Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
File: kAhyNvFhxccF73Pf6eXjmG5xJsg.mft (raw, json)
Hash identifier: rNNk6gP384G+aGNuZ96Hm6Qyi0IzFdFG7apoBuaF3Mk=
Subject key identifier: C6:D7:FC:E9:78:FA:83:FD:BA:15:EB:A2:78:A2:A1:D4:1A:5F:73:0A
Authority key identifier: 90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
Certificate issuer: /CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Certificate serial: 0199FBEAC1DEA48B2D7F55F7F714DFAE990D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
Manifest number: 069D
Signing time: Sun 19 Oct 2025 10:01:30 +0000
Manifest this update: Sun 19 Oct 2025 10:01:30 +0000
Manifest next update: Mon 20 Oct 2025 10:01:30 +0000
Files and hashes: 1: ilmUYJP9An2tvy3PssJlCv8HfSc.roa (hash: 1qXew5Oe7BdIwNw0qvNlQOP+TeLMGt2S2brGQ7Jg7lc=)
2: kAhyNvFhxccF73Pf6eXjmG5xJsg.crl (hash: ixtezWSS3tN+FxU+ZxkReibPRKsHQs7wzpjh08JSAEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:c1:de:a4:8b:2d:7f:55:f7:f7:14:df:ae:99:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Validity
Not Before: Oct 19 10:01:30 2025 GMT
Not After : Oct 20 10:01:30 2025 GMT
Subject: CN=c6d7fce978fa83fdba15eba278a2a1d41a5f730a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ac:d4:e4:ae:17:25:67:53:8c:56:b3:43:4e:
4c:4d:5a:4e:ea:fc:b8:54:92:60:62:5e:f8:c8:9b:
be:bd:72:60:fe:15:d0:8f:eb:c6:ca:a1:51:58:f3:
86:bf:8f:b8:68:f3:ff:72:97:37:3d:62:b5:d4:5e:
33:bc:77:85:3d:f7:bd:4c:8d:2f:3b:a9:d2:47:94:
8d:d2:99:8b:2a:1c:c5:7c:1d:97:fa:b5:c8:11:60:
85:17:8c:50:e1:d5:7f:21:d3:62:03:d4:e3:74:9b:
66:ae:15:7f:cc:d1:36:10:86:29:6e:ff:4b:1e:05:
b2:3e:41:e9:5a:85:99:8b:a3:8c:6a:31:31:23:56:
fd:d1:59:cb:ea:e8:38:0d:0f:68:19:37:d7:b6:b9:
2b:19:90:bb:c1:70:7f:8e:a0:7f:4d:56:8e:66:fc:
67:27:6c:6d:87:7f:ee:46:40:d2:a5:77:4b:b9:2d:
fd:65:86:f4:a5:17:c9:b2:90:2e:44:2a:07:23:8c:
1f:e0:91:73:c5:7c:c7:53:48:95:4c:8e:97:a9:7e:
a2:7e:cf:6d:73:22:57:94:61:7b:37:be:1a:c1:a2:
06:1b:45:cf:39:52:ba:41:fc:50:48:4c:92:82:e9:
4a:a3:8c:9c:32:fb:0b:93:84:d7:fe:44:0f:a5:a4:
c7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D7:FC:E9:78:FA:83:FD:BA:15:EB:A2:78:A2:A1:D4:1A:5F:73:0A
X509v3 Authority Key Identifier:
keyid:90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:c1:07:52:e7:9e:e3:51:3c:ea:29:d9:9c:f7:c5:cf:10:4e:
c7:0d:fb:de:83:0f:2e:bf:b3:df:47:6e:8e:12:40:c9:ce:7f:
45:41:0e:b3:76:c7:b1:9d:c6:85:3b:60:c3:8d:24:69:98:2f:
a0:25:f1:dd:1d:03:cc:f4:46:92:0b:dc:a1:a1:9f:7d:79:56:
1b:f6:9b:1a:9f:fc:e4:93:04:91:c0:1b:da:8e:d0:2f:63:2f:
da:26:41:d5:70:e9:69:e0:30:df:6c:3e:9f:5c:f3:90:aa:5d:
e5:15:0f:3e:d4:f3:23:8f:61:0e:62:bd:e7:da:d8:7d:10:f5:
fa:dd:8c:d0:a5:5b:3e:ee:3e:cb:00:bd:48:eb:f9:20:29:fb:
19:97:f8:45:cf:55:84:6d:80:e6:78:2e:33:8f:b4:d0:b4:1c:
9f:c2:d3:2b:5d:2c:5a:61:7e:5d:c2:7a:61:87:75:f4:bc:c0:
13:0b:ee:19:86:ad:24:7b:8a:40:94:2f:5d:e4:d3:a3:79:6d:
b8:52:35:f3:ff:55:60:05:52:4d:cd:23:69:35:7e:28:21:fb:
7e:68:ab:0b:29:2a:fd:64:ba:25:e0:dc:3f:cb:f3:cc:70:d2:
31:54:30:ac:0b:66:f2:fc:03:1b:cd:d3:8a:5b:2a:81:50:a2:
06:43:be:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:18:54 2025 by rpki-client