Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: N3MPdV9k2dZ7aCGLa9eqY+Duv6cVkOBfur/aFY9xjFU=
Subject key identifier: 11:DD:FC:EB:4E:1B:2E:2B:8D:DE:E0:EE:B7:E1:EF:3B:4D:A8:DC:ED
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 019A4DE18CF014468F8E70D5F998B6F8C532
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 03FD
Signing time: Tue 04 Nov 2025 08:00:18 +0000
Manifest this update: Tue 04 Nov 2025 08:00:18 +0000
Manifest next update: Wed 05 Nov 2025 08:00:18 +0000
Files and hashes: 1: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: cCAul35O1pTFoUFFGU0LDvDPxnOl9N6KuxYZv1NYzO4=)
2: ffvaic9mo-Ox_7Jsdhd4jhWeyvM.roa (hash: nAU1XWM3o+xHaVb0+VtmU8Q3s90CIRxbMQo+s7S+UMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 08:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:e1:8c:f0:14:46:8f:8e:70:d5:f9:98:b6:f8:c5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Nov 4 08:00:18 2025 GMT
Not After : Nov 5 08:00:18 2025 GMT
Subject: CN=11ddfceb4e1b2e2b8ddee0eeb7e1ef3b4da8dced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ab:db:03:b9:84:f6:4d:93:1c:8f:aa:db:83:
d8:1c:3d:ab:03:8d:52:6f:3a:b8:75:15:b0:54:72:
6f:3a:96:10:41:5c:d5:da:9f:c0:a4:04:e4:53:11:
71:56:60:54:6c:73:2e:76:8d:cc:8f:53:ad:2c:8b:
49:88:8d:65:32:83:51:9b:ec:09:71:c1:70:b2:b2:
69:99:29:41:da:90:ea:ec:1f:14:a5:6d:53:71:0a:
02:00:f6:9f:48:b4:ac:8e:27:34:54:5c:b1:c2:8c:
4a:f4:59:e4:02:45:c0:05:06:aa:cf:6f:59:e9:89:
62:81:f5:c8:78:fc:f6:73:68:88:89:d3:59:66:14:
af:5d:2e:48:09:6a:9f:0a:42:dd:f2:dd:68:5b:ea:
ca:dd:6a:c3:83:f8:dc:61:da:5f:07:e8:ad:2f:98:
bc:e8:4e:55:2e:13:a2:3b:b4:25:6d:ab:d8:22:e2:
b5:dd:da:2a:c5:33:06:48:98:bd:51:b5:11:81:ac:
2b:88:2f:5a:89:43:fb:67:8b:3b:d9:32:b4:ae:d0:
c5:be:04:33:6b:94:73:4a:f9:28:d8:17:f4:26:bd:
50:34:18:07:d8:71:15:8f:8b:f9:3f:02:d7:71:12:
50:46:86:4a:67:5e:3b:84:e2:77:6d:49:f9:91:1f:
5f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:DD:FC:EB:4E:1B:2E:2B:8D:DE:E0:EE:B7:E1:EF:3B:4D:A8:DC:ED
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:6d:e8:77:7e:4a:de:80:ed:cf:f7:73:e8:4d:cf:73:64:41:
64:5d:55:1b:ca:6f:b3:b2:c7:08:93:66:75:2b:61:60:cf:57:
f6:35:e9:33:0e:7c:b9:c2:5e:fb:8e:26:52:6d:d9:01:f8:2d:
8a:1d:13:c5:74:d4:51:9a:2b:1b:1c:18:29:bc:bb:7f:eb:31:
6d:34:31:7a:d7:e4:13:9c:fc:4a:ee:7f:46:25:be:c2:2c:da:
92:90:4a:da:06:8b:71:bb:66:12:f0:d7:c2:00:9b:e6:c2:cc:
cf:61:78:c3:33:61:7d:b6:fc:a9:6a:65:fe:72:12:db:8b:5e:
32:32:fe:fe:46:b7:1b:85:78:7c:32:9b:a2:e5:5e:11:e3:26:
ba:ca:12:53:db:fa:b5:40:da:ea:3d:12:5e:22:93:6d:88:ae:
6a:06:2d:14:d9:e4:09:e4:bc:e7:1f:9b:dc:37:26:cd:38:dd:
84:59:e0:a2:d4:1e:d1:e2:e4:a5:0b:3c:fe:17:59:c2:63:66:
72:de:49:0d:6b:cd:52:a1:f2:28:76:f0:3d:96:34:64:4d:59:
45:91:0b:28:bf:ec:d8:33:8c:82:ed:1a:cf:d6:ca:f4:a8:d9:
cd:26:a7:77:66:7c:73:d0:43:19:70:49:06:41:c9:75:a1:11:
b9:f3:18:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:40:29 2025 by rpki-client