Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: CzHOPDDpB5ZMx3jeDDLW1pPWPFcp0sKTxuq+xHLW6aY=
Subject key identifier: A0:E9:3A:C8:6F:7A:F0:BC:03:8F:86:20:BF:A0:5A:C0:29:90:A5:80
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 0199FF22CF6A70A41824DC753FF9F85C6DCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 16E5
Signing time: Mon 20 Oct 2025 01:01:35 +0000
Manifest this update: Mon 20 Oct 2025 01:01:35 +0000
Manifest next update: Tue 21 Oct 2025 01:01:35 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: Ul975iZBaESDaLj0j8JuAPxMSGw/TDkUPzhxGiq5jRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:cf:6a:70:a4:18:24:dc:75:3f:f9:f8:5c:6d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Oct 20 01:01:35 2025 GMT
Not After : Oct 21 01:01:35 2025 GMT
Subject: CN=a0e93ac86f7af0bc038f8620bfa05ac02990a580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f8:d9:6a:9a:de:4e:f8:ba:3e:69:fe:bd:e1:
70:22:d0:47:1b:4b:7b:a2:58:c0:16:b1:c0:9c:1a:
98:6d:e5:9b:d2:6f:b7:7a:4d:61:fb:29:57:0d:46:
90:51:3c:d4:28:9b:e9:e7:63:c0:94:3a:39:ef:ef:
bb:9e:54:ba:25:63:32:7b:fe:1c:95:b8:4e:cf:2a:
81:89:9f:ae:47:ff:d0:3b:8e:d1:0c:92:31:9f:56:
d8:ef:98:e0:35:b0:aa:31:96:b1:4d:09:5e:af:25:
85:72:6f:87:37:f3:a1:75:64:ab:81:75:79:5a:af:
a3:fe:70:db:6c:af:3f:f9:c6:60:b7:1c:c8:44:1e:
82:91:e9:d4:8b:c7:f8:63:df:3a:70:f1:8e:4e:5e:
05:5b:0e:f4:0c:5b:3d:12:6c:4e:85:c8:0c:f7:78:
e7:45:3e:b0:e9:b8:b2:9b:a0:43:65:5a:c1:0d:57:
10:5b:6c:29:bf:c8:42:1b:3b:7c:fe:12:cc:8d:71:
29:f3:93:02:0b:53:0a:a8:14:18:e4:2f:d3:05:36:
dd:01:a7:7f:56:d1:51:da:90:4a:c6:71:55:28:1d:
26:a7:96:df:40:cd:2a:a4:76:1c:e1:84:11:4a:a5:
6c:1d:b7:56:b9:69:4d:2a:f9:ed:08:94:58:72:31:
c2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E9:3A:C8:6F:7A:F0:BC:03:8F:86:20:BF:A0:5A:C0:29:90:A5:80
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:cb:49:96:91:2c:4d:55:2d:60:fb:e1:f3:f1:f9:4f:7b:64:
66:41:b1:2f:4d:96:ef:b7:83:24:da:64:ac:d5:14:7e:6c:b3:
16:0b:61:61:3f:32:bf:c2:7a:27:61:9f:ff:e7:2c:8b:6b:cc:
a4:ef:c0:f2:3f:37:0e:bc:19:cd:26:0b:51:af:5d:16:fd:85:
18:4f:27:ad:a1:35:24:6f:3a:81:34:a8:a5:98:1a:d2:67:ab:
e6:4b:b7:2c:d0:ca:e6:ad:93:58:c7:96:94:77:a3:2a:9e:52:
7a:84:59:2e:3f:b8:4d:ad:05:8e:2f:69:1a:fb:eb:5a:12:be:
28:4b:59:95:c3:b6:54:c1:40:f7:54:21:18:43:4d:ea:0b:29:
e7:6a:45:69:1e:90:07:0c:30:72:f5:31:a6:4a:e9:7c:7e:f0:
25:d0:f3:31:4d:97:bc:21:52:b5:5a:8d:11:88:00:2c:f8:bf:
8f:fa:3a:ba:e8:65:0c:74:10:f5:a3:a5:1b:b1:8d:95:44:ba:
dd:b2:84:57:db:79:8a:2f:da:0a:b0:44:95:fb:3e:92:55:15:
fb:f6:b7:1b:3a:66:3b:bd:1c:af:a1:49:ba:25:cf:6c:7a:d7:
d1:33:23:28:0e:6a:60:9b:35:a6:25:32:f9:36:60:31:b1:d3:
27:bd:9f:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:55:43 2025 by rpki-client