Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
File: KqJOWBL8wxBrnrCusA5ie6I10FY.mft (raw, json)
Hash identifier: d5WvtJYgoA12bNXn9CBCjZ07+D9KnmSSowAFenBuYi0=
Subject key identifier: 5C:7B:D4:B5:BF:D4:55:EE:DC:60:5B:8C:B7:FF:50:EE:6A:49:83:43
Authority key identifier: 2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
Certificate issuer: /CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Certificate serial: 0199FB7CA7950DC8F5E6361026C13B16CA2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
Manifest number: 0975
Signing time: Sun 19 Oct 2025 08:01:14 +0000
Manifest this update: Sun 19 Oct 2025 08:01:14 +0000
Manifest next update: Mon 20 Oct 2025 08:01:14 +0000
Files and hashes: 1: KqJOWBL8wxBrnrCusA5ie6I10FY.crl (hash: xiMn3moBv0NuA+bwMQkbLORYDcbtrxoRt9jPAyhm27s=)
2: cNLYAjPMpLbcGOrpCslyUiLMP34.roa (hash: JmHm3+B47TlFvMWFE2W9uNvIfC/wvizwOPaVYVDTxDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:a7:95:0d:c8:f5:e6:36:10:26:c1:3b:16:ca:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Validity
Not Before: Oct 19 08:01:14 2025 GMT
Not After : Oct 20 08:01:14 2025 GMT
Subject: CN=5c7bd4b5bfd455eedc605b8cb7ff50ee6a498343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bf:64:62:9e:38:96:0c:ef:79:50:37:a2:d6:
49:13:88:80:02:7c:5c:1f:ee:7f:cb:8d:af:1f:42:
1b:a2:ec:20:aa:2c:df:50:13:34:e8:cb:3c:74:eb:
8d:4e:86:23:0b:69:49:17:44:a6:9c:de:94:b2:69:
40:e9:25:f4:a5:25:8b:21:3f:ab:20:53:fc:ff:eb:
02:a0:ec:73:27:04:09:0f:fe:96:3f:e6:c8:9d:44:
bc:f9:7b:97:7d:05:a0:80:93:78:19:cc:4b:41:4a:
ae:3b:c9:51:87:99:3d:31:0f:c6:4c:07:7a:a5:0e:
68:64:ef:24:85:80:08:fc:1b:af:15:f2:ba:d3:ba:
6c:10:11:b2:09:d7:89:e4:7d:99:2e:aa:b2:62:f7:
fc:98:0b:ea:81:d0:13:cb:d6:b5:4c:ae:9c:e1:f1:
a2:e9:4c:6c:2a:d2:95:46:b5:bd:eb:8a:f0:d7:1c:
57:a6:70:cb:ab:de:76:2e:98:b9:0c:97:24:f5:04:
39:de:cf:a1:f2:c8:07:ed:c5:d6:85:2c:90:4e:09:
72:69:02:39:66:21:a1:c6:9a:46:8d:e5:a2:a0:3c:
4b:95:52:b8:6f:ab:21:6f:66:ce:a3:e0:90:98:b4:
94:ca:2f:94:0b:47:7f:3e:d4:9f:f6:21:ee:6d:35:
35:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7B:D4:B5:BF:D4:55:EE:DC:60:5B:8C:B7:FF:50:EE:6A:49:83:43
X509v3 Authority Key Identifier:
keyid:2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:5f:2f:04:4e:52:f6:09:2c:13:c5:8a:c1:68:56:aa:18:a0:
2b:9f:42:81:b0:34:93:8e:7e:06:ef:53:6a:24:87:e2:46:3d:
d1:12:d0:98:4a:42:2e:79:7f:1d:b4:38:a5:07:2f:10:49:58:
f9:cc:0b:02:cb:9a:6c:55:97:13:ef:34:d5:5b:01:5c:1a:9c:
f5:a4:65:d7:e2:13:e0:5c:22:38:f8:c4:04:a0:a8:2f:c8:b7:
2b:17:d8:63:5e:f5:81:3f:e1:d6:d8:7f:f9:1d:c4:2f:fc:9d:
cc:c3:6b:a1:9c:b0:7d:8b:4a:e8:6b:4b:b1:dd:3d:96:40:c0:
38:6a:ae:7c:62:0b:7b:49:a6:12:87:f7:8e:af:94:97:66:68:
76:b8:0a:0b:09:66:34:18:38:ac:25:fb:e6:3f:26:ff:64:f0:
8d:6e:a4:2b:95:3c:1d:21:cc:b6:ae:e9:3e:93:8e:5d:7b:cd:
8a:dd:e4:30:7b:12:1e:ef:9c:ef:80:f7:17:df:63:98:33:0b:
76:2b:11:bd:35:0e:6c:5d:06:26:ec:2e:0b:92:39:c9:af:72:
e1:56:dd:21:3c:42:51:91:a0:bc:ed:00:da:d3:9f:f3:37:08:
3c:08:f6:bb:04:1f:68:3c:b1:72:f3:c3:e8:3c:cc:e5:77:83:
35:7b:6f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:06:00 2025 by rpki-client