:3e:91:3e:9c:0f:58:86:59:8d:d3:c3:
4b:03:42:38:cf:a1:18:2f:fb:ee:25:f6:a3:fe:bd:
36:ee:9e:20:93:31:6c:c9:07:bf:b4:a5:27:9c:c3:
e5:b7:b4:7e:c2:c8:7a:24:3c:4b:7e:23:5b:e9:ac:
3b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:76:B1:74:27:E9:BC:E1:47:01:29:86:81:9C:24:8C:60:82:99:2E
X509v3 Authority Key Identifier:
keyid:28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:ae:c7:28:44:06:fa:d0:a6:f0:24:3c:8c:22:f2:27:dc:70:
70:c8:8e:38:8e:b6:89:e8:7a:34:39:d4:52:72:ff:25:d6:1c:
af:33:50:47:74:e1:ff:7e:f2:41:01:14:36:ae:20:c6:61:e5:
14:a9:8b:41:b0:52:0c:0b:46:70:95:d8:34:60:ee:f5:60:b8:
e5:57:1d:10:90:b7:2b:98:93:8a:1d:f2:06:fb:00:1e:8a:53:
57:dd:b2:71:b6:b2:90:74:aa:b3:f1:5d:ee:b3:ef:d9:ee:35:
c8:03:fc:94:f8:b6:43:68:ae:82:6f:48:87:cc:54:0d:17:89:
57:28:71:5c:d9:d3:d5:57:fa:e0:40:b8:44:99:74:2f:60:ef:
a4:1d:da:c1:53:85:9e:73:71:b6:91:5f:65:7b:c9:77:f0:0d:
b7:14:12:0d:e7:e2:12:e6:83:6e:c2:1a:0b:d9:1b:4a:22:1b:
c0:5d:ec:9a:be:61:d7:d6:e1:ad:d2:cd:24:d8:76:2b:9c:a5:
9e:95:f3:91:d2:71:1f:94:8e:06:14:24:73:0b:4c:c4:6c:94:
1d:8b:95:52:4c:a0:03:3f:c7:4f:de:ae:84:c2:27:43:01:67:
32:ac:a3:be:80:09:05:52:f7:39:16:34:05:25:bc:d8:c3:7a:
8b:f8:75:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:51 2025 by rpki-client