Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json)
Hash identifier: kS81I9IYdDSH7vdw6VTyTvwMTNIeSfhl/NF2QmtUya8=
Subject key identifier: 32:59:24:6C:57:43:51:45:35:CD:0F:49:93:C2:2A:DA:4C:DA:72:DF
Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Certificate serial: 0199FC58555E376C63AB805D9DC2D6FEED01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
Manifest number: 0D8B
Signing time: Sun 19 Oct 2025 12:01:11 +0000
Manifest this update: Sun 19 Oct 2025 12:01:11 +0000
Manifest next update: Mon 20 Oct 2025 12:01:11 +0000
Files and hashes: 1: 0vFnPnyD0rk0NBq-vHcuUjmsih4.roa (hash: 8C+9WOepMdgxD+Xcj7Wjy9LCISmYrp2hucRDb6Vj6WM=)
2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: FqPSxEehZgYovm4a17BDAn+mveJ0wLLDmYb0POXIX/k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:55:5e:37:6c:63:ab:80:5d:9d:c2:d6:fe:ed:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Validity
Not Before: Oct 19 12:01:11 2025 GMT
Not After : Oct 20 12:01:11 2025 GMT
Subject: CN=3259246c5743514535cd0f4993c22ada4cda72df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0e:91:eb:c3:8a:0e:4b:fa:1b:57:78:ae:4e:
cb:57:9d:6f:ed:61:f3:9f:f5:37:1a:f5:2b:2c:3c:
8a:2c:44:7e:31:97:52:2e:b3:3d:a7:f5:97:c1:c2:
cb:2c:65:49:1d:7b:81:f3:02:54:da:95:bb:d3:4c:
6b:5a:2c:bd:25:7a:60:03:24:e7:f1:0d:da:c8:21:
04:78:36:48:31:ae:b6:27:ed:7e:5b:9f:27:ef:a9:
f1:dd:37:ab:66:d5:3f:4e:56:1b:a0:9e:cb:d6:13:
57:12:ca:dc:5c:82:7d:76:42:4b:1e:14:77:52:fa:
c7:2a:ef:12:c6:d3:5e:21:4b:6e:55:00:b8:3a:ec:
9d:34:6a:b8:a7:30:c3:b3:82:18:9b:74:0d:cf:f9:
0e:13:6b:ec:62:3a:99:aa:a4:2f:1a:57:78:f8:69:
f7:ad:6a:13:54:98:34:b2:dd:37:23:b5:fb:8a:64:
4f:52:b0:ba:ae:d7:8c:57:c8:fe:8d:d3:93:a8:bc:
be:9f:1a:7d:11:97:02:13:c5:e7:66:c3:1c:16:b1:
70:ce:83:d6:55:ae:12:52:a2:05:64:fc:06:3d:24:
4d:d7:42:c8:1e:f7:8b:c5:cf:d2:c9:67:fd:03:97:
9c:3e:18:dc:91:d0:f0:e9:1a:79:08:56:8e:85:90:
b9:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:59:24:6C:57:43:51:45:35:CD:0F:49:93:C2:2A:DA:4C:DA:72:DF
X509v3 Authority Key Identifier:
keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:d3:07:91:63:d3:99:cb:5b:10:0f:00:d2:24:6a:d6:34:98:
f8:d9:2b:aa:dd:32:be:56:25:0e:c2:07:b3:23:3e:78:f9:7f:
83:03:21:16:22:f5:d0:fc:1a:0a:5d:0a:93:eb:ac:57:23:a5:
b5:69:da:f8:b4:0e:6a:fc:4f:90:8f:ed:f4:9f:89:dc:06:0b:
b4:f9:e0:29:e7:4c:f9:c8:5b:3b:46:25:10:31:87:4d:5c:ad:
0f:b0:0d:15:39:cd:94:57:c9:11:de:b6:e9:23:ea:f4:f3:a3:
1d:83:dd:ef:0e:25:48:d3:8c:7b:57:e2:10:68:3a:da:6f:2d:
67:12:49:0d:ee:3b:ee:6f:91:40:94:3e:22:5f:74:c9:54:bb:
2e:69:b7:2c:13:5f:1d:00:a1:d9:d8:39:ba:c1:16:6d:7d:fd:
3b:4a:cf:4f:87:52:d4:a4:8c:bf:8b:11:25:a4:94:16:65:e7:
e8:fe:c5:3a:18:7b:3e:17:8a:e4:6f:2a:8c:a8:36:56:56:46:
f1:d2:a1:fb:63:82:59:f8:15:68:25:f7:c5:44:fa:ae:4e:80:
bb:0c:46:60:45:56:74:6e:0e:e3:1d:a2:95:19:50:9d:35:be:
e6:55:b7:91:4d:0d:7a:66:12:87:bc:7e:00:28:48:6f:9f:72:
9c:de:b7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:02:08 2025 by rpki-client