Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
File: kRAQDzzHh9YxUwPLf8iNniXlbqg.mft (raw, json)
Hash identifier: fXEKQvbByeUdiA8sH6YE59DO+YLP4NnklE6KtvFo8xI=
Subject key identifier: 3F:C5:CB:69:E8:9C:CC:17:AD:E8:55:AE:B6:0C:32:58:C7:26:19:B3
Authority key identifier: 91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
Certificate issuer: /CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Certificate serial: 019921B1980D83D6CE4182848C86A2ADDA73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
Manifest number: 0A85
Signing time: Sun 07 Sep 2025 01:01:50 +0000
Manifest this update: Sun 07 Sep 2025 01:01:50 +0000
Manifest next update: Mon 08 Sep 2025 01:01:50 +0000
Files and hashes: 1: bRhGJqv0p8mJ4Y5Zi3hw3lkQdsk.roa (hash: z2JalsCXdVTGdLdK888EdCX/YOon+kmiEVhkkUSf3/w=)
2: kRAQDzzHh9YxUwPLf8iNniXlbqg.crl (hash: 3Qv48BVnKjB4P1huFnlwFdf/5jIa17NCrBX1/oyyJF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b1:98:0d:83:d6:ce:41:82:84:8c:86:a2:ad:da:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Validity
Not Before: Sep 7 01:01:50 2025 GMT
Not After : Sep 8 01:01:50 2025 GMT
Subject: CN=3fc5cb69e89ccc17ade855aeb60c3258c72619b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:08:14:96:27:22:31:ee:d0:ca:80:73:97:72:
ec:31:72:bd:24:e6:52:af:30:66:0a:51:64:c0:40:
f3:88:d7:1d:fa:31:35:4d:7b:40:3d:9d:31:6c:ce:
75:cb:35:44:d0:7c:da:33:2a:a8:0e:54:c7:3a:92:
15:5e:5e:6b:85:22:35:35:31:06:b9:9c:87:24:fb:
38:9b:67:5e:41:39:34:f6:89:22:c3:26:84:d5:f9:
54:db:b5:48:1e:c2:07:b8:85:43:6c:b9:71:ac:2a:
ca:79:9b:47:fb:ff:6b:3d:d1:c4:1a:60:36:ab:c2:
83:e2:f0:c4:f6:9d:44:69:8e:9a:b3:ec:64:38:e9:
51:11:bb:e6:44:dd:86:fe:5f:e5:79:6f:ca:58:82:
7e:4e:0a:bd:82:26:e2:8b:7c:11:96:b3:68:c9:ec:
ab:1b:80:62:39:3b:09:a0:14:45:64:db:f1:a2:c0:
c5:e1:c4:c3:22:70:5d:93:b9:1a:1b:4d:a2:03:92:
0f:49:c4:0c:20:64:29:c0:ea:a5:8a:37:31:bf:f4:
56:7b:61:8a:72:75:7e:2e:b2:58:79:53:d9:bf:be:
c7:7e:29:be:4a:16:c4:75:ed:07:b0:6f:d5:d3:af:
a6:39:69:3e:52:91:30:ad:58:a1:b8:fb:f4:f6:16:
c9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C5:CB:69:E8:9C:CC:17:AD:E8:55:AE:B6:0C:32:58:C7:26:19:B3
X509v3 Authority Key Identifier:
keyid:91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:84:aa:2f:2f:49:b2:72:ff:55:fc:b8:a2:7e:ba:8c:07:7c:
21:73:43:be:83:da:1f:0e:6f:53:17:b5:bb:44:2a:ad:57:6c:
62:b8:1a:7c:93:2c:c2:ed:ce:1d:05:82:09:32:b5:51:05:b5:
d7:95:f3:7b:66:1b:5c:cd:31:86:95:fc:9b:62:94:a0:96:b4:
62:fa:d4:d4:54:92:08:7f:73:25:1a:81:35:1a:2a:6c:0e:ff:
e9:b8:1c:ba:d2:e0:56:09:24:ce:29:1e:ee:e2:0e:c0:29:66:
02:a1:f0:32:c2:c0:1e:75:a2:e2:60:bb:70:6d:4f:69:d0:69:
63:03:53:b1:f5:c7:2b:e0:fc:af:7d:60:00:5a:45:ec:18:55:
8d:8c:93:09:fc:f5:96:2a:1d:fc:c3:98:d8:f8:03:ba:ab:e9:
8b:7d:76:82:41:5a:54:96:fb:97:3a:13:6f:aa:1b:62:26:b1:
4b:06:37:e2:d1:e1:04:b5:e4:5b:17:ea:64:a3:01:08:7a:05:
b2:33:1d:d5:b6:46:56:7a:cc:e7:49:8d:16:e9:5b:c6:a3:be:
8f:e1:3c:f4:62:a9:60:83:f3:b9:d1:5b:c6:4a:33:01:e7:17:
b0:67:03:4b:f7:0e:7e:78:b0:11:89:3f:b3:7e:5b:90:b9:2a:
fd:bd:1c:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:33 2025 by rpki-client