Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
File: kVVkGgex5FW3iSuS2A1gkSORsg0.mft (raw, json)
Hash identifier: OOrE9wu9Bho9dLskET8v3tgL0VsueLCUC9E/+9GL4v0=
Subject key identifier: C2:B3:AB:94:B0:B2:32:2B:7B:C4:89:DB:1F:36:A2:26:FE:03:94:44
Authority key identifier: 91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
Certificate issuer: /CN=9155641a07b1e455b7892b92d80d60912391b20d
Certificate serial: 0199FCC607473E927DDA69ADFAF03F8596D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
Manifest number: 06EF
Signing time: Sun 19 Oct 2025 14:01:00 +0000
Manifest this update: Sun 19 Oct 2025 14:01:00 +0000
Manifest next update: Mon 20 Oct 2025 14:01:00 +0000
Files and hashes: 1: kVVkGgex5FW3iSuS2A1gkSORsg0.crl (hash: LaLkvW6VrY/VwUOd3O72DInPQd9DRLo8StXItezwHh8=)
2: ynCtEcXqVCBeEil-xI3WvK_dPRE.roa (hash: 0SptmV2vPd6kYrXF10jAqlyhF9V/f+S3u2RzwXs1PmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:07:47:3e:92:7d:da:69:ad:fa:f0:3f:85:96:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9155641a07b1e455b7892b92d80d60912391b20d
Validity
Not Before: Oct 19 14:01:00 2025 GMT
Not After : Oct 20 14:01:00 2025 GMT
Subject: CN=c2b3ab94b0b2322b7bc489db1f36a226fe039444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:35:f6:ef:a4:07:df:f1:be:94:55:b7:7e:d9:
72:6c:41:f5:a7:f3:ad:07:f1:8f:4d:1b:c7:70:67:
68:2a:76:a7:29:7e:c6:ce:63:8e:9c:82:87:5e:ae:
20:42:3a:d1:57:16:c4:b1:e6:de:dd:f7:43:21:1e:
16:c9:cd:bd:a7:38:e8:92:9e:b2:3c:ee:7c:93:a7:
f9:7c:c6:44:3c:65:96:5d:79:65:77:f3:0e:9e:c9:
51:70:57:bf:b5:b3:94:86:d8:d2:d5:aa:e4:e3:61:
92:2a:5a:6b:b0:ce:cf:da:2e:83:4d:1d:bf:49:b4:
15:c6:d7:ea:45:4a:aa:f9:18:0c:a8:d6:b1:c9:af:
80:16:2f:a6:97:5d:c2:07:53:32:7c:a8:d9:2d:a3:
cf:62:9d:1b:4a:85:2f:b4:f8:63:10:e0:d2:94:fc:
1a:15:2d:2d:2f:12:cc:54:71:61:5d:55:d2:2b:0e:
02:b0:41:42:c8:bf:1e:16:a1:0f:e3:21:59:b8:1c:
f9:1d:f9:83:cd:ed:ee:33:a1:19:7b:06:fb:05:3b:
22:aa:14:f3:1e:60:3f:d1:05:fc:c8:f7:fc:d6:62:
2f:96:bd:40:6e:fc:ed:cd:10:71:97:16:50:29:d4:
6a:cf:ab:40:7a:7d:1c:4d:83:c9:69:92:8c:fe:4c:
7d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B3:AB:94:B0:B2:32:2B:7B:C4:89:DB:1F:36:A2:26:FE:03:94:44
X509v3 Authority Key Identifier:
keyid:91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:36:c2:d1:97:40:50:1e:3c:ff:a5:67:26:0a:63:b0:31:71:
a3:5e:1c:49:26:d1:91:d9:1f:e0:39:e1:85:32:e1:b4:65:8b:
74:c9:b0:68:a0:bd:25:fc:4e:10:88:67:d0:1c:ac:58:bf:97:
44:11:09:d5:23:a8:6b:7b:61:7c:be:dc:41:f3:b1:6c:32:15:
a9:93:84:07:ed:95:a7:b6:5c:4e:f1:38:a7:45:23:04:ee:00:
aa:21:05:d0:3b:ff:f9:95:16:29:ec:be:a8:92:4e:14:75:ad:
cf:d9:e8:6c:8b:ed:96:71:87:93:da:1e:dd:e6:72:35:10:9d:
8c:c0:54:49:17:c7:85:03:99:83:1b:30:8b:78:9f:a4:de:c4:
0b:a0:a9:87:24:27:90:82:a3:91:4d:da:48:0a:fe:c6:7c:8c:
37:0a:ee:a8:f2:a2:44:bf:21:e9:19:24:fa:6f:3d:8b:5e:70:
3f:c4:86:d9:f0:36:63:6c:63:a5:d7:0a:e4:51:ba:86:fb:1a:
34:35:c4:f6:3b:62:69:39:28:13:90:9d:06:35:ac:da:ee:75:
7b:45:41:4c:55:d1:79:44:d7:b8:28:d8:2b:45:ea:5a:be:58:
8a:13:65:36:56:32:f0:49:fe:21:8f:fb:b2:d8:d7:a9:c4:94:
30:32:d1:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:39:13 2025 by rpki-client