Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
File: kq8Dyi32Qjt30O83N7D0eRqgNaM.mft (raw, json)
Hash identifier: Zi4yVoPs6RZRftbJNX1Uvnp6WtKNpO+1ddnUPQK+Dn0=
Subject key identifier: F1:E6:D4:9E:0B:23:51:1E:6B:29:F9:9C:B9:AC:18:82:FF:0E:A8:9C
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 019A003529032CA5CE47CA98BCFABB462B25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
Manifest number: 0B73
Signing time: Mon 20 Oct 2025 06:01:15 +0000
Manifest this update: Mon 20 Oct 2025 06:01:15 +0000
Manifest next update: Tue 21 Oct 2025 06:01:15 +0000
Files and hashes: 1: XFrF4ZD8RKmENGKuXlNfyh9_oV8.roa (hash: Syc9HmjiF/DkUOhl4IVh1oQ9jwD6L7ptWtUgxSy9ut8=)
2: kq8Dyi32Qjt30O83N7D0eRqgNaM.crl (hash: iVkj+MAEFPP/QkouCwgVN1a29s6dWV2H/cWimQ8NmHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:00:35:29:03:2c:a5:ce:47:ca:98:bc:fa:bb:46:2b:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: Oct 20 06:01:15 2025 GMT
Not After : Oct 21 06:01:15 2025 GMT
Subject: CN=f1e6d49e0b23511e6b29f99cb9ac1882ff0ea89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b1:9f:e9:bf:4a:f1:fa:23:9d:30:a5:91:5c:
81:36:4d:08:b5:d0:17:09:e4:d4:6b:bb:b2:e5:e0:
f1:a6:05:43:45:21:62:94:df:eb:af:6b:11:4d:0d:
cc:99:f8:c7:d4:98:c7:1a:ba:8e:c3:98:09:39:b0:
66:1b:39:8d:47:90:d1:47:1c:70:24:32:e5:26:50:
69:9b:74:e7:87:87:e7:41:1c:f6:31:40:ec:3f:e3:
57:4b:88:6b:ae:91:9a:e4:82:ac:5d:be:32:12:19:
dd:13:ae:59:c1:47:36:0a:f4:36:67:e1:63:a9:da:
69:bb:a0:93:3c:51:3f:0e:c0:27:b9:e5:89:7f:6b:
0b:76:62:4c:5a:16:34:d3:40:e9:aa:8b:8c:41:93:
2d:bf:c1:e8:2d:9b:6b:bb:ac:57:e7:71:db:f2:fb:
0b:63:25:0b:72:45:eb:1e:c7:99:48:5a:fa:2e:66:
02:5b:5c:43:6d:ea:34:09:42:85:76:43:9c:08:04:
5c:5f:70:22:b1:00:05:08:8d:f2:0b:f6:08:19:6b:
b7:3d:e0:83:89:41:13:2e:04:95:2b:ee:58:62:d6:
80:28:b5:b6:ac:55:9a:45:69:7b:33:d7:35:e6:a3:
fb:a4:40:a3:28:f7:2a:13:a3:12:cf:a2:c2:c2:77:
29:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E6:D4:9E:0B:23:51:1E:6B:29:F9:9C:B9:AC:18:82:FF:0E:A8:9C
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:64:4f:3a:45:93:9f:10:58:cb:ca:aa:d0:6d:a3:73:aa:ab:
c0:a9:8a:db:d1:69:66:ea:01:77:8a:f8:68:f0:70:86:fe:d1:
b0:9e:86:b0:b9:39:48:dc:d1:22:53:22:43:bf:0d:dc:5b:84:
1f:d8:f5:1f:a0:f6:fa:3e:c9:35:eb:df:3a:b0:de:81:83:a5:
18:25:a8:ae:d3:af:98:f3:53:60:20:9c:44:fb:e2:27:49:5b:
a4:b3:67:d6:1e:c7:ca:34:ea:c4:f6:e2:fe:c1:41:8f:78:fd:
89:43:42:59:2c:69:8e:2c:59:71:de:0b:92:0e:15:4e:5d:72:
4e:2a:36:a4:ca:c5:06:ea:a8:b6:56:97:7e:e9:39:74:d6:f0:
34:98:e3:76:56:12:10:8e:61:95:58:13:e6:9f:c3:7c:e6:79:
ff:14:4c:bc:aa:8a:4f:a3:0c:eb:be:b7:1f:ca:04:51:9f:8c:
ce:e6:e3:6c:de:70:ba:6b:62:ed:45:1c:e8:a5:21:12:aa:21:
23:8c:e0:95:be:9b:a0:1f:71:73:e4:fe:93:bf:49:cb:c8:5c:
85:d9:73:c7:5c:ea:01:e6:94:26:3c:01:dd:1f:59:06:1d:c0:
43:32:c4:e4:2f:dc:74:07:67:5f:6b:8f:65:ed:48:80:18:34:
f4:a3:52:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 08:58:13 2025 by rpki-client