Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
File: KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft (raw, json)
Hash identifier: 4KePKEBuAF33DIgWXLxNLkwq6mSU8WcqlnXAmg2Vhn4=
Subject key identifier: 42:6B:7C:40:89:2D:88:72:DB:08:83:61:3B:E3:71:C0:83:FC:6D:74
Authority key identifier: 29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
Certificate issuer: /CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Certificate serial: 0198D4E037D65A2D474B9C1A884C5E235DE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
Manifest number: 0FB5
Signing time: Sat 23 Aug 2025 03:02:00 +0000
Manifest this update: Sat 23 Aug 2025 03:02:00 +0000
Manifest next update: Sun 24 Aug 2025 03:02:00 +0000
Files and hashes: 1: KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl (hash: MmwtQETUuFwavJxu/ci+UQSewA9EhpxKzMXXdqp70eQ=)
2: kiF2H4Ucoq9Nw51li6ImqM3ctGg.roa (hash: gOoMaXdniQu2tAHNZ6SbwXijF8n71W3w0mmuL2WSkY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:37:d6:5a:2d:47:4b:9c:1a:88:4c:5e:23:5d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Validity
Not Before: Aug 23 03:02:00 2025 GMT
Not After : Aug 24 03:02:00 2025 GMT
Subject: CN=426b7c40892d8872db0883613be371c083fc6d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:69:4e:3a:d2:40:a8:e8:b7:3f:35:a2:01:14:
1b:03:b3:ae:0c:ce:fb:40:b1:dd:02:e1:75:ed:15:
c2:84:61:2b:b3:06:7f:89:65:04:b8:08:95:f0:80:
e2:72:09:23:9e:35:e8:71:ed:f7:78:2e:63:2b:3b:
1d:2c:aa:38:05:3c:79:83:d5:27:bb:ef:3c:bf:d4:
d0:e2:ff:fe:88:29:fd:e8:dd:8f:a1:97:48:44:b8:
6b:3c:a1:d7:8c:e4:1d:cf:a6:2b:00:35:12:6f:89:
79:0c:be:28:d5:3e:bc:c3:55:b4:87:0a:bf:20:a6:
83:d1:78:00:a5:b2:f6:be:52:e3:9e:66:95:c6:9d:
0e:54:76:a1:38:a4:34:4a:c0:00:5b:f6:66:b1:c1:
7e:a8:5d:c0:f3:12:79:68:83:7e:4e:0e:4c:d9:f1:
83:8f:bf:79:d2:60:9a:62:d0:f4:04:cd:96:67:fc:
b4:a7:7a:17:7c:24:67:0f:a7:c9:07:c6:09:62:d9:
b2:4a:53:48:ef:02:f0:fe:8e:8b:07:1e:38:1e:d3:
bf:0f:b7:59:c1:10:a6:38:91:77:8d:c7:cc:0e:f0:
6f:f2:1b:82:b6:09:a9:bd:5e:7a:9e:a9:53:29:4e:
56:66:9d:d5:92:5c:43:2d:64:ab:fb:e3:bf:e2:a7:
6a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:6B:7C:40:89:2D:88:72:DB:08:83:61:3B:E3:71:C0:83:FC:6D:74
X509v3 Authority Key Identifier:
keyid:29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:32:67:ca:8c:d7:a4:61:d9:1b:f3:d9:ad:5c:e0:f0:2f:0f:
83:74:d2:d3:5b:3e:84:ca:ee:c7:d2:9d:24:ff:67:ec:4f:18:
52:8b:b6:8d:97:ee:f0:14:75:f6:68:01:d8:3f:27:ee:ec:44:
b4:63:6c:55:9d:14:ed:09:88:bc:71:48:d9:89:8f:4e:41:64:
d7:d3:ad:11:75:11:69:e0:91:15:45:4d:5c:94:34:2c:73:62:
b2:48:f4:2a:58:ce:2a:20:4b:42:26:20:0d:d0:a2:5f:9c:49:
f1:a5:db:f6:0a:ee:85:86:2e:dd:f5:cc:80:64:d1:2c:ae:0a:
61:7e:56:fd:9f:ca:ce:02:eb:3b:46:96:08:bc:b6:af:60:ec:
69:66:55:24:04:d2:73:8a:50:a3:1a:07:6f:48:bb:53:e3:f0:
ec:db:69:d5:0c:44:ad:f7:db:95:40:45:75:18:0b:79:4e:2a:
b8:61:80:2d:36:6d:49:51:75:97:bb:31:5a:b4:ff:07:80:1a:
c8:fe:bc:f4:29:8d:6c:a9:c7:57:ac:c5:a0:3d:32:80:e8:08:
b1:25:45:bd:45:d9:46:c4:18:5a:8d:6d:0d:be:ff:de:79:d0:
98:df:11:cc:4b:f5:33:81:9f:1e:90:8a:55:dc:41:1a:a6:0d:
7d:65:41:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4DfWWi1HS5waiExeI13pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDJjOTljYTczMmM2NGExOWM3ZDk3MzRhOThmYjI0ZTU0
NTU1NDkwHhcNMjUwODIzMDMwMjAwWhcNMjUwODI0MDMwMjAwWjAzMTEwLwYDVQQD
Eyg0MjZiN2M0MDg5MmQ4ODcyZGIwODgzNjEzYmUzNzFjMDgzZmM2ZDc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArWlOOtJAqOi3PzWiARQbA7OuDM77
QLHdAuF17RXChGErswZ/iWUEuAiV8IDicgkjnjXoce33eC5jKzsdLKo4BTx5g9Un
u+88v9TQ4v/+iCn96N2PoZdIRLhrPKHXjOQdz6YrADUSb4l5DL4o1T68w1W0hwq/
IKaD0XgApbL2vlLjnmaVxp0OVHahOKQ0SsAAW/ZmscF+qF3A8xJ5aIN+Tg5M2fGD
j7950mCaYtD0BM2WZ/y0p3oXfCRnD6fJB8YJYtmySlNI7wLw/o6LBx44HtO/D7dZ
wRCmOJF3jcfMDvBv8huCtgmpvV56nqlTKU5WZp3VklxDLWSr++O/4qdqKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEJrfECJLYhy2wiDYTvjccCD/G10MB8GA1UdIwQY
MBaAFCkCyZynMsZKGcfZc0qY+yTlRVVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FMSm5LY3l4a29aeDlselNwajdKT1ZGVlVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi81NGNhMjQtNmU1Ni00N2QzLWE0Mjkt
YjY0OWE1NzhmODljLzEvS1FMSm5LY3l4a29aeDlselNwajdKT1ZGVlVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi81NGNhMjQtNmU1Ni00N2QzLWE0MjktYjY0OWE1NzhmODlj
LzEvS1FMSm5LY3l4a29aeDlselNwajdKT1ZGVlVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALDJnyozX
pGHZG/PZrVzg8C8Pg3TS01s+hMrux9KdJP9n7E8YUou2jZfu8BR19mgB2D8n7uxE
tGNsVZ0U7QmIvHFI2YmPTkFk19OtEXURaeCRFUVNXJQ0LHNiskj0KljOKiBLQiYg
DdCiX5xJ8aXb9gruhYYu3fXMgGTRLK4KYX5W/Z/KzgLrO0aWCLy2r2DsaWZVJATS
c4pQoxoHb0i7U+Pw7Ntp1QxErffblUBFdRgLeU4quGGALTZtSVF1l7sxWrT/B4Aa
yP689CmNbKnHV6zFoD0ygOgIsSVFvUXZRsQYWo1tDb7/3nnQmN8RzEv1M4GfHpCK
VdxBGqYNfWVBEQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:57 2025 by rpki-client