Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: d226c2GgwonK+DE/SQJ5Mq8rlqiKR9eIPxPJgeneUWE=
Subject key identifier: 89:ED:16:D9:1D:A2:2E:90:62:CB:A1:DD:4A:44:BB:80:21:18:19:AE
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 0199FBEBA0FE704A506B08CABFD783323569
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 10:02:27 +0000
Manifest this update: Sun 19 Oct 2025 10:02:27 +0000
Manifest next update: Mon 20 Oct 2025 10:02:27 +0000
Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: h19w03mLNiJJxubh90bYynYUmeEyGkg5JIPERG9gtmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:a0:fe:70:4a:50:6b:08:ca:bf:d7:83:32:35:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Oct 19 10:02:27 2025 GMT
Not After : Oct 20 10:02:27 2025 GMT
Subject: CN=89ed16d91da22e9062cba1dd4a44bb80211819ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8e:f6:be:c3:b6:39:c5:7b:e6:bb:cc:21:3d:
68:7c:13:54:2c:e1:d3:f2:88:c9:cd:52:ec:9e:34:
95:cc:b3:eb:1b:2b:e2:1a:4c:f0:48:4e:7f:d6:35:
03:48:83:05:15:e4:b8:46:83:7c:57:57:a8:07:87:
4f:f5:aa:02:bb:b8:3f:21:27:1a:d7:ab:f3:2a:f8:
45:1d:0d:65:5d:25:24:96:44:51:5a:dc:1b:d1:7f:
0d:34:ca:0d:06:df:48:08:17:a3:50:9d:42:fb:97:
b2:c2:38:23:d9:b4:b7:38:af:13:2a:5f:30:36:42:
d4:91:2a:5b:23:f3:2d:42:42:81:90:d7:d6:1d:63:
a6:41:fb:89:53:95:08:fb:13:e1:9f:01:1a:e0:e5:
84:42:0c:ee:65:6a:ae:98:b1:65:fc:21:9c:44:63:
2c:72:a9:7f:2e:31:7f:e9:3a:cd:35:c5:2e:e4:02:
21:ad:dc:cb:2c:fb:74:c2:b9:07:6f:13:e2:98:e8:
0e:b4:23:48:fa:57:6e:ea:fc:bc:a0:73:8c:c6:ce:
f0:50:04:c6:d9:ea:e3:33:c8:22:05:1e:ed:6d:80:
0d:69:12:f3:ec:98:8b:17:0c:01:c7:44:4a:c2:0f:
4f:5a:06:64:6b:e6:54:88:fa:24:f0:4b:79:34:43:
f2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:ED:16:D9:1D:A2:2E:90:62:CB:A1:DD:4A:44:BB:80:21:18:19:AE
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:01:ed:2b:bb:1a:f1:77:a9:24:b5:75:ad:8d:8b:3d:8b:e8:
66:dc:1e:eb:8a:49:82:e2:1c:26:6e:59:ba:e7:c4:26:ec:fa:
61:b6:53:15:c3:de:c4:c9:7a:9d:f3:21:0a:a7:ee:3a:2e:8b:
1e:f9:be:7d:0d:53:32:9a:2a:21:b2:f8:18:df:6f:ac:1f:4c:
fa:ca:a5:67:66:cd:e7:cc:8e:0d:7c:be:c0:bb:d4:76:33:11:
08:51:10:d3:0b:ca:de:88:1e:b0:9f:57:a2:76:38:ee:2b:e0:
c4:3f:a2:37:37:98:bd:c5:97:85:28:db:9b:00:9e:7f:6a:d1:
5d:b4:45:cc:39:ca:9b:79:c1:e6:a3:b2:d6:52:b2:e2:95:d8:
9f:3e:78:47:41:c7:9c:1e:e8:16:4f:5c:1c:78:6f:76:12:5c:
bf:d7:e1:17:34:bb:c3:9e:61:6b:ef:c7:80:dc:88:79:cd:ce:
5d:d6:c3:ba:a9:7c:9c:ee:93:9a:bf:a3:ff:aa:bd:dc:92:2c:
7e:10:1b:a5:3a:e1:b0:5e:8f:ca:40:5f:f3:c7:87:bc:18:24:
87:2b:95:25:c1:19:62:70:b4:fa:45:eb:1e:38:0f:91:5c:14:
75:80:64:5c:0e:cd:23:15:80:be:50:03:87:be:58:4f:f3:ee:
a6:25:c2:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn766D+cEpQawjKv9eDMjVpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxODI4M2Q3ODVjYzg4ZWY4NTIwODYyYWMxNjFmMjdiNTYz
MGJjMTQwHhcNMjUxMDE5MTAwMjI3WhcNMjUxMDIwMTAwMjI3WjAzMTEwLwYDVQQD
Eyg4OWVkMTZkOTFkYTIyZTkwNjJjYmExZGQ0YTQ0YmI4MDIxMTgxOWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs472vsO2OcV75rvMIT1ofBNULOHT
8ojJzVLsnjSVzLPrGyviGkzwSE5/1jUDSIMFFeS4RoN8V1eoB4dP9aoCu7g/ISca
16vzKvhFHQ1lXSUklkRRWtwb0X8NNMoNBt9ICBejUJ1C+5eywjgj2bS3OK8TKl8w
NkLUkSpbI/MtQkKBkNfWHWOmQfuJU5UI+xPhnwEa4OWEQgzuZWqumLFl/CGcRGMs
cql/LjF/6TrNNcUu5AIhrdzLLPt0wrkHbxPimOgOtCNI+ldu6vy8oHOMxs7wUATG
2erjM8giBR7tbYANaRLz7JiLFwwBx0RKwg9PWgZka+ZUiPok8Et5NEPywwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIntFtkdoi6QYsuh3UpEu4AhGBmuMB8GA1UdIwQY
MBaAFJGCg9eFzIjvhSCGKsFh8ntWMLwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMt
ZjMyMjYwZTA1NzAwLzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMtZjMyMjYwZTA1NzAw
LzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQHtK7sa
8XepJLV1rY2LPYvoZtwe64pJguIcJm5ZuufEJuz6YbZTFcPexMl6nfMhCqfuOi6L
Hvm+fQ1TMpoqIbL4GN9vrB9M+sqlZ2bN58yODXy+wLvUdjMRCFEQ0wvK3ogesJ9X
onY47ivgxD+iNzeYvcWXhSjbmwCef2rRXbRFzDnKm3nB5qOy1lKy4pXYnz54R0HH
nB7oFk9cHHhvdhJcv9fhFzS7w55ha+/HgNyIec3OXdbDuql8nO6Tmr+j/6q93JIs
fhAbpTrhsF6PykBf88eHvBgkhyuVJcEZYnC0+kXrHjgPkVwUdYBkXA7NIxWAvlAD
h75YT/PupiXC2Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:09:53 2025 by rpki-client