Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
File: KFJhMsT89rTN_3QCVWAsz53LBC8.mft (raw, json)
Hash identifier: P6WoncBOxKa2bqqVEBBk7dnmB/QdVsfXoZyMSkydHzE=
Subject key identifier: 8A:32:10:38:90:8B:E8:D2:D3:BC:86:C0:DB:CD:33:0E:4D:1B:48:3A
Authority key identifier: 28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
Certificate issuer: /CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Certificate serial: 0199FEB46B885CA8BCF898F800413C06FEB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
Manifest number: 16E4
Signing time: Sun 19 Oct 2025 23:01:00 +0000
Manifest this update: Sun 19 Oct 2025 23:01:00 +0000
Manifest next update: Mon 20 Oct 2025 23:01:00 +0000
Files and hashes: 1: KFJhMsT89rTN_3QCVWAsz53LBC8.crl (hash: kv6FTOoEVT0P5TjPvVriEvWdaoobeq2N/HF5RBtkPZ0=)
2: ZhfTjFWerubW-wXYF5uHcQImBi0.roa (hash: ETJfKBPXF5SBOehYcFURbCVWhceZCDiTMb0cVW0YkTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:6b:88:5c:a8:bc:f8:98:f8:00:41:3c:06:fe:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Validity
Not Before: Oct 19 23:01:00 2025 GMT
Not After : Oct 20 23:01:00 2025 GMT
Subject: CN=8a321038908be8d2d3bc86c0dbcd330e4d1b483a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5c:92:31:bb:13:72:ec:71:fd:fe:ff:b2:da:
51:25:a6:28:4a:4f:36:0c:86:cf:81:81:b3:b3:30:
23:b9:89:27:55:1a:92:4e:13:04:69:51:9c:e9:83:
48:b6:b1:e3:cf:71:0d:5e:ff:41:6e:19:52:14:64:
47:2d:91:57:19:a2:d7:d5:e5:c1:f8:d7:c4:02:58:
9e:6c:d1:b1:e6:24:05:bd:bc:86:f4:80:90:d0:5c:
09:cb:02:48:f4:ae:eb:11:16:84:1c:89:f3:1f:f6:
9c:4b:c5:8e:61:44:09:1b:42:61:c3:07:c6:94:31:
2d:34:7c:e7:96:e3:9e:1a:a2:15:c8:1f:8f:29:38:
f6:eb:08:ba:04:70:2c:a8:77:ae:9a:7a:7a:95:20:
5e:37:09:d8:cd:57:90:f5:3d:8f:55:c3:26:d5:2f:
93:25:91:fa:18:ad:eb:07:b3:7d:b9:ae:23:ae:d5:
d5:6f:81:5a:5a:9b:29:89:ee:01:7d:f4:06:20:ab:
27:65:14:b9:6a:5c:0d:6b:e6:4f:21:05:02:38:16:
b8:90:78:7e:0d:9b:54:18:87:a0:ce:9b:65:b3:64:
46:05:15:4f:12:0d:60:ff:33:d5:16:0d:4a:a4:78:
12:37:22:c9:ad:8d:8c:4d:34:a3:86:71:7c:70:fa:
c1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:32:10:38:90:8B:E8:D2:D3:BC:86:C0:DB:CD:33:0E:4D:1B:48:3A
X509v3 Authority Key Identifier:
keyid:28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:78:09:c1:7c:ec:cc:1b:56:50:57:3f:40:17:e5:cd:79:42:
10:74:3f:b3:1e:fe:7c:5f:7a:67:dc:83:08:62:a9:c9:69:02:
2d:7a:8b:1e:70:c3:3f:0b:11:97:17:3a:be:52:9e:14:c2:02:
06:ad:eb:01:33:73:70:f7:e5:9b:b6:1e:d3:dc:f7:33:bd:c6:
1e:bd:64:fa:df:e9:9b:2d:2c:5a:99:3b:d6:61:3c:8e:f2:84:
3e:85:55:60:f7:08:74:e9:da:7c:2a:00:9e:ba:c1:3c:1c:ca:
77:d8:14:95:42:2c:1c:f2:e7:0c:cd:09:45:2d:4e:2f:a4:0b:
0f:11:b9:78:f7:13:78:a4:d3:04:b2:16:b8:45:23:b5:8b:87:
e6:cc:d2:db:57:54:a3:f5:a7:af:5c:7c:6d:67:22:9e:e1:29:
f0:70:73:54:4c:c7:45:9d:ac:18:e7:d4:0d:38:30:13:b8:63:
10:3f:36:23:52:0e:9a:59:bb:26:e7:28:c7:ca:d4:de:bb:ae:
3c:16:ae:7e:d1:ac:e3:fd:e3:f8:91:d3:50:34:7c:ae:4b:c5:
3e:35:ee:6e:a5:3f:5a:68:90:2a:2e:04:26:b6:e7:81:fa:7f:
77:6c:5a:a8:17:8b:95:c7:10:63:ab:c9:3c:4f:79:97:a9:a1:
ab:fc:ae:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 05:21:28 2025 by rpki-client