Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
File: KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft (raw, json)
Hash identifier: 8RjXk1qp61q+rLJ9E1nIMXgOg8sRpsUPZ7Ai6tzjK3k=
Subject key identifier: AA:65:60:21:78:66:4B:8C:04:91:AB:13:DC:61:84:90:50:CC:6A:01
Authority key identifier: 2A:A3:C9:9F:F5:8B:8F:73:3E:F2:C6:2A:77:72:C0:C1:F2:9E:57:FC
Certificate issuer: /CN=2aa3c99ff58b8f733ef2c62a7772c0c1f29e57fc
Certificate serial: 019A56403D3B7C4E933F0D25D03724D93DE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
Manifest number: 101C
Signing time: Wed 05 Nov 2025 23:00:41 +0000
Manifest this update: Wed 05 Nov 2025 23:00:41 +0000
Manifest next update: Thu 06 Nov 2025 23:00:41 +0000
Files and hashes: 1: KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl (hash: 6psoeOZ4ikHSlS7cw9p/gKwb6b7zDAXIOYppHWKFZH0=)
2: UZvnE-CaTB9qoHVdVXMgB-LiNEM.roa (hash: Ycg6B0Rffq0DfziTHdPyE76c/wB4R/dWXA7Fjbacvbs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 21:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:40:3d:3b:7c:4e:93:3f:0d:25:d0:37:24:d9:3d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3c99ff58b8f733ef2c62a7772c0c1f29e57fc
Validity
Not Before: Nov 5 23:00:41 2025 GMT
Not After : Nov 6 23:00:41 2025 GMT
Subject: CN=aa65602178664b8c0491ab13dc61849050cc6a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f9:4e:99:cb:ca:f5:76:c6:44:a8:14:e1:31:
b3:94:91:fc:f9:ec:6b:85:f2:af:d1:a1:24:51:a1:
29:8f:d0:3c:fa:84:9f:58:43:55:b2:ba:e5:22:3f:
73:b2:54:d1:8d:0e:b5:8b:9e:65:06:05:7b:35:7e:
47:de:0e:d0:17:d2:94:fd:8a:c2:0c:92:88:45:7b:
ff:c3:57:e0:b2:bb:d4:fe:b1:eb:c0:eb:2a:b0:b4:
d1:20:1a:6e:37:cf:db:19:04:8e:ed:42:06:d3:09:
14:b4:e7:98:22:56:4a:f6:fd:26:e8:0f:10:5e:c3:
d3:6c:89:4c:0c:a1:f7:b9:c9:be:08:ca:95:27:01:
73:6c:ac:68:8e:d7:89:8b:30:f1:12:da:77:f4:8b:
8c:cb:13:96:dc:e3:02:99:69:66:8d:99:7c:6a:e6:
8b:60:af:4c:90:21:87:a7:53:54:12:ab:12:4c:d8:
2a:02:4b:f4:1c:44:b9:66:ea:70:b9:8c:bc:03:12:
c5:a0:4a:e7:60:9d:38:d6:28:3d:4f:f6:d3:68:0a:
73:01:b4:19:d9:56:0f:40:e8:3d:16:00:86:c4:16:
eb:ec:00:94:d1:e5:4e:da:0a:54:44:08:d2:35:30:
66:77:81:f2:a5:bd:2a:78:5f:fe:12:2b:a8:06:7e:
c9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:65:60:21:78:66:4B:8C:04:91:AB:13:DC:61:84:90:50:CC:6A:01
X509v3 Authority Key Identifier:
keyid:2A:A3:C9:9F:F5:8B:8F:73:3E:F2:C6:2A:77:72:C0:C1:F2:9E:57:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:a6:5f:e7:f9:94:0e:67:c5:9c:57:fe:9f:6d:bf:a3:02:42:
3c:06:a8:fe:11:b0:eb:30:67:9f:e1:55:c0:10:18:1b:35:41:
60:95:7d:1b:e6:20:05:8d:66:d0:36:03:91:27:20:41:6a:90:
8a:ab:8a:f0:47:7a:97:17:a7:1d:42:81:c5:9c:6b:37:69:e3:
71:04:0b:10:1b:2a:e8:35:f6:54:b5:57:81:63:b7:43:f4:40:
0f:00:8e:b0:25:27:b8:82:8e:27:d9:87:53:01:2a:f1:6d:7d:
bf:1c:0e:be:16:cb:42:1e:13:b6:62:da:79:00:87:9b:71:1e:
19:67:86:35:f4:e5:18:d5:10:55:54:e0:87:55:56:9f:14:4b:
cd:91:94:86:11:df:ec:36:6f:a5:74:2c:85:5e:9e:6f:e4:71:
58:41:55:08:3d:d0:60:8a:a5:00:9b:47:27:71:c4:09:61:0c:
47:c8:12:05:ae:47:2a:ac:bf:da:6e:14:9f:be:65:f9:3c:c5:
cb:79:94:de:fd:ad:47:9b:68:bd:3a:f5:b7:02:98:67:ea:b0:
51:6f:6c:e3:74:f2:5c:a0:fb:8a:f0:08:9c:65:5b:f8:ab:31:
d1:84:e6:e5:41:3e:66:11:26:a6:45:97:36:d6:88:22:3a:b7:
5d:f0:83:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 00:24:34 2025 by rpki-client