Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json)
Hash identifier: YTfNAgkr4zU7FRomXCHYK7100mFPkRnVKLma1pITTao=
Subject key identifier: 89:D1:09:56:CD:F1:B8:11:05:58:10:CD:D0:9F:65:BC:6A:3B:48:83
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 0199FCC61895120AD3BD2D4596B3B8162D6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
Manifest number: 1422
Signing time: Sun 19 Oct 2025 14:01:04 +0000
Manifest this update: Sun 19 Oct 2025 14:01:04 +0000
Manifest next update: Mon 20 Oct 2025 14:01:04 +0000
Files and hashes: 1: 5r4roNSh8TWW8XLP5gLpTUYEtC8.roa (hash: AktxI+V17na/V+Hz9k9ha+hVm279Tijdqa0CvwmI/7Q=)
2: Gxhnb8KOTrVvxDF8yuKOv2GjqtU.roa (hash: QO/QE2IRS/pPOvcN+3PpcsYmJwErYvPF742Zst4rEP8=)
3: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: JX9WLAyziXmYUEvX+l26FMAhYITQ2+cE6n45YA5JSrw=)
4: TtvNTrhsW3wjOkk9eOHVRXZxsEg.roa (hash: gPmUeUcfbob5JNxYnTxCOkrudyCPlteleGt+PSj2/00=)
5: ekdDszvqGt_eJ_hGO_xIWYzbzAA.roa (hash: zqr+o3bWODGGGIrhIMHHh91Y/JEASXYkOBODwzmfRz8=)
6: iIQaeGWo37d4w_fiU_R29carNk8.roa (hash: FbNS7L7XPQULlvHXJ6Yq35UuABtJRjSmhRiCGjDk29Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:18:95:12:0a:d3:bd:2d:45:96:b3:b8:16:2d:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Oct 19 14:01:04 2025 GMT
Not After : Oct 20 14:01:04 2025 GMT
Subject: CN=89d10956cdf1b811055810cdd09f65bc6a3b4883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:09:6a:8b:18:e0:f6:3a:dc:44:5d:6f:aa:34:
e4:36:a5:0c:55:c4:15:de:bb:59:e3:98:e3:e8:41:
2d:d7:f4:d1:4e:a7:52:4c:00:77:cb:dd:7e:c9:8b:
fe:3d:4b:3a:45:c3:4d:6a:a6:e5:a8:85:63:78:56:
b8:c2:9d:a3:7f:02:34:87:85:c9:b7:f1:62:1e:f2:
5c:12:39:cb:99:ae:73:23:4a:1c:fc:ec:01:ee:57:
34:54:74:af:f4:f9:ee:de:b4:c5:ac:10:fd:d1:e6:
8a:5a:41:68:6b:57:7d:d4:b5:88:b7:08:a8:37:24:
67:02:07:56:30:6c:b4:f5:8a:e7:f9:20:fc:02:dc:
32:1b:7e:47:75:59:87:dd:27:0d:50:53:61:ed:cd:
2a:5f:48:6a:e0:2b:9e:7c:38:c5:bd:89:5c:a0:e5:
ac:10:4c:ce:63:87:d4:4e:0d:01:55:d5:6c:7e:35:
97:c2:b5:c4:cc:93:56:86:02:ac:c2:a0:38:49:c4:
27:50:58:09:21:81:25:3a:22:52:58:af:f1:0c:52:
82:64:66:cd:ac:1e:ea:f9:c0:c7:60:08:bf:3b:82:
07:08:99:98:51:8a:75:d5:75:26:a2:09:9a:0e:3d:
1f:b3:aa:e2:84:49:36:76:31:de:1e:1d:fe:2b:ef:
e3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D1:09:56:CD:F1:B8:11:05:58:10:CD:D0:9F:65:BC:6A:3B:48:83
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:6e:6c:00:26:d6:99:ed:fc:d6:2c:d8:d1:c0:01:f5:13:33:
54:c2:88:c0:8a:2b:e1:b8:15:a9:21:fa:5d:69:12:db:0c:40:
7a:e4:b1:47:4e:32:1f:94:68:b2:7d:ff:a3:db:ee:57:78:f4:
6c:23:68:5e:d5:14:e6:70:4b:00:bf:2d:2f:f4:e9:ee:3a:69:
4a:a2:3c:2b:3d:9b:39:da:f0:c2:8d:46:74:17:b2:37:0b:0c:
e1:c5:90:82:43:92:4b:43:29:4e:86:30:d5:f7:ce:a0:63:e2:
67:15:06:e0:ce:3e:f8:64:34:a5:0e:33:48:f6:8b:91:0b:a4:
5d:aa:7e:ee:61:a1:09:c8:04:43:a6:e7:b9:03:11:66:3a:3a:
fd:1d:a5:e4:4d:1f:12:c8:bb:86:46:4f:c5:d1:51:a0:9b:09:
68:3f:8c:5d:4a:42:67:b5:c8:e3:7d:be:1f:90:76:7b:d6:15:
b8:4e:b4:7a:7f:b4:1a:04:d3:99:2b:83:5a:aa:15:04:4d:af:
f9:07:a3:4a:cf:10:8e:8a:a3:5a:58:6d:0e:0e:7e:8a:c1:ae:
cf:be:a7:67:94:7c:1c:e0:c0:be:3e:c3:e3:e0:ff:2f:13:4f:
70:10:cf:cd:c0:c2:a1:9d:d8:d3:e7:5e:61:ca:fe:53:5c:4a:
5f:21:e4:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:33:35 2025 by rpki-client