
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
File: KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json)
Hash identifier: ZW4Qg1wACvmyyr8Myie5U5058s4PBXlFf4+xaHnOD7o=
Subject key identifier: 53:9A:7C:DC:02:9A:85:BE:A1:C4:BD:4E:69:06:76:FA:20:14:4E:7D
Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d
Certificate serial: 0199FB7CF007AB07469C48988CB71DC8D36B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
Manifest number: 0BFE
Signing time: Sun 19 Oct 2025 08:01:32 +0000
Manifest this update: Sun 19 Oct 2025 08:01:32 +0000
Manifest next update: Mon 20 Oct 2025 08:01:32 +0000
Files and hashes: 1: FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa (hash: dI7TXuZLS0+y6udtXa2yol0ikupwyIZAlaHrmt/VDI0=)
2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: dsUaA8NVf3dWeP3LjpVkPE1DLes+3fAcrnlPcJCOVHU=)
3: z3-dsZKj9j7nCKXS-M2vtq4aJrk.roa (hash: 28apFTsYy4v/YWMNME9MOhYcWfL7kBuIz5Y1C6vARJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:f0:07:ab:07:46:9c:48:98:8c:b7:1d:c8:d3:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d
Validity
Not Before: Oct 19 08:01:32 2025 GMT
Not After : Oct 20 08:01:32 2025 GMT
Subject: CN=539a7cdc029a85bea1c4bd4e690676fa20144e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ec:4d:67:b1:be:b3:48:97:bf:de:b3:8c:83:
92:57:18:0c:0c:d9:6a:36:e6:94:0e:a0:34:83:9e:
1b:a6:44:b9:76:c8:23:e6:54:c9:a5:8a:7a:e1:87:
eb:7c:04:bf:f4:a5:8c:1d:d7:c9:27:99:49:9a:31:
4b:72:0f:db:0c:25:1c:63:d7:7e:5d:e4:b3:1d:17:
ad:e5:ca:75:b1:07:e3:e3:12:a0:79:d4:6d:61:3b:
5a:87:da:cd:c3:b0:ff:0f:b8:11:c9:78:29:08:b9:
6d:ca:c5:44:4f:3c:bc:0a:46:eb:e5:91:6a:57:94:
ed:69:89:62:2d:dc:eb:e5:10:c4:3f:30:67:74:53:
37:05:52:77:44:df:ab:01:11:24:9a:6a:a7:b8:a9:
0b:e3:9a:e3:60:34:4e:d2:c9:0c:39:a2:9f:3d:15:
16:06:0e:ab:bc:8c:ae:01:7d:53:7a:1b:b9:46:e7:
64:41:92:dd:d1:27:48:3f:8c:f2:bc:1c:27:ee:38:
61:13:53:ff:6f:fd:96:2e:be:00:27:37:e5:05:f4:
2e:58:33:5d:bd:db:52:ed:05:91:21:48:90:52:d5:
83:ab:a8:62:ee:d6:ce:b5:da:6e:e3:b5:f1:96:f8:
db:db:be:91:f2:f9:c7:56:48:68:c5:6b:f3:b4:fd:
25:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:9A:7C:DC:02:9A:85:BE:A1:C4:BD:4E:69:06:76:FA:20:14:4E:7D
X509v3 Authority Key Identifier:
keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:89:6e:53:0c:62:62:ec:db:fc:1a:bb:73:da:02:66:46:80:
85:78:b0:c7:ec:9f:ad:79:f5:27:5e:ea:f6:8f:76:a6:42:6c:
78:7f:cd:b6:c1:93:47:ce:78:25:2f:88:af:b2:dd:7b:e7:27:
e1:96:db:ee:01:ac:e1:1c:3d:e1:3f:14:48:ff:d7:11:97:59:
0c:41:b3:0e:c1:15:69:11:df:66:7f:d5:53:72:e5:1b:b5:58:
fe:41:ef:f6:d6:57:a1:f1:0b:e2:3a:d5:86:13:85:0a:65:51:
3b:a7:70:43:74:d1:f9:fd:9d:f4:78:0b:c4:39:f0:53:c3:8f:
d0:fe:00:3f:af:33:9f:96:25:88:93:27:6e:24:a8:2f:cd:a3:
2c:fc:f4:2f:4d:9b:07:2d:a8:5d:24:4a:24:4a:34:10:fa:bd:
dc:5e:0d:3c:e0:a4:02:7d:ab:ae:5f:07:60:ec:d2:d1:91:2a:
13:dc:fe:12:17:21:7c:55:d3:7a:84:2c:e5:d6:5f:ac:64:69:
84:31:b0:be:3f:4d:6d:27:29:a3:fd:f5:85:be:a5:44:2d:62:
4d:f1:3c:3e:02:34:ee:75:83:5a:b8:c2:e4:ef:20:5a:71:34:
64:14:9a:ab:8a:8f:cd:89:38:7e:c2:41:97:e6:3a:9c:0f:17:
56:9c:b8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:18:16 2025 by rpki-client