Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
File: kN_zHRsERNQgTeFYTQDd-WjQsBI.mft (raw, json)
Hash identifier: qqfdjHKXCzvjGF9OM9aMnZv3rW2gXsJt8G+LpYdwxgM=
Subject key identifier: C2:D9:31:F1:0B:1E:3B:00:DA:A1:89:F3:74:75:5F:5F:28:04:E6:3F
Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Certificate serial: 0199FA6A79DE9AC7B99E8B9C4EEC9D1D19EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
Manifest number: 0B56
Signing time: Sun 19 Oct 2025 03:01:45 +0000
Manifest this update: Sun 19 Oct 2025 03:01:45 +0000
Manifest next update: Mon 20 Oct 2025 03:01:45 +0000
Files and hashes: 1: fhqhrm_dY2gYWI5oCp04pibtM_o.roa (hash: s8FH9ikZ8P5QdYR5uDaZwWuPJb6gYAb8hHHjeN9RXKc=)
2: kN_zHRsERNQgTeFYTQDd-WjQsBI.crl (hash: TjckDJOK6r/GwczsKj062iNznL3v4Cw7dODy+4GUXCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 03:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:6a:79:de:9a:c7:b9:9e:8b:9c:4e:ec:9d:1d:19:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Validity
Not Before: Oct 19 03:01:45 2025 GMT
Not After : Oct 20 03:01:45 2025 GMT
Subject: CN=c2d931f10b1e3b00daa189f374755f5f2804e63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c0:f8:a5:1a:b9:53:39:2d:f3:ee:94:a2:c6:
57:f8:cd:28:c8:21:0a:6e:d4:67:58:0f:3b:21:8b:
ee:c1:20:ee:a0:3a:8e:5e:a0:17:30:bc:a9:62:2f:
f7:34:67:0d:68:d3:41:c6:12:59:af:a0:94:22:b2:
32:a8:ed:c7:ed:f0:79:f8:54:07:64:5e:db:c7:45:
06:1d:68:47:73:99:de:7b:f4:e0:e7:e7:df:34:f8:
d3:6f:a1:8d:3c:5f:17:c6:24:d8:12:07:7e:cb:a9:
41:58:f4:c3:ba:ea:a9:58:d2:07:3b:4e:b7:33:af:
5e:64:0b:00:6c:93:17:05:cb:92:5b:2b:ae:1d:5a:
dd:7c:91:94:f1:7a:85:5a:e6:f4:20:bc:a5:ee:77:
23:ae:99:05:38:22:33:a3:bd:e5:11:a6:91:f7:dc:
14:1b:f8:46:c3:99:c4:83:7d:c7:b4:a4:f8:70:fa:
e6:72:5e:8c:94:eb:52:86:dd:43:b7:8f:e7:2b:57:
17:36:0b:3c:95:40:08:ae:55:78:e5:01:39:1a:69:
a0:93:76:64:da:6e:8f:1c:94:24:bb:e7:70:02:c4:
88:4b:a4:9d:ad:a2:d1:a3:55:2e:09:29:70:e1:42:
fd:99:48:c1:0a:c7:92:a6:c9:d6:3e:2d:98:cb:45:
61:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D9:31:F1:0B:1E:3B:00:DA:A1:89:F3:74:75:5F:5F:28:04:E6:3F
X509v3 Authority Key Identifier:
keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:c9:37:22:21:1b:ba:98:37:31:5a:87:05:ec:a5:a1:4d:4b:
18:ed:7e:8d:af:22:cc:66:4b:e8:93:35:73:b6:ec:24:de:d9:
07:77:39:a1:ce:5f:8b:60:9f:a7:70:2e:7b:7f:54:fd:9e:03:
47:70:59:c6:4e:bb:09:ca:d0:13:29:4c:ed:ef:86:1f:5a:f3:
0d:cf:49:1c:9b:67:1d:7f:8b:61:1e:8b:bf:79:2a:4b:b9:ba:
80:2b:6b:7e:b6:58:ff:1e:e1:a1:49:4a:6b:40:f3:db:61:c6:
a5:86:8b:d4:1a:7d:9d:e9:25:bf:0c:32:5d:bd:ad:47:05:d7:
65:ff:a4:4e:44:95:10:fd:52:a8:e3:f8:5d:4f:32:df:63:a6:
f9:a8:e0:5a:37:6f:5e:31:16:c1:75:55:aa:65:2e:95:0d:ad:
17:4d:60:bf:81:eb:ca:45:64:73:ec:94:64:f1:4c:88:b8:78:
c7:32:e0:e6:26:f9:6c:ad:fc:b0:13:35:c0:2a:fb:3b:af:a3:
28:46:19:cb:59:5d:aa:21:97:e9:5c:64:ca:10:af:ae:60:e5:
b5:53:ae:af:41:08:91:04:6e:91:86:f8:33:ef:bf:d3:f0:26:
e7:f5:5a:46:f7:f5:49:24:b6:11:0d:bf:e5:25:08:65:08:10:
ad:fe:56:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:11:01 2025 by rpki-client