Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
File: KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft (raw, json)
Hash identifier: z48Kj+SlUmLDAsRuHGCe7/kkJ6dl/FAPmCbGLtTbKok=
Subject key identifier: AC:F3:FE:16:9A:1B:61:6A:98:83:20:30:4B:60:E7:36:76:29:95:47
Authority key identifier: 29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
Certificate issuer: /CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Certificate serial: 0199FE46B9C02B9409CBBFDD28D981A3E597
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
Manifest number: 104F
Signing time: Sun 19 Oct 2025 21:01:11 +0000
Manifest this update: Sun 19 Oct 2025 21:01:11 +0000
Manifest next update: Mon 20 Oct 2025 21:01:11 +0000
Files and hashes: 1: KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl (hash: M3CUy1BGit3gxV1nuYwW0Y7/n9bMOsQZHtXGR092dy4=)
2: kiF2H4Ucoq9Nw51li6ImqM3ctGg.roa (hash: gOoMaXdniQu2tAHNZ6SbwXijF8n71W3w0mmuL2WSkY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:b9:c0:2b:94:09:cb:bf:dd:28:d9:81:a3:e5:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Validity
Not Before: Oct 19 21:01:11 2025 GMT
Not After : Oct 20 21:01:11 2025 GMT
Subject: CN=acf3fe169a1b616a988320304b60e73676299547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f2:c4:1e:b7:ee:55:36:96:41:ff:0c:1a:e7:
df:59:cb:0a:cc:21:90:c6:24:2e:0c:09:24:90:83:
cb:fc:72:09:f4:91:d6:1f:47:20:87:cd:20:3c:1f:
d8:94:b1:04:8e:b8:31:e2:28:5a:e3:d9:6a:82:fc:
df:85:1a:8a:a4:5d:a0:18:0c:07:8c:cd:09:a5:cb:
db:97:ed:f9:99:af:23:0a:25:b1:8f:7d:8c:2d:08:
68:bf:1a:72:0a:d8:fe:7d:d8:28:45:41:1d:d4:f7:
f7:11:67:f1:61:c2:72:4c:2b:53:74:23:75:9e:bc:
dd:bd:8a:10:e0:58:42:6a:f6:45:82:d5:c7:a6:93:
c1:08:47:f3:09:74:e4:07:3f:fc:f6:e3:de:a7:99:
06:82:c9:94:7c:8d:19:c2:45:ab:66:ed:3b:dd:5b:
84:cd:5f:71:63:0a:18:8d:d4:bf:e8:35:23:3f:fa:
56:0b:ae:2e:2e:98:dc:15:b2:99:d0:bb:66:6e:cb:
d9:25:89:96:cd:e6:d9:23:00:fb:29:92:19:9a:33:
88:a8:f6:30:ee:9c:b1:ca:ae:ab:80:3a:b3:a3:3e:
49:4b:f2:b3:91:f9:67:5b:01:ca:00:be:2c:0c:cb:
29:21:92:09:9b:6a:3e:0c:5c:15:92:04:cc:e1:5d:
2f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F3:FE:16:9A:1B:61:6A:98:83:20:30:4B:60:E7:36:76:29:95:47
X509v3 Authority Key Identifier:
keyid:29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:3a:d7:52:d0:91:72:09:b4:1f:ca:f7:47:e6:20:c4:39:27:
5f:aa:78:de:b3:26:68:1d:ae:5f:02:7d:d1:b8:49:7a:ed:ec:
c0:cb:10:2b:d1:3a:9f:cb:dd:48:45:50:35:be:90:dd:a4:88:
97:70:14:17:de:f3:26:26:0c:b4:01:db:bb:c5:33:7f:10:66:
0d:2b:f2:69:07:48:b8:d6:4e:ff:3e:dd:18:ae:11:0b:47:2f:
d8:1b:eb:92:a4:25:15:bc:12:74:fe:58:6a:a6:ac:64:84:f7:
f2:d4:fc:42:c7:b4:04:ca:fb:5e:bd:1f:1b:88:4c:74:cd:2b:
1d:a3:02:bd:91:da:50:7d:0e:60:19:b5:27:40:6c:ab:28:8d:
15:59:55:dc:ca:b3:02:4c:de:96:fe:c8:d6:b8:c0:a0:da:ac:
7a:27:fd:36:21:d6:bd:01:2f:75:df:35:5c:ac:da:eb:d4:61:
13:0e:75:fa:c7:9b:b9:10:d7:ec:97:58:6d:40:73:43:0d:26:
6a:77:ce:39:49:e3:63:53:07:b9:d9:43:3c:35:fd:6a:84:ef:
c9:ec:96:24:d9:c6:33:71:43:74:ca:c9:07:54:4c:d8:43:99:
3d:fd:32:b2:5a:62:ad:7b:f0:c6:e5:fb:99:2b:ac:c3:b0:19:
5e:e9:6e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:26 2025 by rpki-client