Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
File: kkecrihHZdYoBEEZAJiA0op1YLE.mft (raw, json)
Hash identifier: 7RK7gaCZ9mc+cgMBzsEzWmVt0h9NzIjwLtZbapifdHE=
Subject key identifier: 1D:06:67:8A:D3:C0:7B:E4:F6:AD:1C:84:00:2B:DF:3E:EC:B6:B4:19
Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1
Certificate serial: 0198D4E00B00AA88D3F7F3004CD05DAFEC04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 03:01:49 +0000
Manifest this update: Sat 23 Aug 2025 03:01:49 +0000
Manifest next update: Sun 24 Aug 2025 03:01:49 +0000
Files and hashes: 1: kkecrihHZdYoBEEZAJiA0op1YLE.crl (hash: Cee4zNEyPWZOTHY4sOwM/W57Pqjm5ZszBWKV6AMfoyc=)
2: x9d_ZYOPUgUTIG_dU1aWLhzD7L0.roa (hash: Eoi/Kjhf2x+MudONjVV9qJBRoFTzvMFaOuh/XyvvI1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:0b:00:aa:88:d3:f7:f3:00:4c:d0:5d:af:ec:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92479cae284765d628044119009880d28a7560b1
Validity
Not Before: Aug 23 03:01:49 2025 GMT
Not After : Aug 24 03:01:49 2025 GMT
Subject: CN=1d06678ad3c07be4f6ad1c84002bdf3eecb6b419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3e:62:9f:63:83:bb:be:95:71:f6:36:4a:b8:
ae:17:cb:fb:66:7c:1f:f4:8c:9d:d4:75:24:fa:95:
28:92:56:f7:ea:55:c6:ca:c1:2b:a0:b7:2d:aa:56:
ce:25:41:e9:d9:4a:d2:fa:0b:6e:86:b4:94:47:8b:
1b:ce:15:ea:10:ff:3a:65:65:0f:8f:5a:bc:bd:44:
ff:78:2f:84:bc:b9:b7:15:01:6f:1d:ce:5e:df:63:
39:2f:ec:b0:d1:b3:ba:86:2e:9f:f8:fa:20:58:b0:
f4:53:32:d1:21:b7:f4:5a:f9:c2:d6:3f:46:90:6b:
b5:48:43:c3:3e:ea:71:5c:6b:94:b0:3e:ae:34:d9:
4e:96:1b:ae:7c:4e:a3:ba:1e:04:ad:c6:47:c5:6c:
16:9f:d1:e6:c8:57:8f:bb:29:68:a3:24:31:5d:01:
2f:47:5f:b5:80:59:9c:dd:52:2c:4d:1f:5b:9b:05:
fe:c8:e5:17:66:73:cd:b4:e5:85:38:4c:d2:88:ff:
13:58:c6:d7:b1:79:a2:94:51:99:d4:f5:30:86:4e:
fa:c6:26:43:6a:d5:a8:b0:97:b3:45:f8:f4:7f:4f:
f9:8a:f5:7f:96:0b:a7:9f:9e:b7:f6:dc:9e:d4:14:
ae:3e:98:3f:6d:17:11:31:32:a1:b9:13:fb:cd:1e:
c1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:06:67:8A:D3:C0:7B:E4:F6:AD:1C:84:00:2B:DF:3E:EC:B6:B4:19
X509v3 Authority Key Identifier:
keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:df:45:1e:1f:1d:84:fe:55:f6:9c:13:28:73:eb:ce:ee:07:
e3:50:c5:04:b2:22:37:f7:16:b7:2c:1c:c8:0a:ac:a8:e1:ba:
cc:09:74:40:63:b7:69:69:7c:60:0c:7f:b0:99:6b:ec:34:41:
19:89:75:78:bc:9e:09:65:9f:27:ae:ca:28:1c:9f:83:65:52:
7a:f2:6b:e2:65:bd:b2:5a:f7:62:04:f0:a4:9c:2b:76:77:de:
97:4f:5f:80:b0:68:98:b5:3b:1e:a5:d9:ec:e1:bd:4d:59:6d:
ba:df:5c:08:22:24:f9:e2:c2:cd:5e:0c:c9:40:5f:f4:86:20:
dd:81:e2:b4:08:0a:94:81:48:c7:88:94:65:05:bc:fb:67:9e:
9c:38:ed:d4:4f:91:d5:a6:07:f6:e6:05:7c:b1:e9:1c:ec:2a:
e2:43:f2:9f:71:55:23:8e:36:1f:13:f3:dc:72:40:87:1f:68:
c5:88:f9:4b:9a:ed:00:16:ad:87:1f:b3:3d:38:74:11:a0:df:
07:68:cf:58:ec:2e:e7:57:5e:df:cf:63:39:43:33:dc:4d:25:
53:f6:f6:9b:34:01:b2:ec:f3:61:bf:1f:82:1d:7e:96:bd:ce:
11:95:ed:49:b5:0e:13:a5:2e:74:76:32:01:96:34:c3:1e:cd:
0e:42:5c:f8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4AsAqojT9/MATNBdr+wEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNDc5Y2FlMjg0NzY1ZDYyODA0NDExOTAwOTg4MGQyOGE3
NTYwYjEwHhcNMjUwODIzMDMwMTQ5WhcNMjUwODI0MDMwMTQ5WjAzMTEwLwYDVQQD
EygxZDA2Njc4YWQzYzA3YmU0ZjZhZDFjODQwMDJiZGYzZWVjYjZiNDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8T5in2ODu76VcfY2SriuF8v7Znwf
9Iyd1HUk+pUoklb36lXGysEroLctqlbOJUHp2UrS+gtuhrSUR4sbzhXqEP86ZWUP
j1q8vUT/eC+EvLm3FQFvHc5e32M5L+yw0bO6hi6f+PogWLD0UzLRIbf0WvnC1j9G
kGu1SEPDPupxXGuUsD6uNNlOlhuufE6juh4ErcZHxWwWn9HmyFePuylooyQxXQEv
R1+1gFmc3VIsTR9bmwX+yOUXZnPNtOWFOEzSiP8TWMbXsXmilFGZ1PUwhk76xiZD
atWosJezRfj0f0/5ivV/lgunn5639tye1BSuPpg/bRcRMTKhuRP7zR7B1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB0GZ4rTwHvk9q0chAAr3z7strQZMB8GA1UdIwQY
MBaAFJJHnK4oR2XWKARBGQCYgNKKdWCxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8wNTgyMjAtNTk2ZS00ODBhLWEwNTgt
MDI0Njg2OGFhMGVkLzEva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8wNTgyMjAtNTk2ZS00ODBhLWEwNTgtMDI0Njg2OGFhMGVk
LzEva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALt9FHh8d
hP5V9pwTKHPrzu4H41DFBLIiN/cWtywcyAqsqOG6zAl0QGO3aWl8YAx/sJlr7DRB
GYl1eLyeCWWfJ67KKByfg2VSevJr4mW9slr3YgTwpJwrdnfel09fgLBomLU7HqXZ
7OG9TVltut9cCCIk+eLCzV4MyUBf9IYg3YHitAgKlIFIx4iUZQW8+2eenDjt1E+R
1aYH9uYFfLHpHOwq4kPyn3FVI442HxPz3HJAhx9oxYj5S5rtABathx+zPTh0EaDf
B2jPWOwu51de389jOUMz3E0lU/b2mzQBsuzzYb8fgh1+lr3OEZXtSbUOE6UudHYy
AZY0wx7NDkJc+A==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:14:12 2025 by rpki-client