Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: V5oXAPX4cSiVP4fLLVz7/zMq2CXCJNQtL/kznPLN20k=
Subject key identifier: F3:DC:5E:89:36:3F:CA:50:5B:FB:AA:C8:9D:48:C6:70:9F:83:E2:1B
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 0199FC588DCE11D60FF04455EE2D734CD959
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 12:01:25 +0000
Manifest this update: Sun 19 Oct 2025 12:01:25 +0000
Manifest next update: Mon 20 Oct 2025 12:01:25 +0000
Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=)
2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: Wmemyz/YcaRSuP/GVS6W8wE8PKiSocn5mMeSVs8hllU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:8d:ce:11:d6:0f:f0:44:55:ee:2d:73:4c:d9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Oct 19 12:01:25 2025 GMT
Not After : Oct 20 12:01:25 2025 GMT
Subject: CN=f3dc5e89363fca505bfbaac89d48c6709f83e21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:52:34:aa:f3:3f:1a:6c:cd:32:29:bb:ac:93:
cc:ac:f2:6b:b2:cf:9f:75:e8:80:bb:ed:2c:22:8f:
f4:ea:39:70:d4:50:d8:c3:05:51:eb:ac:69:c6:42:
bb:7a:8f:4b:a7:4f:f7:a8:62:e2:6d:a4:d3:ad:dd:
f5:56:41:32:01:38:ee:ac:80:26:49:39:46:01:f3:
c4:98:ef:fc:83:68:b1:d7:22:0c:74:6f:b0:91:25:
f2:d6:c7:87:97:d3:6c:de:bb:76:36:3e:6f:b7:b0:
47:bf:8f:a8:9e:cf:96:75:00:ba:e0:94:19:e9:08:
70:d0:b8:6f:68:90:8f:f2:e7:3e:ff:87:23:04:a5:
6c:b2:9e:82:d5:b7:3e:19:42:95:9a:2a:d1:bb:a4:
bf:9d:6c:80:81:fc:96:92:39:e2:e0:74:4e:8f:86:
e8:b6:83:9c:48:83:9b:26:5c:a3:c3:c1:35:e4:65:
97:a9:80:83:40:f9:ba:d2:55:cb:e2:ac:11:5d:b6:
62:2f:77:2b:96:c5:ee:85:c8:4c:e4:4a:ab:c8:a0:
7a:b7:46:7c:35:8f:3d:66:d5:4e:27:61:01:6b:01:
de:a9:19:4a:ed:85:82:1f:15:86:cb:86:ad:ac:49:
d9:ee:02:1c:fa:75:3c:85:51:71:f2:a2:93:0b:8e:
25:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:DC:5E:89:36:3F:CA:50:5B:FB:AA:C8:9D:48:C6:70:9F:83:E2:1B
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:e6:34:63:fb:8c:b1:46:31:19:da:1b:1d:18:c5:32:72:77:
c3:76:7d:4b:78:63:17:31:f0:69:17:0f:73:1a:5a:cb:ab:cf:
3a:88:5b:e5:f8:2b:f7:2d:ee:64:c3:71:6d:72:aa:0e:02:d1:
65:09:6e:a3:94:87:88:fa:61:f8:ca:7e:5c:ae:05:09:3c:d5:
9a:ff:f4:c7:93:8a:f5:56:d9:ed:b1:6b:2c:ec:a3:4b:e1:61:
13:77:81:a7:41:6c:ac:09:c9:f6:da:0e:ed:aa:ea:27:e6:62:
f8:5e:66:58:10:a6:a6:a7:73:56:93:1c:c4:39:8b:7c:89:0b:
4e:85:ac:18:c4:a1:81:cf:e1:e0:14:20:98:23:b3:ad:28:a7:
6c:a5:15:61:10:e9:ac:ea:aa:a5:1e:e5:78:f5:a3:cc:7b:b7:
ad:ef:41:06:fa:30:e4:d9:6c:a5:a1:d1:22:72:bd:a9:c2:02:
e8:20:e9:a6:f3:e9:c4:8f:3a:56:75:32:e7:4e:eb:68:ef:08:
75:11:1a:cc:55:3f:58:4e:6a:cb:08:3d:ed:4f:5a:af:b2:28:
ea:09:af:4f:1f:30:2f:71:14:c2:d5:93:70:f5:54:75:b2:52:
38:ec:70:7f:83:fb:e7:42:ca:7e:ad:2a:b9:d2:1c:e9:85:f2:
ea:4d:aa:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:34:42 2025 by rpki-client