Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: dvR31mAHko+mQ/4ipTjWMjWtLv17jk8cn8VgNs+i9G4=
Subject key identifier: 10:48:20:16:E5:9E:7E:26:5A:F5:46:DC:EA:8A:FE:1C:F8:3B:B8:95
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 0199FC216A93EE94B553FEAA21C831178600
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 16E2
Signing time: Sun 19 Oct 2025 11:01:12 +0000
Manifest this update: Sun 19 Oct 2025 11:01:12 +0000
Manifest next update: Mon 20 Oct 2025 11:01:12 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: vCdm3NfbL40Z8tC5menQQJ4cAcBJ5CXA2Z42mJkuP9g=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:6a:93:ee:94:b5:53:fe:aa:21:c8:31:17:86:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Oct 19 11:01:12 2025 GMT
Not After : Oct 20 11:01:12 2025 GMT
Subject: CN=10482016e59e7e265af546dcea8afe1cf83bb895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:2e:b2:3b:a9:8f:ed:3b:e2:1b:8b:12:02:97:
ef:34:18:b8:54:da:63:b7:6c:ad:90:c9:3f:48:78:
b5:00:c1:18:20:17:08:10:17:24:90:4f:27:09:c7:
4f:0c:89:64:9b:ed:3c:4e:84:8b:4d:d9:5f:3a:36:
0e:d3:60:cb:d7:63:97:f3:27:d5:9c:c8:3f:a8:f6:
6b:49:56:55:b9:ac:4c:e6:68:f1:14:53:f9:62:57:
e2:cd:2c:84:96:f9:7a:1f:72:ab:df:5a:99:5a:92:
9f:ae:22:21:69:4b:bc:7e:48:8f:03:83:69:b3:df:
fa:a7:38:cb:a0:cc:6f:11:ea:ef:e2:48:bd:19:bb:
31:ea:b8:1e:e7:18:2b:dc:96:d8:65:80:2f:d1:30:
1e:40:08:91:33:36:29:fd:14:87:01:85:ab:06:9f:
a5:2c:69:af:f3:6e:27:eb:7b:e8:b8:14:28:f8:36:
0b:a2:20:78:0f:3d:3e:99:b4:2a:ee:30:1f:3f:92:
37:f1:fc:1b:05:ea:94:ae:b4:f8:a5:bc:44:63:a4:
25:f5:3c:cf:73:96:31:db:83:af:f7:14:dd:96:d2:
7e:18:e3:fa:4e:84:98:55:a4:8f:71:b6:ad:8d:8f:
1c:fe:50:91:92:17:d7:9e:97:8a:45:d7:0a:ab:5e:
35:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:48:20:16:E5:9E:7E:26:5A:F5:46:DC:EA:8A:FE:1C:F8:3B:B8:95
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:1d:53:5c:e6:d8:37:73:d3:d8:1a:55:d0:38:38:40:09:86:
9e:74:8c:69:1f:4e:10:68:4a:25:16:f2:ac:c3:55:37:98:83:
13:a8:52:f6:5d:f3:14:93:5d:91:41:0c:0f:52:dc:aa:a6:31:
48:16:d5:e6:84:05:ea:f7:43:1d:4b:8c:99:69:2f:8a:32:cb:
36:d5:f1:7b:44:3b:d1:1f:5f:d7:c5:8f:61:53:d1:29:ef:83:
4a:b9:b8:7e:e7:fd:29:65:8c:44:66:39:be:e5:9b:b8:4c:4e:
1a:23:48:18:66:ff:c4:17:e0:24:61:1f:30:b8:1d:0d:8f:21:
4f:3d:1d:33:ac:18:ff:3d:1c:90:4d:08:e7:6a:ed:2f:fb:b6:
03:ae:94:e7:6a:12:40:81:9b:47:ec:95:fe:d7:a6:33:e0:d3:
b1:a5:f7:60:14:f9:4f:fd:da:fb:de:fd:8c:6d:83:5f:f7:95:
c4:6b:ca:7c:c8:c4:88:d8:b7:72:fb:da:1a:43:2a:12:fd:79:
63:d7:29:ec:e9:e0:00:d3:f6:6c:99:9f:44:59:be:c8:52:f5:
c6:d9:0a:cd:b0:af:c9:4d:54:a7:59:da:37:28:b9:50:40:12:
87:c0:3f:bb:0a:ff:fc:93:de:0d:01:df:f2:57:cc:ef:67:18:
ff:61:4b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:23:19 2025 by rpki-client