Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
File: kgm43V6nJYkIN4Zh8rqe-JrToLE.mft (raw, json)
Hash identifier: 8BifAN/ekMruYjAhVRfhUujWUZuYh2Fu13jPAzCDlnI=
Subject key identifier: 32:17:C6:54:1F:70:EF:0B:A6:58:02:45:49:82:10:3B:2B:E0:C7:BB
Authority key identifier: 92:09:B8:DD:5E:A7:25:89:08:37:86:61:F2:BA:9E:F8:9A:D3:A0:B1
Certificate issuer: /CN=9209b8dd5ea7258908378661f2ba9ef89ad3a0b1
Certificate serial: 0199FC2165B7686C8120F628DC4D6ADE1A4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
Manifest number: 0255
Signing time: Sun 19 Oct 2025 11:01:11 +0000
Manifest this update: Sun 19 Oct 2025 11:01:11 +0000
Manifest next update: Mon 20 Oct 2025 11:01:11 +0000
Files and hashes: 1: WReM2adAhR_LtpNyhGqyNjE1Y4M.roa (hash: CfgqMj+xDVkXamVtZy6LM6aMe3AmsivTTFfgXAb+rPQ=)
2: kgm43V6nJYkIN4Zh8rqe-JrToLE.crl (hash: krOvyD24Xy41q475NsxYVj0UWKuMeanJa9e3nAz0bB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:65:b7:68:6c:81:20:f6:28:dc:4d:6a:de:1a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9209b8dd5ea7258908378661f2ba9ef89ad3a0b1
Validity
Not Before: Oct 19 11:01:11 2025 GMT
Not After : Oct 20 11:01:11 2025 GMT
Subject: CN=3217c6541f70ef0ba65802454982103b2be0c7bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:b7:81:f0:6e:fa:dc:21:e0:2e:3f:1d:e4:7d:
36:90:4e:c3:59:52:fc:bf:6b:cd:7c:43:ac:48:92:
f1:80:c7:89:68:02:69:f7:13:79:b4:13:5e:6c:b1:
66:79:03:84:eb:a7:11:6d:32:6a:79:7f:e9:4f:80:
dc:78:96:6c:ca:d3:f0:d4:f7:53:ff:72:2a:4a:c6:
79:9c:b5:4c:b4:ae:32:81:37:f9:21:2d:7d:7e:ff:
8a:65:b8:5b:ef:40:5a:44:df:3f:3e:e7:d9:28:d2:
fe:e6:7e:40:81:12:f9:50:8c:5a:d8:64:c9:63:8f:
28:d4:48:25:4e:23:3b:51:3f:3f:e8:a4:dd:a8:12:
0c:58:c9:22:5c:e4:e9:4d:2a:53:47:c8:48:f2:af:
58:fc:cb:64:92:04:50:ae:18:6a:12:29:62:22:c3:
59:b4:62:fe:7c:b5:f3:44:00:1f:b9:69:62:c1:04:
38:4a:10:d0:f9:05:5d:ce:1c:5a:86:df:2b:35:db:
b5:b6:ba:6a:74:cd:f7:77:57:98:a3:44:63:40:17:
dd:02:81:0f:a4:dd:eb:0f:64:df:5f:93:ba:0a:5a:
46:f8:0b:42:d1:05:1c:42:3b:78:67:9a:31:2e:90:
29:70:c2:fe:c4:5b:15:d7:cf:44:2a:f3:66:f8:99:
33:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:17:C6:54:1F:70:EF:0B:A6:58:02:45:49:82:10:3B:2B:E0:C7:BB
X509v3 Authority Key Identifier:
keyid:92:09:B8:DD:5E:A7:25:89:08:37:86:61:F2:BA:9E:F8:9A:D3:A0:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:74:46:20:bd:48:ca:14:fc:8d:d1:01:36:5a:d1:d1:d3:33:
03:7d:a2:f0:21:18:01:16:e0:51:32:d3:94:e5:58:11:92:79:
41:6b:b5:17:49:bd:77:e0:c8:16:9f:46:3e:86:9e:c8:83:e6:
23:92:d3:b9:75:31:7d:f0:29:d7:30:bf:d8:cb:c8:79:0f:d1:
80:00:71:81:3c:71:ab:eb:c0:23:05:44:9a:98:f1:c8:12:64:
7a:3d:f0:28:00:35:61:72:3a:99:8f:d4:4c:76:da:92:ca:fe:
71:29:ae:aa:ef:d7:07:fe:49:fe:f6:5a:c3:f4:9f:c3:21:3a:
1a:7e:cf:3d:5e:0d:5c:06:34:58:3a:9d:ac:ba:91:93:6a:c6:
d4:49:87:b4:4b:75:8d:2d:e0:68:28:83:1d:ea:41:78:37:de:
34:85:34:67:75:19:4d:4c:39:56:6c:75:45:c2:69:aa:42:ed:
de:13:fa:48:d8:16:d2:63:42:83:5c:e2:3e:01:d8:ab:ca:fe:
a1:a5:24:1b:c8:c7:8b:1e:a1:59:e6:e4:a6:1a:ed:e9:0b:76:
b0:b6:a2:dd:16:ab:0c:30:cc:7e:fe:1a:35:c9:eb:31:b6:29:
0a:10:3f:31:f7:0a:9a:a2:f8:29:ea:99:b9:4c:9d:a6:a6:99:
15:5f:6f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:29:32 2025 by rpki-client