Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: 7cpd8NnUQVz4O47xoWPN9ch/gafVF91chIujUqwcg1A=
Subject key identifier: 78:9C:6D:7D:27:57:2D:3E:B2:6E:AD:B7:EC:E6:ED:ED:80:B3:2F:AE
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 0199FBEAFB19B733B72DD39D64BBCC528143
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 16EC
Signing time: Sun 19 Oct 2025 10:01:44 +0000
Manifest this update: Sun 19 Oct 2025 10:01:44 +0000
Manifest next update: Mon 20 Oct 2025 10:01:44 +0000
Files and hashes: 1: Lx4QL8l0KgaffC4QXEWzVHcEawc.roa (hash: DxG2rV8lArm7XTxrRaRlBv42lE1FblGks/y6Gbm7tWY=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: AnhcRCvlKxKPzrhzopUURJed/qF/G68VuLds5w6WV+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:fb:19:b7:33:b7:2d:d3:9d:64:bb:cc:52:81:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Oct 19 10:01:44 2025 GMT
Not After : Oct 20 10:01:44 2025 GMT
Subject: CN=789c6d7d27572d3eb26eadb7ece6eded80b32fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:13:44:d1:c6:54:05:4a:ee:75:5c:3a:fd:66:
3e:93:51:0f:be:14:ad:23:22:17:8f:d0:06:70:44:
84:dd:4b:cf:60:0a:10:6c:1e:a3:86:62:9a:fd:bc:
b8:27:3c:72:89:7a:55:92:88:0e:7f:16:e4:1b:a9:
86:45:1d:80:0f:8e:9c:5d:80:db:01:f9:3c:50:d6:
6a:af:69:64:8c:3e:29:52:88:7e:1a:6e:ac:f0:b8:
3f:2d:23:d3:51:d3:96:e2:35:43:ae:16:b6:f4:75:
af:5c:e7:c3:88:4e:84:e2:53:28:5f:52:fb:39:63:
d1:65:40:76:d5:4c:fb:ab:d1:d7:56:4e:9a:00:18:
59:d4:6c:5d:8b:01:6f:a2:38:2a:01:cd:97:5e:e1:
d6:b5:a4:1d:bf:e9:93:97:85:da:ae:0c:ee:75:be:
e2:85:8f:54:9d:4b:ee:b8:f9:50:46:f5:93:2e:75:
ad:ef:bb:96:45:fb:e5:0f:10:37:58:e6:4e:fb:e6:
65:d5:a8:1f:ef:90:55:28:bb:25:bf:a6:f6:64:dd:
2f:56:51:2c:a0:a2:52:f1:a1:ec:b5:64:9a:dd:7c:
ef:a9:de:f1:db:4a:d0:e6:a0:ec:84:5d:40:f7:7f:
f5:6d:82:17:2e:7c:79:e1:df:d6:55:e0:bd:14:c7:
1c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:9C:6D:7D:27:57:2D:3E:B2:6E:AD:B7:EC:E6:ED:ED:80:B3:2F:AE
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:7f:51:97:ee:f2:95:38:2b:9f:df:0c:b7:43:75:7e:00:a3:
a2:86:73:17:3a:65:0a:76:52:00:e9:e1:6a:54:24:e2:36:d1:
9d:9d:6c:c1:85:e5:27:72:fc:d2:56:57:50:7a:5c:16:76:26:
c8:43:6d:c8:f7:fe:1e:2f:90:31:dc:27:0c:6b:e5:98:41:a2:
9c:b1:b3:37:d8:b6:ee:0a:1b:cb:da:38:cc:c2:64:6c:67:12:
36:bb:74:89:02:9c:b4:9d:c7:62:9c:38:64:28:88:1a:af:c9:
5c:f1:32:6e:7b:02:a8:62:c6:08:25:b5:23:7e:b1:73:12:9d:
e0:47:b9:d1:f3:d8:a1:64:7f:10:de:6d:3c:9c:1a:30:bd:55:
fe:1f:b8:27:9f:ec:58:81:25:27:2d:d6:c3:d8:db:7a:b0:9d:
16:3e:de:c2:e7:15:85:48:5b:68:a6:48:4b:1d:62:f7:82:3e:
dc:75:13:55:a1:d2:92:f9:5d:e9:cc:38:f1:33:38:0a:2f:b7:
8f:87:2a:d5:66:b5:8b:5c:80:36:4b:e1:d4:9a:47:e2:25:14:
68:69:49:93:da:95:a1:5b:0a:10:d4:21:83:66:dd:23:88:8e:
2b:e5:af:68:45:27:7c:1a:d3:74:1c:1f:a5:90:11:36:95:56:
4f:3e:f9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:20:14 2025 by rpki-client