Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
File: kPwsEuoXAhuorOBiGJfwhW2sJVk.mft (raw, json)
Hash identifier: cn3Vf6EewzNx/PCKP2DMRH0J1dPpYrPGr6D7Lg+brko=
Subject key identifier: 7F:73:D7:AA:6D:BE:B6:A7:27:C6:3E:88:FA:24:05:57:89:3A:2A:D6
Authority key identifier: 90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
Certificate issuer: /CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Certificate serial: 0199FBEB0B89599AE6E10EA91B058B7AE063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
Manifest number: 065C
Signing time: Sun 19 Oct 2025 10:01:49 +0000
Manifest this update: Sun 19 Oct 2025 10:01:49 +0000
Manifest next update: Mon 20 Oct 2025 10:01:49 +0000
Files and hashes: 1: 1UaL0XGyomh-a1T0dddj6cyPZOw.roa (hash: rWkejV4n3vRWEBULaZLAottNh8bz5UFXPG009n2D40A=)
2: TJKRQbRuvDSDZyucPaqU760l18U.roa (hash: gKuY1GA/NcHekZckeHEZ/7H1szBu0AiOQJ9VIhFkajs=)
3: kPwsEuoXAhuorOBiGJfwhW2sJVk.crl (hash: DofuSvZOZw7kc4ugNuYGpOxZTimH2fLX+96mrn7VzX0=)
4: mWYkGMEMrO_nHDH4dqasaNk-p_c.roa (hash: OCHhjAiwakmpsRoIjxkgKbh8p1tQzGvkxI9kPgktEoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:0b:89:59:9a:e6:e1:0e:a9:1b:05:8b:7a:e0:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Validity
Not Before: Oct 19 10:01:49 2025 GMT
Not After : Oct 20 10:01:49 2025 GMT
Subject: CN=7f73d7aa6dbeb6a727c63e88fa240557893a2ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:df:bd:2f:f3:46:aa:3b:a7:7c:c9:7d:59:b9:
b8:65:57:7e:8a:ab:bf:e8:55:7e:f1:90:53:04:cf:
6c:7c:b5:ef:fa:f5:81:2f:cb:71:f5:dc:46:0b:8e:
32:fa:2f:48:0f:c8:d7:b8:35:76:0a:02:df:0c:8f:
cd:32:f6:d2:f8:9c:7b:a5:e2:06:1d:88:84:7e:7f:
00:e8:08:2a:16:e6:5c:bf:da:66:b6:c0:2b:dc:9b:
41:dd:95:4a:1a:ca:13:8d:3a:62:12:4b:c6:c3:5c:
3e:9e:2e:f1:e2:34:64:a3:f8:70:fb:c7:a2:60:eb:
af:e4:7b:07:44:ee:54:1d:d4:b5:b2:0f:cc:a8:06:
85:5b:76:f2:2e:5b:e1:bd:28:b0:f2:d6:1b:33:0e:
6a:b9:37:73:11:bb:be:33:27:7a:ac:1d:ac:3b:b0:
04:66:c2:be:19:c7:b4:fe:b0:47:b4:b9:81:ee:ab:
46:a9:58:ca:23:02:d0:0e:1c:94:7e:99:b6:2d:f4:
18:ac:b9:66:04:fa:f1:0b:1c:b3:27:9e:62:ba:4c:
47:be:4c:ab:59:9d:04:e2:41:39:6e:96:91:e6:b2:
5b:b6:68:9a:65:76:08:a7:90:a3:c2:21:c4:d9:84:
4b:6e:94:e1:89:01:ef:71:c6:80:21:cb:8b:f7:7f:
3c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:73:D7:AA:6D:BE:B6:A7:27:C6:3E:88:FA:24:05:57:89:3A:2A:D6
X509v3 Authority Key Identifier:
keyid:90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:24:2e:01:4a:aa:1c:11:1a:98:c2:3c:cf:0f:05:44:9a:e2:
26:64:39:1b:6e:7b:09:28:4a:3f:fa:a8:3d:cd:cb:e4:c9:1c:
ee:46:a1:b9:2f:b9:19:33:72:de:be:6f:41:5a:0c:80:c0:e3:
6f:27:99:e5:71:26:27:98:a7:8e:48:60:e6:db:70:dd:e5:ef:
70:11:77:32:17:1f:b8:65:dd:d9:a8:63:b7:b0:86:fa:bc:9d:
77:4a:33:1f:20:33:7c:e8:58:26:01:d9:15:6b:9b:6a:aa:ae:
aa:50:d8:0e:c0:4a:d0:fa:73:2f:98:18:ca:eb:b8:85:cc:06:
5b:a4:26:54:ee:b5:a0:6e:35:4a:6d:cd:07:8d:2f:52:df:ac:
30:1b:c5:4f:50:fd:e7:09:bb:9b:71:c0:8a:0a:08:a4:59:d4:
30:30:72:e7:b6:bf:f4:e4:5c:6e:d5:e0:ff:1f:6c:48:eb:eb:
d1:37:f2:71:34:6b:c4:a8:cf:3e:a9:9d:b3:9a:b6:8a:a3:98:
65:64:6b:84:67:7a:93:bf:c1:d9:e3:f7:8d:99:47:83:92:b5:
2e:9e:cb:fb:79:b9:d2:4b:c0:3b:8d:60:20:b5:a5:23:bc:94:
31:c6:28:39:02:b4:6f:a7:64:ea:9a:7c:6f:9b:dd:de:25:52:
fc:72:e8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:05:53 2025 by rpki-client