Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
File: rKZqWTivVnqeKbT3bxFWB8K4qiA.mft (raw, json)
Hash identifier: HBt220bGR7fVSU61RoEXpfmyhI9VLLEQWrSAGXYAZHE=
Subject key identifier: F5:7C:81:92:93:82:D4:49:32:79:FD:35:7C:52:8B:0F:5C:C7:B9:D2
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 0199FB4621394E32616E710E9C2F263BBCAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
Manifest number: 1718
Signing time: Sun 19 Oct 2025 07:01:41 +0000
Manifest this update: Sun 19 Oct 2025 07:01:41 +0000
Manifest next update: Mon 20 Oct 2025 07:01:41 +0000
Files and hashes: 1: UkCQdP3RrZAe6U2EZsGgmUYM6T4.roa (hash: v1eSSUjEmDBKjFNO3CwwmScWxLPiyY9bodIun8a3QK4=)
2: XeK0CZ13T3wtXBojjxpNhDhBvcs.roa (hash: x0vlqqPlTF70kEmtRSbNvFJ/mdBjM21Eu+Z28Tbo5Qk=)
3: _StlH5eIvhRhIFd9OziABO-PKkk.roa (hash: xudhtiysfPYZAmW/EkAuhJ+PTTYYin5pqKjrH0VIfs8=)
4: gt3jbvK7kO8d_xTYIGYJD2cUiGE.roa (hash: 4UbuDpyze6Z3g+LOHqr6qp0gaoTqf6iKQVEolNVaZbk=)
5: lhIVXKyvHvL1M1KrWSOUSp4Xfy0.roa (hash: 1wnwX4Q7QX+gVuRNkxMS+avsozb32JFwrZsJyBwtFIM=)
6: omAiyd9v3Wo0mGz0jaXU_l4_o1M.roa (hash: Lf7j5uINo1YYhC0kf3hJ3kdAhXxN8RCVzuVOxnQpCO0=)
7: rKZqWTivVnqeKbT3bxFWB8K4qiA.crl (hash: TApgNThukT5mPvJMc6uD2zYn70HfURbIHvDEBjdaiNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:46:21:39:4e:32:61:6e:71:0e:9c:2f:26:3b:bc:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: Oct 19 07:01:41 2025 GMT
Not After : Oct 20 07:01:41 2025 GMT
Subject: CN=f57c81929382d4493279fd357c528b0f5cc7b9d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7a:a5:c3:d1:32:64:af:38:5c:f3:b1:1d:ec:
b5:dc:16:75:e7:3f:46:ce:d1:23:bb:0b:ba:49:1e:
69:53:a2:2c:2e:25:1e:38:5e:d7:e3:6a:70:2b:56:
19:bb:32:c3:68:32:84:83:4b:15:74:6c:d1:8a:16:
86:a7:79:6a:ee:a3:15:f3:9c:5d:ee:aa:d0:c4:7d:
5f:93:20:97:c7:96:b4:ce:df:d9:2e:25:da:4d:09:
3f:62:bd:f1:dd:dc:be:fd:14:ae:19:96:12:46:65:
01:70:4a:59:dc:cf:fc:50:e1:01:01:96:e5:af:9e:
f8:e8:e6:21:64:6e:9d:af:66:5c:49:3a:82:fb:b0:
6f:d1:6c:6f:0e:b2:a1:10:35:2d:14:7f:6b:d2:c8:
19:e5:98:df:a1:63:2a:8d:43:f4:b0:0d:bf:55:c5:
c4:71:9a:74:c4:a7:92:1b:6f:25:ca:36:e4:c6:9d:
ad:88:a2:bf:80:3c:e1:1f:dc:6e:11:c4:19:1b:ea:
28:3f:ca:fc:24:a8:71:1f:b2:a6:10:fc:7f:35:1c:
47:ac:62:aa:4f:b5:8a:85:e2:6d:66:b1:89:6c:b1:
a6:51:11:4f:96:e8:19:35:82:2d:ce:79:10:85:7c:
61:4e:05:f5:7b:bf:af:73:ee:f3:2d:b3:b1:81:9c:
87:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7C:81:92:93:82:D4:49:32:79:FD:35:7C:52:8B:0F:5C:C7:B9:D2
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:1d:f5:22:e4:70:7d:df:5b:0d:5c:32:88:7f:2d:a0:73:ed:
d3:17:cb:a6:65:66:b3:64:f7:11:e3:ed:14:25:c1:28:84:cf:
d9:95:ad:f2:da:5c:06:27:51:fa:41:20:26:d4:d9:d7:40:78:
c5:24:46:b1:61:78:15:8f:8d:70:e1:45:38:d1:85:16:90:9b:
86:f4:4e:ab:9c:8b:b3:9a:e1:a8:13:68:77:e5:08:fc:7b:45:
ff:61:5c:ab:a4:23:af:4d:f7:d3:a4:fa:2a:cf:6a:8e:08:1e:
66:e8:4e:a2:50:2c:43:8c:c4:16:70:c7:6f:77:7f:3e:b5:cf:
44:37:5c:fb:c5:50:0d:b4:9c:cf:04:a7:54:cf:ab:e1:23:2a:
ff:06:c4:c3:01:68:6c:f9:46:62:8e:c6:e0:01:c0:13:78:31:
03:33:20:b2:79:9d:91:83:78:5c:d2:33:9b:fc:29:e2:e5:f5:
9b:f2:5f:dc:8d:ad:e5:df:4c:31:3e:92:c9:9e:09:c0:94:ff:
5c:19:54:ad:54:e5:17:05:cf:fe:4e:de:5b:73:01:1a:db:e3:
bb:08:8c:03:e9:25:20:55:1d:d5:4f:75:bc:02:07:cc:b1:c5:
b0:56:5b:40:85:be:b2:96:08:08:77:56:4b:46:fa:79:60:ff:
a0:e6:0d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:11:29 2025 by rpki-client