Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
File: KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft (raw, json)
Hash identifier: B+bkaDdVD/LNxQ+BJP0+aqPcNv+l46OROAyJs3mJVOM=
Subject key identifier: 6D:63:7D:FB:D5:B8:75:C2:CE:E6:F5:52:52:22:FD:1E:9D:9F:94:30
Authority key identifier: 28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
Certificate issuer: /CN=283624007f44dcaf568c370e7f71f950cb1940ef
Certificate serial: 0199FE46BABB9CCF2B6997598599F6F3064E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
Manifest number: 085E
Signing time: Sun 19 Oct 2025 21:01:12 +0000
Manifest this update: Sun 19 Oct 2025 21:01:12 +0000
Manifest next update: Mon 20 Oct 2025 21:01:12 +0000
Files and hashes: 1: 8nNgOGtBQWNTilGRrMmNlFZZwGM.roa (hash: mOJcQQ3vA0VCC5mkB6hJglG7LUq/Vu6wljMQaBgi+dM=)
2: KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl (hash: cN4UsaYuICgFMXTn6wTC1nNSQh+TlV2CWLoSNK9SPjc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:ba:bb:9c:cf:2b:69:97:59:85:99:f6:f3:06:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283624007f44dcaf568c370e7f71f950cb1940ef
Validity
Not Before: Oct 19 21:01:12 2025 GMT
Not After : Oct 20 21:01:12 2025 GMT
Subject: CN=6d637dfbd5b875c2cee6f5525222fd1e9d9f9430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:b2:c2:2e:e4:d5:65:5e:84:1f:e6:7f:3a:
f3:d1:30:b8:74:f3:ea:21:ff:ca:8a:de:d0:6e:9b:
f1:eb:88:52:00:3e:a5:d7:95:4e:36:8b:b6:53:db:
93:65:bd:3c:c5:ef:13:9f:d0:70:d1:35:7d:c6:f2:
8b:73:e3:57:f9:94:74:56:63:2e:6e:d5:6b:b1:a2:
62:9c:69:11:3e:29:2b:c7:34:a4:a1:cc:8b:79:5f:
3e:3d:41:5a:90:37:09:a8:e8:38:f3:42:20:ff:d3:
2d:0d:78:77:f8:96:4b:8e:2c:d9:9e:ad:7b:bb:f5:
01:1a:5c:70:35:7b:c2:87:64:3c:59:25:ac:16:0e:
43:65:2f:ea:3d:45:33:f1:50:2a:e0:8a:1a:03:cf:
13:64:80:28:ac:26:a4:32:c8:7c:ee:0f:fe:1d:02:
7d:4b:26:ce:a1:0e:49:85:f1:de:f5:ce:9b:59:9e:
7b:db:74:e2:13:40:5e:56:5b:b1:42:44:e2:df:d7:
08:58:ec:db:b9:e9:cc:b5:89:ce:cb:fd:5d:e8:ec:
51:db:0f:31:ae:33:81:ff:c4:41:32:f7:e0:35:ee:
e0:c1:4b:41:3c:a9:58:3a:00:30:35:39:bd:bb:70:
19:89:4d:6c:d6:8a:7c:ad:a3:f4:ed:86:71:52:a5:
47:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:63:7D:FB:D5:B8:75:C2:CE:E6:F5:52:52:22:FD:1E:9D:9F:94:30
X509v3 Authority Key Identifier:
keyid:28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:09:3f:32:7c:d1:c6:4a:9e:18:8a:73:64:19:1d:53:19:c8:
77:0b:46:a3:4c:82:3a:aa:45:22:72:70:81:51:71:44:2c:8a:
9c:71:1b:40:4d:54:2a:2f:4c:31:88:e0:83:23:f5:a3:2e:3c:
1f:d2:a9:6e:16:f6:09:ad:04:c4:03:14:61:3d:5f:06:d6:87:
75:1e:7b:76:68:4c:14:73:83:d0:5d:4e:d8:dd:84:a7:e9:96:
88:4e:38:dc:6b:34:20:ce:3d:6c:5c:74:86:49:f1:ab:f7:94:
06:a4:49:31:1d:80:a4:32:cc:ef:65:1f:c8:a4:63:1c:c5:26:
38:f1:6e:1b:7e:4e:e3:ed:3c:38:ed:4e:5b:a5:a5:6d:b5:f0:
15:f8:5f:9a:e6:31:ab:58:75:07:11:2a:f2:84:6f:c4:7b:f5:
a2:e2:5a:b9:bf:47:38:4c:8e:e2:4a:21:a6:dc:a2:8e:01:e0:
ba:f8:0a:a0:10:3c:d6:4a:d6:a6:57:86:85:01:4a:c7:89:5d:
e4:f2:a1:ae:a2:8f:9e:dc:ee:9e:b8:2d:40:88:9e:2f:33:13:
2e:9a:2b:47:27:cd:e2:38:b5:97:8f:5c:fd:ae:c7:cd:4b:43:
ca:cb:05:61:12:dc:c3:6b:89:b8:a9:91:35:97:5a:7a:30:be:
27:fc:11:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:49:42 2025 by rpki-client