Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: UZhh5jy4RVKe2+2T/+GFrFs03lZPlZmULNkxfQf/C+A=
Subject key identifier: 2E:97:CA:D5:C2:8A:09:CF:70:45:6C:F5:E0:1A:34:73:03:42:C0:ED
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 0198D4734CAA53D6F9194AAF6E459C2E0235
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 164A
Signing time: Sat 23 Aug 2025 01:03:02 +0000
Manifest this update: Sat 23 Aug 2025 01:03:02 +0000
Manifest next update: Sun 24 Aug 2025 01:03:02 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: gVycnu+ElmkSN79XUv5E21NBh1sNFSSElleAfTFQC8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:03:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:4c:aa:53:d6:f9:19:4a:af:6e:45:9c:2e:02:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Aug 23 01:03:02 2025 GMT
Not After : Aug 24 01:03:02 2025 GMT
Subject: CN=2e97cad5c28a09cf70456cf5e01a34730342c0ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:d6:1f:9b:f9:82:bd:76:3b:93:18:0e:e5:34:
d9:61:14:b0:10:86:5f:a0:4a:a9:1c:5d:ee:86:e0:
24:01:2f:b2:cc:e9:e9:b0:1f:85:cf:c1:6b:74:b7:
1d:79:0b:dc:9e:f5:3a:0a:e6:63:18:b5:0f:72:3a:
24:7b:19:aa:06:4a:8a:ea:d7:23:9f:0c:07:05:7d:
8a:68:63:f7:f8:af:09:35:a7:f8:dc:7f:d6:fe:67:
86:8b:c5:fb:4f:90:0e:3e:70:8d:85:6c:2b:30:0c:
f9:5c:83:73:ba:27:1b:dd:d1:0d:fa:14:67:a6:17:
58:95:b2:ec:a4:4a:14:b8:df:e7:1d:52:ca:6f:bd:
89:00:83:50:03:7f:d2:70:2b:e3:56:50:7b:68:ee:
ef:ca:6d:0c:81:f3:6e:af:32:15:2d:de:e4:93:23:
37:d2:c8:d8:38:d5:ff:3f:c7:83:9a:0a:cb:b9:85:
db:ab:0b:c8:21:dc:19:17:92:ad:81:80:6b:32:96:
15:7a:21:7f:68:19:16:d0:6a:d7:7b:52:4b:68:ff:
3d:9f:7f:1b:b9:3e:6d:97:d9:5b:46:26:81:ca:0b:
ed:c6:7c:bd:bf:82:3e:a3:e2:f9:bf:aa:61:72:6e:
e6:19:ab:1f:6b:2a:ae:28:19:49:aa:02:23:c5:f4:
41:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:97:CA:D5:C2:8A:09:CF:70:45:6C:F5:E0:1A:34:73:03:42:C0:ED
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:82:28:88:a6:39:6e:d7:c4:9e:da:fc:df:aa:3a:c6:33:f6:
d6:49:9f:79:8f:68:a5:eb:d8:8a:b8:d0:00:d8:04:2a:da:22:
d6:62:8d:e9:b8:32:54:a1:bf:fa:c0:e5:89:dd:f0:9f:ef:1a:
b5:4f:1a:1c:d2:87:80:0b:fd:84:2e:16:4c:20:41:ed:c7:d2:
92:6c:dd:53:be:05:9d:fe:47:f4:75:a3:fb:83:9a:b3:68:47:
04:78:91:40:cd:bf:97:9e:1d:a6:81:0b:7c:f2:c8:f3:fb:44:
0d:5e:24:86:fb:55:9c:fd:42:84:d1:22:c3:fa:1c:31:8b:f5:
2c:db:ee:02:10:03:46:1e:09:06:0b:f0:47:ab:de:ae:db:b3:
8a:27:a1:03:01:4c:58:bb:a6:7a:f2:15:5e:47:e3:1a:b9:9c:
6e:a3:42:7b:c8:68:61:fd:ae:56:50:c0:ee:d8:05:20:99:b9:
7d:d8:cd:be:eb:83:0c:f5:7d:d5:9d:f6:79:cc:5c:c3:e9:3c:
fb:01:86:a1:51:6a:d6:76:08:fb:a1:be:bf:f6:d5:ff:3e:0a:
1d:9a:97:4c:6d:4d:3d:e9:20:66:9c:31:c9:67:10:51:7a:33:
b8:05:9a:7a:d6:86:a6:0f:88:3d:27:89:00:8a:ed:17:00:6b:
c7:7a:de:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc0yqU9b5GUqvbkWcLgI1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxODI4M2Q3ODVjYzg4ZWY4NTIwODYyYWMxNjFmMjdiNTYz
MGJjMTQwHhcNMjUwODIzMDEwMzAyWhcNMjUwODI0MDEwMzAyWjAzMTEwLwYDVQQD
EygyZTk3Y2FkNWMyOGEwOWNmNzA0NTZjZjVlMDFhMzQ3MzAzNDJjMGVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA99Yfm/mCvXY7kxgO5TTZYRSwEIZf
oEqpHF3uhuAkAS+yzOnpsB+Fz8FrdLcdeQvcnvU6CuZjGLUPcjokexmqBkqK6tcj
nwwHBX2KaGP3+K8JNaf43H/W/meGi8X7T5AOPnCNhWwrMAz5XINzuicb3dEN+hRn
phdYlbLspEoUuN/nHVLKb72JAINQA3/ScCvjVlB7aO7vym0MgfNurzIVLd7kkyM3
0sjYONX/P8eDmgrLuYXbqwvIIdwZF5KtgYBrMpYVeiF/aBkW0GrXe1JLaP89n38b
uT5tl9lbRiaBygvtxny9v4I+o+L5v6phcm7mGasfayquKBlJqgIjxfRBawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC6XytXCignPcEVs9eAaNHMDQsDtMB8GA1UdIwQY
MBaAFJGCg9eFzIjvhSCGKsFh8ntWMLwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMt
ZjMyMjYwZTA1NzAwLzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMtZjMyMjYwZTA1NzAw
LzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd4IoiKY5
btfEntr836o6xjP21kmfeY9opevYirjQANgEKtoi1mKN6bgyVKG/+sDlid3wn+8a
tU8aHNKHgAv9hC4WTCBB7cfSkmzdU74Fnf5H9HWj+4Oas2hHBHiRQM2/l54dpoEL
fPLI8/tEDV4khvtVnP1ChNEiw/ocMYv1LNvuAhADRh4JBgvwR6vertuziiehAwFM
WLumevIVXkfjGrmcbqNCe8hoYf2uVlDA7tgFIJm5fdjNvuuDDPV91Z32ecxcw+k8
+wGGoVFq1nYI+6G+v/bV/z4KHZqXTG1NPekgZpwxyWcQUXozuAWaetaGpg+IPSeJ
AIrtFwBrx3re4Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:50:11 2025 by rpki-client