Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
File: KcmwQBb28CGDMHwX32MKAonsW7U.mft (raw, json)
Hash identifier: UQYfv0t2vC6MLYey50ssaOt11u8o9KD4N/lNpVTeZm4=
Subject key identifier: 33:12:57:99:74:A9:7F:E3:8F:5B:93:A4:93:E2:B6:EC:B6:20:13:9D
Authority key identifier: 29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
Certificate issuer: /CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Certificate serial: 0199FB45AD7997D6FFC6828B5CED36C05EAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
Manifest number: 0F43
Signing time: Sun 19 Oct 2025 07:01:11 +0000
Manifest this update: Sun 19 Oct 2025 07:01:11 +0000
Manifest next update: Mon 20 Oct 2025 07:01:11 +0000
Files and hashes: 1: KcmwQBb28CGDMHwX32MKAonsW7U.crl (hash: oVnjo4xrmLYOBE+qiJu2H5YiacgSY9GICfvZO7KZCKA=)
2: UdEEZQE09FsGfYOWUhVww5xs81M.roa (hash: 6mSyURdhs/eGBTOXFJi0QulmUdFyZbb3K6nx0/FAyzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:ad:79:97:d6:ff:c6:82:8b:5c:ed:36:c0:5e:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Validity
Not Before: Oct 19 07:01:11 2025 GMT
Not After : Oct 20 07:01:11 2025 GMT
Subject: CN=3312579974a97fe38f5b93a493e2b6ecb620139d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:88:b9:0c:a9:d0:9c:a9:7f:3b:b1:7c:83:9f:
b4:31:23:3c:43:d3:e7:df:70:f3:15:c9:14:d2:82:
74:6c:e7:b8:57:66:07:9b:b3:29:34:63:f3:6e:60:
e2:8e:58:5c:2a:a1:2a:95:51:a8:d5:3b:ad:d8:ea:
ce:4e:56:bf:5d:4d:10:a6:ad:3a:f3:34:b4:20:8d:
ab:15:49:6b:c4:03:58:e1:c2:cb:95:bd:26:35:29:
12:bf:27:b3:bb:e9:61:a4:cf:b2:09:b1:67:85:7f:
31:bf:0b:aa:11:b6:8e:08:8f:e1:e3:73:00:57:0e:
b5:cb:27:01:c8:a8:37:e8:ba:f0:bd:bc:71:db:70:
d9:7a:33:71:59:7b:69:fd:09:4c:97:f5:a3:af:d2:
2c:f8:71:96:8d:06:1c:ce:eb:4d:c4:76:9b:e6:e1:
de:7a:0f:c2:43:3c:ed:70:37:d4:ca:3f:be:d0:07:
de:e2:b0:22:01:ca:76:58:aa:7b:34:1f:93:46:9f:
9e:fc:c4:4a:ab:7f:d8:19:7c:bd:9c:83:aa:15:2d:
6c:af:ad:9a:43:36:ba:7e:89:d3:b6:be:31:66:ed:
8b:2e:2e:b5:97:d3:13:5b:66:0f:29:d8:63:d3:c4:
11:2f:36:2c:0e:32:78:5a:be:ed:6b:19:73:ed:b2:
da:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:12:57:99:74:A9:7F:E3:8F:5B:93:A4:93:E2:B6:EC:B6:20:13:9D
X509v3 Authority Key Identifier:
keyid:29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:1f:78:d6:47:fd:f9:fa:d6:69:96:cb:ec:32:96:72:f8:d6:
2b:68:3c:df:70:ec:24:12:8e:a1:08:e2:d0:78:62:4b:77:de:
8f:03:f8:ad:ce:67:f9:f4:14:fa:da:a0:23:1c:39:4a:7c:23:
86:8f:25:86:6e:10:55:aa:56:c0:6c:a0:66:a0:43:67:af:d4:
7c:70:3e:f3:81:07:20:7c:f0:2c:c6:49:1f:c2:95:ec:9d:6b:
de:37:0f:5d:f3:c2:d6:00:68:ce:9d:32:92:a9:dd:e8:1d:3d:
37:d5:21:ca:72:19:c9:15:02:be:12:a8:48:f2:64:5c:8d:cb:
1c:56:7b:f8:4d:70:ce:50:16:75:84:81:68:a8:56:e8:9d:f7:
64:85:e6:64:6a:aa:45:99:24:c8:21:88:9b:22:e3:a7:8e:da:
10:30:c1:97:90:e5:5d:be:65:34:58:8d:6d:cb:26:01:6f:70:
15:00:c3:b3:b5:3a:56:c6:77:e2:8e:3a:fc:41:3e:87:70:22:
aa:2f:de:d7:9c:d0:40:31:e1:e4:a8:60:38:ff:95:8b:e5:61:
51:1e:5e:07:b7:26:1e:f4:c6:87:b3:4b:82:7d:c0:f7:26:27:
c2:b1:89:66:b2:60:7b:c8:de:1f:08:8d:87:92:16:41:20:bf:
ec:e2:e1:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:12 2025 by rpki-client