Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: 8/3MeU5wNDGs7V9va0dg6vW7WZGM5ZH6ioJA24pWj+k=
Subject key identifier: 68:7B:68:8B:45:05:AB:EE:EB:FB:2F:E2:B0:4F:09:C0:78:32:8B:1B
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 0199FC8F8163DBCA19A34C6F6C37804C5218
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 165F
Signing time: Sun 19 Oct 2025 13:01:27 +0000
Manifest this update: Sun 19 Oct 2025 13:01:27 +0000
Manifest next update: Mon 20 Oct 2025 13:01:27 +0000
Files and hashes: 1: CgAYwcYqjGUwI5cuY-inYF9ViL4.roa (hash: DG9lxho2Qdp+1bj1jPdlMwaM6onKyvGHv7zkZeOCV70=)
2: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: lLCZ7vBjRvn9wQXEsi4lfEj1UWWAhMSrtREdhg6x2c0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:81:63:db:ca:19:a3:4c:6f:6c:37:80:4c:52:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Oct 19 13:01:27 2025 GMT
Not After : Oct 20 13:01:27 2025 GMT
Subject: CN=687b688b4505abeeebfb2fe2b04f09c078328b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8b:bd:05:59:dc:9c:86:0e:e9:f6:60:02:81:
55:c5:94:73:39:4a:ab:a4:bb:4b:34:30:00:ba:59:
6c:4f:eb:05:9b:a0:ef:a2:a5:b9:d4:75:b2:1d:1f:
74:15:98:e8:0e:d4:03:fa:a7:6b:8f:8e:f6:42:10:
84:64:ca:52:27:45:f7:32:72:b7:f2:e9:b6:1f:f9:
cc:5f:33:22:ed:90:8e:0c:d8:9c:ea:7d:3a:d1:8e:
74:2f:f5:14:07:cf:61:73:55:50:45:7a:c6:6d:63:
86:0a:57:fb:22:97:7a:91:bc:3f:26:30:df:6b:c1:
3b:6c:a4:92:8e:b8:24:b3:fe:2c:4b:65:00:0a:17:
84:1e:62:fe:ec:5f:21:2c:6e:b9:c6:da:fc:fd:a2:
ae:82:4d:e4:41:9d:5e:74:02:31:96:ff:4a:69:3b:
af:8b:93:d6:27:61:d8:11:b5:ed:f1:6a:1e:ce:73:
a9:b7:65:1a:4a:5b:da:b6:00:6d:0f:eb:92:76:fb:
71:23:06:7d:9c:a6:f2:cc:7f:5f:f1:e9:67:c1:8b:
07:fd:46:f3:75:6c:75:9c:26:36:16:c9:69:3d:7a:
58:9f:a6:b3:e0:f7:be:93:21:54:b7:87:a3:e8:10:
37:37:c4:50:fd:ab:ff:f7:ba:9a:71:ae:54:40:01:
67:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:7B:68:8B:45:05:AB:EE:EB:FB:2F:E2:B0:4F:09:C0:78:32:8B:1B
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:90:01:0b:31:f0:a2:f5:f1:63:f3:54:18:f8:c8:da:77:1e:
87:f5:fb:8d:8e:c3:66:55:a6:60:df:33:40:5b:91:c2:b6:4e:
4c:25:1d:2b:96:ad:3f:e9:30:1e:25:c7:f6:10:d9:fb:f3:59:
69:b0:f3:76:d7:79:04:28:1b:7b:10:0b:2c:f0:60:d7:6a:19:
a5:ce:51:af:ef:11:98:7b:e2:48:43:1a:f7:28:ac:bf:97:73:
c1:8c:e5:be:7b:16:e9:0f:1a:ed:ae:90:9f:ab:bc:2f:66:55:
33:26:ed:83:2f:95:b2:bb:89:a0:bc:ec:e2:94:fd:e0:a5:71:
4d:5a:5c:3a:e4:1b:dd:4c:8f:6b:65:bc:39:39:8c:08:bb:e8:
d5:2d:c6:08:1f:11:45:05:f5:a2:f3:11:8c:5b:f6:ae:ab:9d:
4e:77:61:b1:c0:ed:2b:c8:11:4a:46:85:68:42:0d:55:90:b8:
39:9e:75:6b:38:f8:bc:1d:74:25:bf:a8:a8:ce:09:35:7b:6f:
4f:47:04:4d:41:a7:59:ed:7f:a9:17:15:59:82:3b:a5:c4:ff:
47:a9:19:06:d8:c0:29:42:f1:a0:ee:ab:34:81:20:4d:83:ce:
f1:48:dc:3e:6e:e7:56:05:76:28:70:a2:b3:bb:37:3b:37:3b:
75:a2:fa:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:43:57 2025 by rpki-client