Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
File: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft (raw, json)
Hash identifier: E4HMr+aMoZLJDOgWAqBv4raWqcu0Pn6O4KGZ0pQ2FUQ=
Subject key identifier: 21:AD:9C:CE:9E:FF:1E:47:9C:14:BF:35:4C:AC:54:0B:1D:1B:A1:B3
Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Certificate serial: 0199FAD7A88558F877656B1A0988F0E70D2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
Manifest number: 06FE
Signing time: Sun 19 Oct 2025 05:01:01 +0000
Manifest this update: Sun 19 Oct 2025 05:01:01 +0000
Manifest next update: Mon 20 Oct 2025 05:01:01 +0000
Files and hashes: 1: 1-PjUZT902dDkd6VPDrdDPHXwUZw.roa (hash: MHJPB3k7tQCL3suOF/2f4yZcUJ+jnvq9tJxwFWeEEbc=)
2: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl (hash: RPBcnsPUVpGaq7zNHLCYyHgRfRT6DDEHW+xBa314Pfs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:d7:a8:85:58:f8:77:65:6b:1a:09:88:f0:e7:0d:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Validity
Not Before: Oct 19 05:01:01 2025 GMT
Not After : Oct 20 05:01:01 2025 GMT
Subject: CN=21ad9cce9eff1e479c14bf354cac540b1d1ba1b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:87:6d:41:1c:15:57:d0:42:cd:98:c7:d0:4e:
f4:b4:22:99:93:13:d2:18:e2:62:a3:82:f5:8b:2e:
67:f2:8f:42:80:17:0c:a9:d7:42:7c:b5:69:ed:70:
52:1a:25:40:76:ba:64:dd:16:22:15:af:e9:94:65:
a7:10:c2:65:3b:4e:ff:81:62:7e:37:f0:d8:cc:77:
b6:30:26:2a:96:82:0c:70:ba:5b:9c:84:cc:27:3d:
72:40:2d:57:e9:3e:41:87:6e:d2:cb:f3:6c:78:86:
25:d4:3e:c8:81:ed:d7:8c:cb:4c:bd:44:f8:eb:e4:
ed:2e:db:16:68:f3:d6:16:3c:c2:44:f8:1f:ff:ff:
1c:b4:ab:51:01:17:cf:94:9e:8d:89:c2:69:53:26:
87:c6:8e:96:2e:bf:56:5d:33:d4:01:b6:86:a0:f7:
31:b9:2c:7b:89:c2:ff:ea:1c:85:b1:46:94:50:21:
03:e4:48:b5:e2:47:c3:d2:66:93:89:de:56:4e:66:
f4:30:54:bc:11:5f:33:09:e4:aa:b8:d7:e2:10:39:
87:d8:af:f3:66:d7:f4:84:30:36:8b:e8:81:95:73:
ff:a7:33:27:4d:ad:4e:23:30:79:b0:9c:7c:35:cf:
cc:62:e4:7c:cd:f4:60:48:23:00:fd:00:6e:58:26:
21:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AD:9C:CE:9E:FF:1E:47:9C:14:BF:35:4C:AC:54:0B:1D:1B:A1:B3
X509v3 Authority Key Identifier:
keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:16:50:0d:04:2e:79:5d:d5:ae:4c:99:33:b8:63:9e:0c:f5:
0f:d4:0a:80:1e:92:cb:4e:6e:2d:dd:08:ab:7d:3f:c3:c6:4c:
9c:0e:80:db:2f:50:1c:33:11:e9:ad:72:d9:f2:d7:b4:2a:33:
f4:a3:d1:0e:3a:2c:14:24:a2:90:e0:c6:bb:0a:b6:39:cf:fb:
02:0b:d8:f4:f4:8e:d8:0e:7a:50:d9:5f:4d:63:1b:21:40:61:
d9:38:27:1c:3a:62:3c:12:7a:e3:4f:35:29:b2:0d:9f:b1:5e:
28:43:7e:b4:e3:96:37:c4:02:34:91:6a:7f:8b:fa:75:f3:18:
eb:9c:0f:43:b8:19:78:5e:a7:e7:1a:ec:a2:63:f3:db:82:4e:
2e:a8:a7:85:93:df:3c:54:03:a2:46:36:fa:d9:7b:58:3e:6e:
42:d6:7a:f2:f0:be:f4:53:3e:76:e0:bc:d1:86:e2:15:8b:3e:
7c:69:03:9e:a1:6f:fa:65:5c:12:4e:aa:1c:bf:97:a1:a2:c0:
2a:c8:b6:52:ea:51:5a:a5:c1:d0:d3:7a:71:a9:78:a1:2b:50:
7d:40:0c:ee:b7:e2:c3:e6:bc:65:fa:9e:76:d8:18:c7:75:8d:
f7:55:73:13:14:6f:e0:52:3c:b1:fa:e9:4b:94:b9:8b:4b:f1:
3f:ab:6b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:13:42 2025 by rpki-client