Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/389fbf-dfb5-4a0b-b846-4328429bd374/1/kfikmw1lM9BnmVaH-u49tzqqCLE.mft
File: kfikmw1lM9BnmVaH-u49tzqqCLE.mft (raw, json)
Hash identifier: 0+qNC7UlFvG/iGTK4tz0niNv9rKtfr6U36wOD9Yie8Y=
Subject key identifier: F9:0C:36:46:A4:BD:4B:26:35:D5:A8:83:71:3B:3D:EA:0B:58:D4:2A
Authority key identifier: 91:F8:A4:9B:0D:65:33:D0:67:99:56:87:FA:EE:3D:B7:3A:AA:08:B1
Certificate issuer: /CN=91f8a49b0d6533d067995687faee3db73aaa08b1
Certificate serial: 019A4EF438F5A50E0EEDC36D2E766FB839AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfikmw1lM9BnmVaH-u49tzqqCLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/389fbf-dfb5-4a0b-b846-4328429bd374/1/kfikmw1lM9BnmVaH-u49tzqqCLE.mft
Manifest number: 061F
Signing time: Tue 04 Nov 2025 13:00:19 +0000
Manifest this update: Tue 04 Nov 2025 13:00:19 +0000
Manifest next update: Wed 05 Nov 2025 13:00:19 +0000
Files and hashes: 1: kfikmw1lM9BnmVaH-u49tzqqCLE.crl (hash: 4JzZ/T7FOGnQHZtE+bNJo40xxaeOeuxtlQhh/ps2aCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/389fbf-dfb5-4a0b-b846-4328429bd374/1/kfikmw1lM9BnmVaH-u49tzqqCLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/389fbf-dfb5-4a0b-b846-4328429bd374/1/kfikmw1lM9BnmVaH-u49tzqqCLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kfikmw1lM9BnmVaH-u49tzqqCLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:38:f5:a5:0e:0e:ed:c3:6d:2e:76:6f:b8:39:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f8a49b0d6533d067995687faee3db73aaa08b1
Validity
Not Before: Nov 4 13:00:19 2025 GMT
Not After : Nov 5 13:00:19 2025 GMT
Subject: CN=f90c3646a4bd4b2635d5a883713b3dea0b58d42a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:73:46:09:dd:44:27:6f:56:03:69:4c:81:c5:
62:8b:40:57:0d:00:66:36:78:aa:08:be:c3:f5:eb:
77:1e:26:4d:a7:5c:67:61:b9:77:30:1c:ea:6e:77:
da:83:6c:86:ad:3a:8e:5a:5f:4f:6c:ee:ec:6b:ad:
38:46:68:25:8d:bd:12:19:e1:bc:59:5e:81:5e:a3:
e4:5e:7f:c5:e1:cb:13:b8:0f:13:0b:aa:32:61:bc:
43:e4:c2:23:3e:31:6f:31:9f:e9:8a:46:24:19:a0:
c5:72:50:e9:3f:08:3d:9e:61:63:af:27:de:4f:83:
cf:4f:f1:c3:3f:aa:b4:46:18:41:af:ef:94:5f:2d:
fe:cd:4f:ca:3d:8d:92:21:e8:9f:f6:cf:9d:fd:a6:
30:0c:bd:39:b9:a4:a3:e2:28:36:a7:2f:fa:20:a5:
43:9b:dd:04:3e:2b:8e:f3:a9:7c:50:10:3d:2c:98:
2a:b2:8d:ff:07:d0:be:ab:54:5f:59:4c:f4:ef:a6:
7d:58:94:1a:72:be:81:06:7f:23:7f:94:1b:a1:8f:
c4:2e:b0:ac:87:24:2c:42:d3:0c:e6:19:2a:36:54:
e6:a0:4e:27:5b:86:26:73:bc:9e:d6:fc:32:ca:f0:
c8:7a:f0:2c:1d:fb:ec:8f:3e:68:b1:9d:45:46:2e:
40:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:0C:36:46:A4:BD:4B:26:35:D5:A8:83:71:3B:3D:EA:0B:58:D4:2A
X509v3 Authority Key Identifier:
keyid:91:F8:A4:9B:0D:65:33:D0:67:99:56:87:FA:EE:3D:B7:3A:AA:08:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfikmw1lM9BnmVaH-u49tzqqCLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/389fbf-dfb5-4a0b-b846-4328429bd374/1/kfikmw1lM9BnmVaH-u49tzqqCLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/389fbf-dfb5-4a0b-b846-4328429bd374/1/kfikmw1lM9BnmVaH-u49tzqqCLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:36:10:9e:3b:69:43:ee:a1:d7:30:e4:fb:52:59:fa:3c:49:
a5:8d:36:7b:18:8d:3b:90:21:46:48:0d:2d:e0:f5:b9:f6:9e:
95:92:8c:db:36:9b:53:99:a8:15:72:1f:be:58:2c:4b:34:b0:
b2:b0:dd:cc:e1:d6:e1:a9:07:7a:d1:14:bb:27:b2:72:07:d7:
bc:12:65:e5:97:22:ae:e7:9e:a4:3c:98:86:7e:2c:bc:1a:65:
cd:35:9b:1e:68:71:c1:03:59:53:72:bb:57:49:5c:d6:97:ab:
31:52:c0:55:0d:42:0d:06:3d:25:f1:a9:18:8d:70:0f:4c:f7:
5a:cb:c3:bd:fb:1f:7d:af:59:71:92:93:e2:64:74:e4:04:7e:
ed:12:50:b5:3c:fc:3d:64:13:95:45:84:ee:43:28:2b:ff:4d:
34:33:2a:77:aa:4e:0c:76:f8:52:ac:d2:fd:ee:66:19:7a:24:
a8:d7:e7:54:ce:4f:b3:37:6e:6b:20:21:67:c4:cc:9b:4e:60:
5c:1e:8a:8a:10:dc:c4:bd:10:21:4e:ed:58:4a:8e:f0:f6:65:
06:26:9f:56:68:62:3e:e3:f9:76:92:b0:7b:83:69:69:30:1b:
4b:cf:a0:55:10:d0:6b:01:15:12:20:b7:f2:0a:24:eb:16:68:
59:dc:83:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:31:26 2025 by rpki-client