Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
File: kkecrihHZdYoBEEZAJiA0op1YLE.mft (raw, json)
Hash identifier: axc+AArUMyVYoUNMv7/TIBmZam0ss0OT8IUKVmcpZFE=
Subject key identifier: A2:5F:06:83:2F:DE:C8:4B:1D:CB:5F:77:3A:E5:B7:52:4F:A1:C7:63
Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1
Certificate serial: 0199FC58276460D2EF94A599D461E74CF3A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
Manifest number: 16E1
Signing time: Sun 19 Oct 2025 12:00:59 +0000
Manifest this update: Sun 19 Oct 2025 12:00:59 +0000
Manifest next update: Mon 20 Oct 2025 12:00:59 +0000
Files and hashes: 1: kkecrihHZdYoBEEZAJiA0op1YLE.crl (hash: lT3uVvWjij6UBQoiEomRl4nD4xyuN9ZW63RFDCH9fsk=)
2: x9d_ZYOPUgUTIG_dU1aWLhzD7L0.roa (hash: Eoi/Kjhf2x+MudONjVV9qJBRoFTzvMFaOuh/XyvvI1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:27:64:60:d2:ef:94:a5:99:d4:61:e7:4c:f3:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92479cae284765d628044119009880d28a7560b1
Validity
Not Before: Oct 19 12:00:59 2025 GMT
Not After : Oct 20 12:00:59 2025 GMT
Subject: CN=a25f06832fdec84b1dcb5f773ae5b7524fa1c763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d3:5d:49:e2:48:e2:51:14:8f:7f:93:f1:3b:
7c:09:d6:2c:7b:82:cf:4c:df:d6:55:01:f3:5c:b4:
65:6f:21:cc:dd:24:f4:46:65:72:e1:e3:88:15:73:
3a:1c:79:3e:bc:bb:0a:dd:36:bf:0e:57:cb:0e:c3:
26:26:aa:6a:cf:85:73:7b:3e:a4:24:23:84:91:ee:
0c:26:82:64:46:f6:c9:01:54:5d:57:8a:ac:c5:c1:
84:b1:60:de:4b:d2:76:5f:55:fb:92:ff:e1:9a:30:
f2:81:ec:c1:64:41:7e:26:f6:c7:7b:68:ce:5b:4c:
ea:a4:86:27:d5:ca:9e:a9:a2:f1:96:07:07:9b:37:
1f:8b:b2:f4:e3:bd:fe:ad:b6:a9:2e:fe:c7:bd:bc:
fc:58:5c:4b:1f:39:1b:e8:54:b3:af:ba:23:59:bb:
27:35:b2:94:54:64:55:00:ae:dc:93:d0:6f:f3:f3:
a6:bc:50:77:41:ad:9f:2d:5c:d9:2c:9d:58:2f:28:
5f:da:c9:4d:81:7a:3d:fd:9b:bc:ea:02:dd:bc:5b:
95:ba:23:0a:9a:52:6c:47:99:a2:86:e0:01:7b:90:
5e:fe:e2:a3:8c:31:ab:4a:ab:df:91:dc:5d:a6:6c:
70:07:3c:b4:bf:ba:52:29:e6:ed:66:34:1b:e0:b1:
62:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:5F:06:83:2F:DE:C8:4B:1D:CB:5F:77:3A:E5:B7:52:4F:A1:C7:63
X509v3 Authority Key Identifier:
keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:30:93:ee:22:3b:2d:b5:1e:ab:17:18:3f:06:f2:5a:7d:ed:
90:ce:c3:e3:f7:50:d8:fd:47:83:7b:54:8e:20:6e:ef:e2:79:
12:f7:83:72:8a:b2:83:a2:d2:be:fd:92:9f:b0:e8:cf:5a:55:
50:83:bf:d6:e6:24:6a:c4:3d:07:09:33:05:ac:be:c1:da:c7:
b1:eb:05:ea:07:af:67:16:25:e8:5e:e1:1b:f3:91:23:8b:85:
d5:e1:0b:4f:9c:a5:8c:16:f4:a5:37:f2:72:4f:d7:12:1c:03:
f0:f8:6f:d2:ef:25:e0:07:16:4d:1e:aa:9e:03:35:a8:1c:bb:
b0:5b:61:a5:71:15:fc:42:ba:06:e3:05:b1:af:6e:41:4a:bc:
d7:88:c4:a6:8b:0a:64:a8:e3:13:b2:39:28:75:fe:7b:68:d4:
e6:82:5a:97:be:d8:91:3c:f8:2f:93:cb:4a:9c:bf:d3:c5:f8:
48:38:d8:8d:0c:c7:4c:a2:16:eb:64:68:51:a4:39:34:02:6a:
1e:5d:19:b0:e9:0a:c2:17:17:45:24:14:1e:be:b2:89:8f:9e:
8a:03:2d:84:af:8a:7f:d6:d2:4b:ff:af:6a:d3:ae:5c:10:17:
43:7a:d3:5e:bb:5c:8c:76:46:75:e1:ee:c9:00:21:e2:9b:45:
0e:e7:4f:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:45 2025 by rpki-client