Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
File: KZWUToTcN7pqQtaLseK5pEIehKQ.mft (raw, json)
Hash identifier: QwK3m55mE9XPGj9no7aBz1Auw4OC1NRrrcbEUrbDbbo=
Subject key identifier: 06:7C:78:26:50:5D:A5:F1:6F:12:E0:58:A0:1D:A2:E9:76:DD:34:D5
Authority key identifier: 29:95:94:4E:84:DC:37:BA:6A:42:D6:8B:B1:E2:B9:A4:42:1E:84:A4
Certificate issuer: /CN=2995944e84dc37ba6a42d68bb1e2b9a4421e84a4
Certificate serial: 0199FB7CD90B2046E89AF4FAD2839A6C8013
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 08:01:27 +0000
Manifest this update: Sun 19 Oct 2025 08:01:27 +0000
Manifest next update: Mon 20 Oct 2025 08:01:27 +0000
Files and hashes: 1: 5zGonyGbziYUvusSh8Q5DC8llVk.roa (hash: S1qJmZBpZMGg2baTrfrvnMFHCPji28boUDCTeMahmcM=)
2: Iy-azWAI6KWrOd6xINfWkQK0mmo.roa (hash: WW8+TBzRLpV7fj0dmKJQYyc2cjZjFlGMNCS3c3X42Q8=)
3: KZWUToTcN7pqQtaLseK5pEIehKQ.crl (hash: Nnbry4ahvjR66xrIxCJVsHYXWll+/j5/1eFl0Uz+rNs=)
4: SkUUShcqahf4Ud48xHWiKU08GtI.roa (hash: FRMGmcPu5n4tT7AA3DByB+9obpA4BvNTbGm4L5aAqOY=)
5: k-lfK2Nu0bBTBeFW46-yt6JkICk.roa (hash: muqDHPsC+eweSCrdqAGPB3SXVNwkzBd2weVA2/7oxMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:d9:0b:20:46:e8:9a:f4:fa:d2:83:9a:6c:80:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2995944e84dc37ba6a42d68bb1e2b9a4421e84a4
Validity
Not Before: Oct 19 08:01:27 2025 GMT
Not After : Oct 20 08:01:27 2025 GMT
Subject: CN=067c7826505da5f16f12e058a01da2e976dd34d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5c:c1:46:d5:8c:2d:a0:e0:75:7d:a4:18:d2:
fc:86:fe:90:97:54:e2:f9:59:08:ed:6c:06:d9:e1:
b0:15:7e:77:b7:be:8d:78:4c:f0:e0:4f:57:d5:f9:
aa:02:82:19:68:0d:82:57:5e:3f:cd:0a:8c:f9:a3:
a7:dd:66:51:4f:8b:81:a5:34:45:12:f1:ff:36:99:
8d:6c:52:6f:9a:51:f0:0f:c5:5d:34:63:5a:7e:50:
5e:71:d3:83:82:f2:7a:6c:d4:0a:e8:f8:9b:0c:6c:
01:2b:a1:8f:c9:e4:3b:df:1a:6c:95:60:df:47:f4:
21:aa:d9:55:89:4d:21:7d:33:41:a7:23:b6:80:a5:
65:d6:f9:45:fc:66:27:a1:56:3d:52:99:33:2c:ce:
37:d4:3c:07:d5:54:a5:a8:f1:c2:4d:bb:0d:e0:8f:
7e:f9:14:34:29:03:ce:f7:77:26:8b:43:77:80:19:
be:ac:71:46:80:b1:eb:20:7e:36:5f:20:00:d6:cd:
f5:97:ac:c7:88:9e:15:80:fa:59:4b:b2:9e:af:25:
02:51:01:08:83:72:b8:96:6e:06:96:d4:df:7c:9e:
5c:57:a6:64:cc:61:e5:cb:63:94:ef:bc:b7:4d:76:
a7:22:b8:c5:e8:dd:d5:f7:fc:4d:72:40:d4:63:22:
1b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7C:78:26:50:5D:A5:F1:6F:12:E0:58:A0:1D:A2:E9:76:DD:34:D5
X509v3 Authority Key Identifier:
keyid:29:95:94:4E:84:DC:37:BA:6A:42:D6:8B:B1:E2:B9:A4:42:1E:84:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZWUToTcN7pqQtaLseK5pEIehKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a12069-a061-442e-9bfb-338bdd439ee1/1/KZWUToTcN7pqQtaLseK5pEIehKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:52:39:97:54:9b:64:c7:e5:45:66:34:66:9d:ef:22:9f:71:
10:1c:59:c4:ab:34:71:56:0d:a3:5a:f2:2e:eb:f5:8f:21:d8:
89:73:d2:01:c7:41:a8:af:ca:3a:e7:26:2f:2e:6c:0c:81:3f:
6f:cb:7f:d5:dc:68:ab:bd:68:cf:d3:0e:04:fe:0b:a4:b7:c7:
83:84:9b:08:69:0f:a6:a5:15:2a:03:47:f6:fb:ce:9a:e7:43:
c3:ed:69:3a:a0:11:14:b8:e7:2d:b8:2d:53:c6:4d:c9:a5:c4:
42:93:76:40:09:9f:9b:e0:c0:94:7a:07:fc:ab:e9:a3:66:e9:
2c:26:ea:60:db:b8:a5:aa:fc:36:3d:dc:ac:82:a6:b4:cb:7c:
65:bd:ed:c2:20:de:a1:cb:b5:6e:3d:cf:de:29:4f:f6:2e:e3:
dc:ba:be:cc:09:50:93:a4:69:63:ad:9d:a0:4e:36:fc:40:89:
2d:83:39:5c:1b:c9:21:b3:39:98:84:63:99:50:f4:43:f3:94:
fa:c2:68:fe:32:91:2f:73:fe:ba:36:96:9b:2e:2e:fb:ba:9e:
28:3c:3d:ac:e7:2a:81:34:0f:2c:8b:ef:ee:04:4c:42:cf:94:
fc:d5:dc:31:6d:90:be:ae:d4:17:c8:b9:38:62:e2:55:f2:f9:
84:f4:44:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:11:42 2025 by rpki-client