Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
File: KfFNQRwg7PxJYhX82w9D2EchkJY.mft (raw, json)
Hash identifier: WU/eky5EtDsjBctqiB5kkrRHsq0wC8fS1nkNTYp3CIk=
Subject key identifier: F7:4D:4F:15:85:64:61:2D:69:79:D8:E0:3A:B4:97:69:3C:39:E1:E7
Authority key identifier: 29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
Certificate issuer: /CN=29f14d411c20ecfc496215fcdb0f43d847219096
Certificate serial: 0198D8514A9ED25068727700516D5CBD6F37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
Manifest number: 12DE
Signing time: Sat 23 Aug 2025 19:04:22 +0000
Manifest this update: Sat 23 Aug 2025 19:04:22 +0000
Manifest next update: Sun 24 Aug 2025 19:04:22 +0000
Files and hashes: 1: K3k_GCXnaMv59dLKq-rHfPOR6HE.roa (hash: 5Q6jyJMRb9gad/mJLct+/fYWsLJ0GiEE1wJJESuoLsM=)
2: KfFNQRwg7PxJYhX82w9D2EchkJY.crl (hash: /91US45K7/XA57ZMQRNsLV+vEv+yz50R0J114HRspXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:51:4a:9e:d2:50:68:72:77:00:51:6d:5c:bd:6f:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f14d411c20ecfc496215fcdb0f43d847219096
Validity
Not Before: Aug 23 19:04:22 2025 GMT
Not After : Aug 24 19:04:22 2025 GMT
Subject: CN=f74d4f158564612d6979d8e03ab497693c39e1e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:04:fd:b9:1b:24:1b:f9:d2:8e:94:79:9b:43:
c8:cb:83:4a:11:03:dc:89:db:ab:d1:03:c6:a1:d9:
9b:ec:cd:1b:0b:98:66:27:0a:90:10:ba:60:89:00:
67:55:a1:11:3e:7d:c7:7d:27:42:9c:d3:df:5c:1a:
b5:29:a8:2e:3d:09:05:3d:25:86:ba:0b:e8:1b:29:
b2:dc:3c:6d:2c:2c:3f:19:3c:7d:95:a0:4e:e8:da:
83:2f:51:04:1b:95:b8:fe:46:2e:6a:f8:42:5e:d6:
0b:7f:38:6c:68:66:66:cc:7f:f0:60:45:b3:54:fc:
2f:3b:b0:fd:96:8c:25:35:b5:56:d7:59:b7:a0:5f:
69:d3:6c:a7:54:47:0a:02:d8:af:95:10:53:a4:6f:
77:91:10:f5:66:d8:d9:2a:12:23:e7:d8:d3:91:06:
31:b2:a4:f0:34:b8:b3:5b:dd:69:8e:2e:47:e4:fc:
24:db:68:bc:ae:71:72:a8:7f:41:d7:bb:60:be:d9:
40:3d:7e:b1:61:fa:60:58:23:36:a1:a9:df:31:3d:
62:dc:e6:35:57:51:5e:b2:46:e9:aa:44:7e:98:28:
49:76:13:ef:3d:d7:d4:9a:59:58:d8:30:64:8d:e0:
00:ad:0d:af:63:9c:a7:22:57:0c:63:ed:98:f8:98:
ad:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:4D:4F:15:85:64:61:2D:69:79:D8:E0:3A:B4:97:69:3C:39:E1:E7
X509v3 Authority Key Identifier:
keyid:29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:78:3e:89:8c:e5:c2:b5:68:fa:87:17:7d:3d:6f:33:ca:9b:
89:30:6d:67:da:d3:fd:17:d8:70:e9:24:2f:62:41:42:78:ea:
66:1e:3f:94:97:4a:f8:37:2e:91:ec:60:a2:bb:56:b7:21:99:
91:d3:0b:dd:83:b6:12:50:e6:eb:9a:41:41:1c:41:25:47:f5:
ee:b9:f0:b8:05:84:19:1b:21:7e:8d:84:3f:61:6a:b9:f7:48:
20:63:d2:31:b7:ec:3a:7e:ec:68:df:fa:46:11:14:0a:61:70:
83:af:2f:69:29:a1:84:50:c9:4c:61:fe:0d:97:47:4b:97:ab:
00:ae:e9:ff:d8:00:91:3a:4a:ca:54:c8:ab:7e:20:14:9e:61:
12:aa:af:00:22:3c:b7:1a:6d:86:11:58:91:ec:73:43:86:38:
6a:8b:73:ee:4e:f5:5b:ca:1a:2b:a1:f2:db:7e:18:71:60:46:
ea:99:0e:b0:56:da:90:7f:67:be:92:13:56:85:ce:b9:73:2e:
d7:05:dd:d3:44:9a:0b:67:2a:2f:a7:2f:47:40:cb:b2:c0:a9:
48:72:11:bb:eb:e0:b4:9e:ac:89:1e:e8:70:f7:6a:0f:41:85:
25:d3:8a:78:f1:e4:7e:fa:c0:7e:c2:36:8d:8c:ca:bc:6c:81:
0d:e3:12:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:19:38 2025 by rpki-client