Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: DDFaBGGxailMIvGFcEgMX0Gbbu0mO/NkTD0Atr6SKf0=
Subject key identifier: F1:DF:E4:23:70:00:A5:18:BE:C4:DA:5C:6F:AD:6D:8E:A1:0B:0B:2A
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 0199FB7CBE0D335E33D4CBF6B8F593589843
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 02D5
Signing time: Sun 19 Oct 2025 08:01:20 +0000
Manifest this update: Sun 19 Oct 2025 08:01:20 +0000
Manifest next update: Mon 20 Oct 2025 08:01:20 +0000
Files and hashes: 1: 7RtSvYvJ-s26z4jJmihBpc9PPTg.roa (hash: +WPL+eLMOyDQbtRDqabesCoaqYzO2nUYgvkky6oLihM=)
2: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: PcMeuTjBXyQBRVY4ToaEJC5H3LeJoUtkvLAXPQ/mJPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:be:0d:33:5e:33:d4:cb:f6:b8:f5:93:58:98:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Oct 19 08:01:20 2025 GMT
Not After : Oct 20 08:01:20 2025 GMT
Subject: CN=f1dfe4237000a518bec4da5c6fad6d8ea10b0b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f4:ff:b1:f6:63:c7:cf:6a:5b:62:80:54:1f:
23:9a:ce:79:52:a6:a4:2e:c1:92:ff:53:aa:29:d0:
44:bc:bb:90:33:94:f6:04:b7:14:c7:8c:1b:c1:f9:
dc:8d:f9:4b:76:83:48:d2:5d:2c:95:a2:88:f8:02:
5f:c1:c4:4d:c5:20:5a:4e:78:a5:ca:0a:f0:ed:c5:
1f:05:21:d0:e8:d7:e8:6e:b5:f5:2b:17:d3:29:d5:
90:69:b6:31:b8:41:13:03:cd:05:51:b4:03:4c:4c:
bd:01:0b:f5:1f:37:7b:c6:c6:b7:cd:1d:a7:87:99:
8b:17:5e:1a:6c:61:dd:84:11:2d:d4:f4:65:e3:1e:
31:65:38:e4:39:19:a0:04:9d:ba:ff:d7:a3:3f:7e:
45:2d:36:4c:bf:96:e4:d1:22:1a:b0:b8:46:82:2c:
37:49:95:de:9d:cd:1e:a1:de:ef:31:18:b3:ca:f1:
81:2e:8a:80:ae:4c:36:0b:0d:ab:53:fc:75:51:21:
91:5b:a2:2b:7f:85:42:71:ae:7c:1e:6d:20:97:fe:
d9:57:51:49:01:33:c5:18:40:4c:1c:b9:1e:42:20:
d0:a3:0c:eb:05:87:c8:f6:16:6c:25:81:d0:87:e5:
d0:c1:12:55:66:4d:6d:38:f5:93:c3:76:b7:f5:67:
b9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:DF:E4:23:70:00:A5:18:BE:C4:DA:5C:6F:AD:6D:8E:A1:0B:0B:2A
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:32:8e:a7:6f:45:b2:09:dd:97:11:58:5f:f1:cb:54:cb:09:
7c:e1:11:fd:5e:90:19:7b:20:10:c6:1a:c7:a1:c9:8a:2b:29:
65:b7:65:4c:82:69:e3:b7:69:7e:ad:21:d8:1c:b3:b3:c0:e2:
ae:ac:fa:0e:e6:cb:cc:a1:12:11:81:90:9b:7b:9c:97:e8:b2:
03:2b:fa:c9:28:72:dc:d8:94:5c:9d:94:0e:76:48:07:ef:18:
64:e1:07:91:0a:4c:09:49:0b:c3:fc:fe:c3:80:6f:f9:be:ac:
00:20:ca:4f:9f:5b:59:80:b5:3a:f8:03:50:84:26:43:8d:f4:
42:7f:5a:f1:ba:05:b2:c5:a6:7a:39:90:b6:c1:a0:09:cf:cc:
85:8c:7f:80:fc:03:70:df:ba:cb:2e:6d:d4:0f:3d:a7:ae:f1:
75:ce:25:ee:b3:34:32:64:b2:a3:21:78:66:a7:4b:37:7f:27:
04:b1:88:99:0d:d1:8d:3f:27:5c:14:f9:95:e8:ec:c9:0f:77:
ba:9e:c0:d3:56:0b:a8:cb:6c:94:c0:bf:71:c9:b1:eb:d7:84:
fc:17:ef:83:ad:43:18:b2:6b:7e:2f:f8:75:db:87:82:82:3f:
55:10:d9:63:68:69:2f:fb:8b:a9:b9:0c:ce:03:5a:cf:d2:56:
87:16:47:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:44 2025 by rpki-client