Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
File: KfzfdinE4A6QbxQ19EndEJ9BC2w.mft (raw, json)
Hash identifier: t0KFq0xQKVPQ7GkOyvXFj8UCloO2O6nPSx8REMrwFNY=
Subject key identifier: F9:87:26:FC:ED:E5:53:6C:F5:6B:79:5D:0F:11:7B:6F:BD:30:3E:D2
Authority key identifier: 29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
Certificate issuer: /CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Certificate serial: 0199FBEAC3234E264CA0DA1A819EF750DB6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
Manifest number: 13BF
Signing time: Sun 19 Oct 2025 10:01:30 +0000
Manifest this update: Sun 19 Oct 2025 10:01:30 +0000
Manifest next update: Mon 20 Oct 2025 10:01:30 +0000
Files and hashes: 1: KfzfdinE4A6QbxQ19EndEJ9BC2w.crl (hash: NUp7M5WFHtRzSvSRG/xJpy2JIlbBAW6WvtpSq1gN5E4=)
2: lKv_MpftntPeWIBfQDo4EvQnOCE.roa (hash: v96JNz5ZiqAWk2kEUzYU+IVtwUC39vYGpp2p54BaFZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:c3:23:4e:26:4c:a0:da:1a:81:9e:f7:50:db:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Validity
Not Before: Oct 19 10:01:30 2025 GMT
Not After : Oct 20 10:01:30 2025 GMT
Subject: CN=f98726fcede5536cf56b795d0f117b6fbd303ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:81:e2:da:7d:bc:ab:7a:2f:8e:09:30:fc:83:
7d:1e:60:14:47:fa:8d:60:cf:37:0d:c5:da:21:5c:
8d:51:89:f9:29:5d:a6:b3:70:4b:c7:4d:e9:89:5c:
bc:46:4f:0f:62:f9:cb:dd:10:58:a3:29:81:9e:5e:
7f:30:be:96:c2:89:2e:8c:43:4e:ee:36:e3:00:14:
57:0b:33:53:5b:5a:4e:c7:8b:b5:d5:57:fb:77:d0:
a6:3d:4e:4a:8f:55:3a:ba:6a:09:68:fb:a4:e7:d2:
6d:d0:1d:64:aa:57:6e:8c:f4:22:d9:0c:65:cf:d8:
8a:aa:33:9c:7f:7d:95:80:1f:5c:76:6e:42:c5:42:
82:45:4e:7a:62:a2:f7:a5:59:c0:cf:42:76:32:3a:
fe:ff:8a:5e:dd:15:90:77:20:fb:42:1e:85:08:5d:
38:e1:8b:f2:bc:a0:29:99:0b:35:bc:13:ea:ef:7e:
db:d1:46:f0:6f:56:cc:6a:63:8d:b7:c1:d3:7b:5e:
40:db:4b:fa:4d:28:0a:9f:45:a7:ba:15:b9:9f:eb:
66:13:1c:06:9a:87:b2:a0:c3:10:db:f0:db:88:dc:
b0:fd:f1:f2:33:c8:6f:ce:88:6d:e2:d6:69:85:68:
69:4c:be:e6:e3:0f:24:6f:1d:72:8a:1c:e5:09:90:
9f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:87:26:FC:ED:E5:53:6C:F5:6B:79:5D:0F:11:7B:6F:BD:30:3E:D2
X509v3 Authority Key Identifier:
keyid:29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:9e:53:0a:3d:39:e4:f2:ac:aa:bb:74:6f:6a:fb:23:8b:f7:
68:fe:e1:15:c1:31:71:a8:a2:84:64:ed:5f:f7:49:0f:81:05:
f5:4c:b9:2f:28:01:55:11:38:84:e5:6a:65:ce:3c:15:fa:87:
c7:b2:f0:33:50:27:94:d4:66:62:77:f1:ce:2e:c9:0e:88:de:
1f:64:93:2b:61:05:67:44:46:22:12:7c:56:b8:dc:b8:28:cf:
cb:22:36:ff:5f:39:a1:23:04:9f:ad:4d:ea:f3:c6:04:7e:c3:
8d:2f:df:b4:fd:37:5f:99:69:34:c8:d1:8a:33:0e:5d:c1:8b:
e7:da:93:2a:6c:66:88:36:a9:74:10:38:5a:1e:28:0e:18:09:
e8:a0:8c:c1:fd:80:d5:27:e0:27:2d:eb:da:a3:a7:5d:d5:42:
a2:0e:77:c6:22:07:c9:84:c5:c3:da:61:03:32:5b:a3:5a:7b:
3f:23:92:93:e4:3f:cc:03:03:40:e2:91:f4:1a:e2:07:30:3f:
5d:b3:72:3d:70:3a:3f:9a:ff:5f:79:34:c6:9f:14:77:4c:73:
97:f1:0a:c9:18:28:ec:73:e7:4d:74:35:c9:23:9f:f3:84:dd:
f8:69:fa:21:fa:66:61:f9:5c:26:d2:12:30:c3:06:eb:91:c3:
ff:8b:22:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:07:14 2025 by rpki-client