Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
File: kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json)
Hash identifier: fMx0DAz7FKamixDmdmhVRRcGZEfV1PT7AHMmeerKi9A=
Subject key identifier: C4:36:06:92:82:60:D0:4D:0A:3D:65:7B:30:6F:6B:93:53:D9:63:64
Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
Certificate issuer: /CN=9175885cf978d2ef661376214530b9ed68c5b458
Certificate serial: 0199FBEBCA09A3B2974B1CD2C57ACF4AEE4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
Manifest number: 09FF
Signing time: Sun 19 Oct 2025 10:02:37 +0000
Manifest this update: Sun 19 Oct 2025 10:02:37 +0000
Manifest next update: Mon 20 Oct 2025 10:02:37 +0000
Files and hashes: 1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: 6TSdZN5VBpP58IGYJ4yplCNDd2+XevKHkjE7Z3UHogE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:ca:09:a3:b2:97:4b:1c:d2:c5:7a:cf:4a:ee:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458
Validity
Not Before: Oct 19 10:02:37 2025 GMT
Not After : Oct 20 10:02:37 2025 GMT
Subject: CN=c43606928260d04d0a3d657b306f6b9353d96364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:86:bc:41:c3:a1:dd:fc:21:15:e3:f4:7e:8c:
90:2b:45:23:4a:a6:6a:8e:47:9e:52:14:fe:b5:3b:
3d:e5:fa:d7:7c:8f:d6:5d:eb:ba:ef:03:4a:33:1f:
c1:22:17:32:51:8a:27:4f:6c:68:5a:a7:c7:f3:2a:
ad:bb:2d:e2:18:1a:6b:3a:72:4e:c3:b1:f6:5e:75:
61:75:37:4b:85:43:22:c0:e2:4c:15:55:58:fc:3a:
5d:1f:db:3b:3c:a5:0a:62:19:30:76:46:75:67:2c:
14:8e:44:92:45:10:fd:8b:f5:d3:6a:7a:13:76:01:
40:7b:84:45:5e:bb:3d:ac:70:99:ea:45:8b:e4:ed:
4c:92:f7:50:20:8a:04:a8:d3:76:41:a6:54:19:fd:
1e:d5:57:ed:e2:b8:93:de:4d:63:18:95:14:87:c8:
07:e7:f7:b6:9e:52:ac:36:49:00:9f:e2:bd:64:d3:
97:0a:d0:9c:1c:ef:6f:e4:b3:f6:44:1a:3a:5a:e3:
80:ec:8e:3a:6e:35:3a:14:4d:28:ff:3f:75:b7:d2:
c8:d6:ac:ed:8b:32:e5:05:9e:b2:48:65:b5:ad:b4:
39:b9:e6:da:2b:8d:51:9a:1b:89:82:54:f4:7e:b7:
56:6c:c3:84:d9:21:84:15:e7:02:7e:c6:fa:9f:cf:
73:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:36:06:92:82:60:D0:4D:0A:3D:65:7B:30:6F:6B:93:53:D9:63:64
X509v3 Authority Key Identifier:
keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:6e:85:6c:df:ee:39:59:69:20:bc:65:d7:c9:84:b2:6a:80:
fb:cb:45:67:b7:4c:c7:7f:e4:05:d6:78:2e:58:65:f2:71:e3:
a9:59:fd:1b:f8:92:86:bd:c1:c0:d7:f3:01:f7:d0:08:3b:f0:
fc:d2:4b:22:1d:cf:1f:85:66:d0:74:3b:78:9e:6d:23:fa:6e:
6f:f5:2e:f9:02:79:3c:1e:5d:f9:c2:7b:ae:b9:66:88:6a:95:
7b:4f:05:af:50:9f:fd:50:d8:ac:02:a9:7b:50:e3:b9:16:93:
35:b1:f9:bf:c5:ba:d5:15:51:fc:ca:01:94:b2:76:e7:49:95:
4e:7b:3e:15:3d:8d:1e:cd:60:f0:a6:dc:b2:95:cc:85:38:09:
fd:21:0a:08:b1:9d:5d:f2:88:aa:35:b3:36:8f:0a:db:f8:f8:
3d:d7:a1:36:03:bc:7a:26:7e:f8:ba:72:0f:d8:7c:e5:03:83:
5a:08:a8:fc:dc:49:77:00:7a:46:8c:98:a5:d5:f4:53:37:6a:
a9:4a:a4:d7:3a:2f:07:88:69:5b:58:45:93:f0:24:98:fd:96:
22:86:45:67:e3:08:94:20:df:a8:41:f5:f2:13:06:51:64:75:
8d:5d:e2:85:c6:c1:42:78:17:28:f5:7f:fd:c9:12:67:76:d3:
70:00:a1:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:33 2025 by rpki-client