Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
File: KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft (raw, json)
Hash identifier: jFxUfUsNMpi1ihNssKn3icNHfnMw5RQqL8pfCKUs238=
Subject key identifier: 51:63:40:07:2E:0D:D2:65:44:5F:E2:77:F8:74:2C:D3:EB:E2:87:1F
Authority key identifier: 2B:17:07:88:97:94:CE:A0:62:2B:D4:92:1D:6B:DB:DD:56:EF:0B:06
Certificate issuer: /CN=2b1707889794cea0622bd4921d6bdbdd56ef0b06
Certificate serial: 0199FBEAE321ACB034882E6F34EE7B0FA336
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
Manifest number: 06B1
Signing time: Sun 19 Oct 2025 10:01:38 +0000
Manifest this update: Sun 19 Oct 2025 10:01:38 +0000
Manifest next update: Mon 20 Oct 2025 10:01:38 +0000
Files and hashes: 1: FN4mbfTwvi8Xhlnmnlqh5KIO2hw.roa (hash: Z0wCpt0sE7ChkFPlKeGXtBFCnXabrU9fj1GXtnw3GDg=)
2: KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl (hash: 2M97JroKwZlOyMgbdq2qbJFMBUouhPboEt8AmGtVIx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ea:e3:21:ac:b0:34:88:2e:6f:34:ee:7b:0f:a3:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b1707889794cea0622bd4921d6bdbdd56ef0b06
Validity
Not Before: Oct 19 10:01:38 2025 GMT
Not After : Oct 20 10:01:38 2025 GMT
Subject: CN=516340072e0dd265445fe277f8742cd3ebe2871f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b7:05:a5:f5:fd:c6:0f:88:33:cf:e2:01:14:
5d:fd:8d:59:c2:ca:bd:36:a3:d0:57:ae:e2:ff:73:
45:18:95:6a:25:c6:54:d2:69:b2:d1:dc:a9:f4:86:
dc:f3:1e:c6:5d:fb:65:11:40:a9:9a:f7:1b:77:e3:
42:c6:04:1b:e1:84:f1:ca:29:b5:3b:5e:18:2f:53:
aa:dd:0c:a4:ea:a3:3a:67:91:06:5a:0d:98:9b:fd:
ee:07:07:30:b8:b9:f6:5c:2a:9c:23:1e:5b:46:f8:
f9:bd:11:8b:b2:b8:b4:9e:07:66:af:84:cc:8f:78:
45:b3:eb:1c:8c:57:30:b5:be:5f:11:8b:ac:9b:a5:
ba:90:0e:89:18:18:7e:98:e9:9e:4c:8f:b7:50:a9:
4d:38:a2:bd:1f:67:17:07:e0:78:21:95:34:b5:64:
50:2a:be:c3:f3:93:90:f3:b7:f7:d8:fb:bf:69:c7:
a0:f8:b9:da:57:46:9a:31:1a:37:6f:e3:de:bf:2f:
d0:98:07:f8:2d:ee:6b:f4:75:67:f9:a4:94:2b:35:
98:13:12:74:12:ea:fc:34:12:fe:75:8a:ae:24:ca:
ba:d3:c9:e8:89:0a:45:70:df:71:e3:ce:dd:ab:03:
b9:ef:cf:5a:00:74:20:c2:01:36:40:8e:64:7f:6e:
fa:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:63:40:07:2E:0D:D2:65:44:5F:E2:77:F8:74:2C:D3:EB:E2:87:1F
X509v3 Authority Key Identifier:
keyid:2B:17:07:88:97:94:CE:A0:62:2B:D4:92:1D:6B:DB:DD:56:EF:0B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:d7:08:88:4a:33:4d:11:41:03:4c:1e:83:44:84:af:f0:7a:
35:70:80:32:a5:4e:a6:73:1b:f4:0e:58:a7:b5:f4:84:2e:fd:
6d:65:74:b6:c7:24:64:e4:80:e3:c2:2c:ef:f9:c8:76:7e:1b:
93:91:fc:58:8c:c7:c2:6b:0a:34:10:24:9d:9a:b2:e5:f1:52:
49:49:a4:df:15:85:e7:fe:34:50:c2:57:13:ae:66:24:2d:98:
8a:87:ba:fe:ba:36:0b:d2:1b:a7:b5:58:5e:c8:ee:6c:41:6d:
f0:7c:65:b5:f6:2a:da:f5:9e:28:b6:c4:23:ee:41:d8:53:c6:
5b:b4:4a:cd:ed:7b:ab:83:4a:16:cb:2c:4f:59:72:0d:d0:a1:
1b:34:7d:bd:c8:c6:cd:26:2c:1d:54:f0:ee:ae:d3:0d:4b:de:
0e:a5:3f:25:20:fe:90:23:c1:c6:74:3c:1c:88:6a:57:b1:22:
bc:09:9a:dd:71:51:d4:be:c4:55:a1:a2:89:c3:9b:23:c1:12:
94:73:0f:7b:3c:4b:df:47:f5:0d:ce:ee:7e:34:24:d5:39:c8:
03:f3:d9:f8:07:7a:4a:73:89:c0:b6:fc:85:92:cc:1d:0f:36:
eb:20:bb:1c:a3:ea:9d:e8:30:cd:34:63:46:ae:6e:ce:b4:70:
c1:0f:c4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:57:29 2025 by rpki-client