Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
File: KQzE0K1dr8J6pONC-oDjSBToRcM.mft (raw, json)
Hash identifier: JrhaXOSCkGOAbfxKwaDGFMXxzu3F19N41q29fyhjIFE=
Subject key identifier: DE:2D:61:3D:BA:73:08:68:DF:09:6B:3F:A3:68:7E:27:15:25:FE:3A
Authority key identifier: 29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
Certificate issuer: /CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Certificate serial: 019A25F88E89D2C1B5E7C56DB28F0599BF65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
Manifest number: 0735
Signing time: Mon 27 Oct 2025 14:00:37 +0000
Manifest this update: Mon 27 Oct 2025 14:00:37 +0000
Manifest next update: Tue 28 Oct 2025 14:00:37 +0000
Files and hashes: 1: 187N4PB5lNzYnkhVyKxTgG2ufTQ.roa (hash: nnFT2Pv1VSMMW5/AFw9H17xWytd4IEI7JaypDZR0hFg=)
2: KQzE0K1dr8J6pONC-oDjSBToRcM.crl (hash: lo23Ru+Pcg1J7PzSC4j5Na5eCHqjECVfpPiYg9xt4Xo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 14:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:25:f8:8e:89:d2:c1:b5:e7:c5:6d:b2:8f:05:99:bf:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Validity
Not Before: Oct 27 14:00:37 2025 GMT
Not After : Oct 28 14:00:37 2025 GMT
Subject: CN=de2d613dba730868df096b3fa3687e271525fe3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d0:d9:1f:72:1d:18:2c:ed:89:8c:a9:46:f8:
a9:88:27:0c:78:8b:4d:fb:d6:40:98:6a:54:0c:79:
67:d2:62:a4:8f:36:e3:83:d1:16:d3:bb:7f:05:0e:
73:7a:c6:66:43:08:e1:b1:b0:b4:2f:69:18:31:0a:
8b:43:11:52:c3:c4:dd:b5:ae:5f:7c:3f:00:a5:30:
15:fd:0d:e1:4b:02:f9:31:7f:4e:5d:e8:56:35:50:
e8:41:1c:3b:fe:b6:24:04:34:4b:52:69:42:d5:54:
d6:87:06:ff:46:91:53:29:c4:8d:8c:3f:fd:88:a0:
e9:db:98:90:c1:66:1a:89:d9:89:2b:6f:a6:52:b5:
bd:c2:c6:02:c2:33:48:36:52:e9:48:2b:cf:37:4c:
bb:9b:5d:8e:3e:c5:af:d1:8d:83:8b:65:13:74:26:
21:4d:55:9b:2f:09:a9:05:00:eb:bc:99:71:c1:48:
17:cb:e0:b1:26:b5:82:eb:fc:03:f6:c2:1f:02:38:
4b:a5:64:0c:fe:b1:38:85:32:69:c2:be:f3:19:f1:
c5:d2:e3:37:f4:f5:53:4f:6c:2f:c5:ef:f0:a5:ee:
f2:e5:d9:a4:76:78:e8:92:2b:35:f1:61:18:27:2a:
c4:41:71:b1:40:a3:f7:de:87:0e:5a:f5:d5:90:87:
3c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2D:61:3D:BA:73:08:68:DF:09:6B:3F:A3:68:7E:27:15:25:FE:3A
X509v3 Authority Key Identifier:
keyid:29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:0d:3b:9d:83:59:c7:a2:42:86:5f:53:aa:2e:38:a3:47:d9:
0e:f8:e9:db:89:40:1f:ee:e9:a9:e2:3c:ec:44:3d:b9:c9:3a:
fd:97:81:67:17:59:2a:3b:0e:17:80:1d:57:7f:f6:27:6f:c5:
49:22:d1:27:f0:12:80:9f:b0:9a:b4:26:6d:a1:fb:96:6f:27:
0c:9d:88:63:49:89:af:3a:1c:d5:fb:60:a8:14:d9:ad:da:7e:
32:01:0f:e1:24:c4:96:d7:ee:7f:2e:6f:7c:49:60:78:5b:fb:
49:d4:a0:39:d5:af:0b:63:25:8e:5a:c2:48:bf:a4:cf:9c:ab:
c8:ce:65:57:e3:48:fd:86:c1:dc:1d:a8:ea:f9:91:62:06:9c:
a8:4f:ca:e7:7d:99:6c:bd:85:47:22:e0:e4:19:8f:56:01:3a:
85:47:f3:b3:ae:b5:f4:7d:1d:f3:01:38:97:b0:34:d7:41:51:
99:57:29:c3:5c:fe:5a:1b:41:25:ab:d1:5b:d4:ae:83:0a:93:
b4:e8:33:7d:20:94:c4:25:5e:58:1a:82:84:95:59:4e:b2:31:
6d:49:ce:0c:c0:c8:75:4c:f4:39:df:f3:d9:75:4f:5d:1d:a4:
d3:a9:08:dc:7e:e1:a4:35:a9:95:7a:6c:b2:f8:6a:b3:1d:53:
cc:b8:89:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 22:39:05 2025 by rpki-client