Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
File: RKqBMTnAax3PG_6DMrm4Aas-swI.mft (raw, json)
Hash identifier: nK3OJdUAARD/o2JTN497tuWE8V1olahVODykGbBEn0w=
Subject key identifier: 85:E2:87:0B:2A:FE:D0:6D:B9:0A:07:39:68:3B:98:D7:2E:6F:CD:0E
Authority key identifier: 44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
Certificate issuer: /CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Certificate serial: 0199FCFD460211BF5BB09E52C7B833C6B6DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
Manifest number: 06FA
Signing time: Sun 19 Oct 2025 15:01:20 +0000
Manifest this update: Sun 19 Oct 2025 15:01:20 +0000
Manifest next update: Mon 20 Oct 2025 15:01:20 +0000
Files and hashes: 1: RKqBMTnAax3PG_6DMrm4Aas-swI.crl (hash: +mmc/1pfDtHky3/WfaecpNXtIGeFz/4jjdXJGrI6Lx8=)
2: dulLD0ENjA9tfgPr9DrSQJxWn5k.roa (hash: ecAhh1+SnR4Xv8G0G+2S5KTuId8TsIACx8G94ng9hIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:46:02:11:bf:5b:b0:9e:52:c7:b8:33:c6:b6:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Validity
Not Before: Oct 19 15:01:20 2025 GMT
Not After : Oct 20 15:01:20 2025 GMT
Subject: CN=85e2870b2afed06db90a0739683b98d72e6fcd0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:dc:3a:17:51:1b:d6:5a:ba:71:b9:48:f6:fa:
4e:42:0f:65:f7:54:83:85:10:9f:25:6a:31:51:eb:
e0:33:0d:15:0e:c4:65:a5:ab:6a:c2:92:07:42:9a:
9c:4c:67:cc:04:e5:97:b4:8e:fd:d1:a7:86:e3:22:
ba:64:32:12:06:df:f7:72:3b:1a:62:9b:b6:37:cd:
32:99:00:27:08:08:4a:e5:8d:95:61:c8:81:a1:ab:
e0:f6:8b:55:50:39:a5:d1:a1:aa:18:3f:b4:d8:78:
1c:e9:88:6e:87:b7:b3:22:79:17:50:4e:0b:b5:98:
ab:bc:2b:aa:af:11:04:fb:b9:58:80:0c:8a:e1:02:
d9:28:06:a6:7e:11:e1:2d:af:15:a3:39:73:30:aa:
a8:77:05:d3:41:14:48:d7:5f:a4:fd:c9:74:b6:9e:
56:97:1f:c8:d9:eb:c8:89:52:8d:43:43:bc:27:c9:
cc:c2:f2:55:16:16:a4:1f:63:4f:d1:17:4a:db:da:
b4:69:2d:f0:86:75:a2:70:75:bc:6a:fc:31:e7:aa:
b9:0d:21:d1:aa:9f:ee:66:a3:c8:8a:15:bd:6e:25:
7b:42:fe:6a:37:05:25:6d:dc:4c:12:af:78:f7:de:
80:70:5e:51:ca:51:ab:6e:07:d1:ec:18:9b:f3:d9:
f1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E2:87:0B:2A:FE:D0:6D:B9:0A:07:39:68:3B:98:D7:2E:6F:CD:0E
X509v3 Authority Key Identifier:
keyid:44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:58:c2:90:e3:49:95:5e:f4:ff:53:79:90:6a:71:4a:80:33:
2a:24:e5:08:ac:18:d4:ba:b5:86:47:ff:66:2d:1d:e3:67:7a:
d0:ed:3d:1c:6e:88:0d:62:0f:7e:d6:15:19:bf:0e:b0:df:35:
de:1e:bb:dc:38:ea:6d:05:6d:fa:f2:57:4e:57:0c:3c:4f:62:
4c:16:b2:57:c7:ef:2e:99:19:bf:6c:34:06:ad:1f:28:b5:7f:
15:3b:2d:3c:39:4a:03:b6:67:f3:a4:3c:30:3c:20:e4:0a:d1:
9f:2d:c7:16:30:d4:8c:34:8a:bd:2a:bc:ea:73:26:ee:1a:5d:
05:84:99:8b:8e:46:28:e3:b3:2f:9e:a7:24:45:9a:3b:83:f3:
72:be:06:7c:2e:94:8f:10:f1:ca:9c:35:7f:9a:92:d5:4b:b9:
d0:77:3d:c3:f6:d1:d9:5d:dd:81:d9:15:7d:a0:f3:e1:be:56:
70:da:a1:8b:46:27:6b:e2:01:0e:20:4b:69:88:44:55:40:4b:
3a:c2:d4:cb:04:51:71:19:47:8d:8f:f7:f2:bb:88:c6:06:0d:
b4:b8:b7:27:51:c8:ad:29:ec:6d:f8:8d:cc:63:93:cf:c3:05:
53:98:83:21:28:7d:43:02:7f:69:67:b1:5e:d9:89:93:6c:24:
04:c9:28:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:41:44 2025 by rpki-client