Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
File: KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft (raw, json)
Hash identifier: L/sohi5Zg8dOXZrg0ITvRTmg/ONsN7UZNadZSHb9ChU=
Subject key identifier: 20:01:F9:B8:BD:BB:97:EE:62:CA:88:7F:1F:DE:42:15:D8:93:BE:DA
Authority key identifier: 2B:17:07:88:97:94:CE:A0:62:2B:D4:92:1D:6B:DB:DD:56:EF:0B:06
Certificate issuer: /CN=2b1707889794cea0622bd4921d6bdbdd56ef0b06
Certificate serial: 0198D65FF16F8C522D2CA34FBADBAD07FB06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
Manifest number: 0619
Signing time: Sat 23 Aug 2025 10:01:08 +0000
Manifest this update: Sat 23 Aug 2025 10:01:08 +0000
Manifest next update: Sun 24 Aug 2025 10:01:08 +0000
Files and hashes: 1: FN4mbfTwvi8Xhlnmnlqh5KIO2hw.roa (hash: Z0wCpt0sE7ChkFPlKeGXtBFCnXabrU9fj1GXtnw3GDg=)
2: KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl (hash: 8Z7th3L18vJdYkmptmdWyEB92RQuGLxEIeGFsUAW5Bw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:f1:6f:8c:52:2d:2c:a3:4f:ba:db:ad:07:fb:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b1707889794cea0622bd4921d6bdbdd56ef0b06
Validity
Not Before: Aug 23 10:01:08 2025 GMT
Not After : Aug 24 10:01:08 2025 GMT
Subject: CN=2001f9b8bdbb97ee62ca887f1fde4215d893beda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8e:84:fa:3c:19:3b:98:0a:37:0e:8a:ee:8c:
f4:ed:cf:aa:72:9c:5e:11:4b:89:60:a2:c0:0a:17:
85:b7:24:dc:82:8a:13:11:9d:7a:b5:82:27:1d:3a:
0e:b1:4f:b9:a3:e5:44:44:fd:8d:22:dd:c4:99:1e:
10:9c:01:b5:01:0f:07:52:b9:dd:5b:e6:9f:52:65:
ea:ad:7f:ee:8a:43:6d:35:8f:75:d4:de:f5:57:e4:
a6:06:18:bd:aa:17:50:70:e0:26:cb:99:bf:8b:d6:
f3:98:b0:17:5b:8e:f9:39:15:86:8b:b2:be:b2:1e:
9e:3d:9c:82:fe:be:12:56:f2:02:78:82:07:4f:63:
28:cf:c9:74:b1:f8:f0:e3:32:08:66:7d:b6:9d:6c:
ca:50:a1:61:71:18:3d:78:40:b6:fd:5d:0c:f5:9c:
7e:89:c9:66:a6:bb:84:14:c0:9f:5e:c3:33:74:c7:
42:66:56:0f:52:0b:12:a4:c5:14:71:82:c1:cb:ef:
c7:88:3e:df:17:de:44:36:03:75:cc:2b:46:de:aa:
d5:e5:02:30:28:e0:93:a1:0b:72:92:cf:ae:e6:1e:
8f:6a:95:38:09:ad:3d:95:a9:9d:4b:73:54:6d:c6:
db:18:6e:01:fc:7f:b9:7c:5a:8d:ab:5c:bc:d6:82:
66:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:01:F9:B8:BD:BB:97:EE:62:CA:88:7F:1F:DE:42:15:D8:93:BE:DA
X509v3 Authority Key Identifier:
keyid:2B:17:07:88:97:94:CE:A0:62:2B:D4:92:1D:6B:DB:DD:56:EF:0B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:15:3a:2f:65:02:54:85:8b:19:4e:77:6d:5f:17:6c:91:48:
74:48:3e:e1:e0:cc:ca:95:bf:d6:99:95:97:8f:d0:27:62:d2:
59:26:31:0d:38:73:66:91:95:63:2e:9b:ba:61:12:f7:ea:db:
e4:79:3a:70:fd:fc:94:8d:86:7f:74:cf:d8:dc:88:65:85:67:
84:4e:02:50:1f:77:1f:21:9f:e1:c9:d2:ed:be:05:25:38:57:
0f:58:cf:a1:99:46:0a:bb:2e:6a:af:03:ba:07:8e:93:65:ff:
2b:3b:0f:0c:cc:de:b1:02:db:d5:eb:97:d9:63:0e:43:41:9e:
2b:b5:38:5c:a3:16:a4:9e:06:9f:1c:dd:23:2e:c7:de:3f:a6:
ff:05:fd:56:d1:cd:a9:69:99:90:44:75:f4:e0:27:49:6c:9c:
94:04:de:9a:3f:c5:17:20:61:64:07:41:88:31:61:1b:2e:9f:
61:27:ad:c9:f5:9a:f4:7f:42:6c:bd:b1:78:a0:9a:bf:d1:4c:
ea:9c:d2:5f:90:59:4f:dd:77:92:5d:53:1a:0e:f9:f2:c8:99:
3e:c3:a8:e6:fc:d9:f5:b7:a3:cf:5e:e1:94:68:f9:88:7d:c0:
bf:81:69:f6:23:fd:48:e8:fd:b8:96:bd:cf:b7:00:81:fc:28:
e0:7f:15:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX/FvjFItLKNPututB/sGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMTcwNzg4OTc5NGNlYTA2MjJiZDQ5MjFkNmJkYmRkNTZl
ZjBiMDYwHhcNMjUwODIzMTAwMTA4WhcNMjUwODI0MTAwMTA4WjAzMTEwLwYDVQQD
EygyMDAxZjliOGJkYmI5N2VlNjJjYTg4N2YxZmRlNDIxNWQ4OTNiZWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvI6E+jwZO5gKNw6K7oz07c+qcpxe
EUuJYKLACheFtyTcgooTEZ16tYInHToOsU+5o+VERP2NIt3EmR4QnAG1AQ8HUrnd
W+afUmXqrX/uikNtNY911N71V+SmBhi9qhdQcOAmy5m/i9bzmLAXW475ORWGi7K+
sh6ePZyC/r4SVvICeIIHT2Moz8l0sfjw4zIIZn22nWzKUKFhcRg9eEC2/V0M9Zx+
iclmpruEFMCfXsMzdMdCZlYPUgsSpMUUcYLBy+/HiD7fF95ENgN1zCtG3qrV5QIw
KOCToQtyks+u5h6PapU4Ca09lamdS3NUbcbbGG4B/H+5fFqNq1y81oJm4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCAB+bi9u5fuYsqIfx/eQhXYk77aMB8GA1UdIwQY
MBaAFCsXB4iXlM6gYivUkh1r291W7wsGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3hjSGlKZVV6cUJpSzlTU0hXdmIzVmJ2Q3dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9iYWNjNzctZGYzMC00OTQxLWJlMzMt
ZGNiNWI5ZTg4ZTlhLzEvS3hjSGlKZVV6cUJpSzlTU0hXdmIzVmJ2Q3dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9iYWNjNzctZGYzMC00OTQxLWJlMzMtZGNiNWI5ZTg4ZTlh
LzEvS3hjSGlKZVV6cUJpSzlTU0hXdmIzVmJ2Q3dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHxU6L2UC
VIWLGU53bV8XbJFIdEg+4eDMypW/1pmVl4/QJ2LSWSYxDThzZpGVYy6bumES9+rb
5Hk6cP38lI2Gf3TP2NyIZYVnhE4CUB93HyGf4cnS7b4FJThXD1jPoZlGCrsuaq8D
ugeOk2X/KzsPDMzesQLb1euX2WMOQ0GeK7U4XKMWpJ4GnxzdIy7H3j+m/wX9VtHN
qWmZkER19OAnSWyclATemj/FFyBhZAdBiDFhGy6fYSetyfWa9H9CbL2xeKCav9FM
6pzSX5BZT913kl1TGg758siZPsOo5vzZ9bejz17hlGj5iH3Av4Fp9iP9SOj9uJa9
z7cAgfwo4H8VqQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 21:09:29 2025 by rpki-client