Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
File: kkecrihHZdYoBEEZAJiA0op1YLE.mft (raw, json)
Hash identifier: Ixgav66TijJa7EWgL4vdKkYezwa+lM2mUHUb7dfHPUM=
Subject key identifier: F4:CB:13:F3:94:79:FA:42:21:6E:E2:91:A6:4F:C7:7F:42:E9:66:89
Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1
Certificate serial: 0198440822068ABD6D59342D8F71A6B9BF57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
Manifest number: 15FD
Signing time: Sat 26 Jul 2025 00:00:40 +0000
Manifest this update: Sat 26 Jul 2025 00:00:40 +0000
Manifest next update: Sun 27 Jul 2025 00:00:40 +0000
Files and hashes: 1: kkecrihHZdYoBEEZAJiA0op1YLE.crl (hash: n7G9qdMrd6Gng+Wc+jYR5Btirvna4ab+1hZaZx6+XD8=)
2: x9d_ZYOPUgUTIG_dU1aWLhzD7L0.roa (hash: Eoi/Kjhf2x+MudONjVV9qJBRoFTzvMFaOuh/XyvvI1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 21:50:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:44:08:22:06:8a:bd:6d:59:34:2d:8f:71:a6:b9:bf:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92479cae284765d628044119009880d28a7560b1
Validity
Not Before: Jul 26 00:00:40 2025 GMT
Not After : Jul 27 00:00:40 2025 GMT
Subject: CN=f4cb13f39479fa42216ee291a64fc77f42e96689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:41:c9:cd:d5:9f:4a:c1:1c:de:8d:1f:8a:35:
54:54:ff:0e:ea:1e:2c:c9:ff:1e:d0:05:5f:e4:ca:
fe:09:48:98:55:f0:b8:70:21:44:ed:63:dd:d5:92:
33:62:a8:62:ae:9f:6c:ba:f8:94:76:46:54:93:91:
49:5b:8a:12:08:d7:2a:89:9e:cd:7c:ff:a3:0e:04:
5d:5d:b4:7c:f4:88:cb:01:0e:4e:72:41:18:d3:2a:
6c:2d:4c:04:5e:1b:54:cc:d8:23:a7:cc:1c:68:88:
23:f6:b5:f0:6b:75:b9:3b:8f:7e:e5:28:0a:71:ca:
dc:f2:1f:1c:a2:bc:af:b1:20:e5:9c:bb:fe:d8:b9:
b5:a8:61:41:76:6a:3d:42:74:c9:c0:e2:e6:d2:02:
2c:4f:7d:26:63:07:56:a9:65:9d:fc:2d:f2:76:0e:
07:0c:d2:0e:2b:ea:10:65:d6:1f:3c:3c:f4:4f:51:
69:e2:f5:7b:87:e1:43:5d:56:f1:26:69:09:5b:4a:
c7:9a:9a:a7:70:e0:8d:0f:3a:a6:fc:05:0d:ee:98:
4b:fd:ca:22:61:92:41:81:cf:09:79:c1:00:e5:f5:
ed:d6:a9:75:15:ce:77:37:0c:fe:4f:3a:75:f5:0e:
a3:38:0d:5a:d6:d2:54:03:31:0e:92:6a:da:55:54:
8d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:CB:13:F3:94:79:FA:42:21:6E:E2:91:A6:4F:C7:7F:42:E9:66:89
X509v3 Authority Key Identifier:
keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:85:8b:00:3c:33:0e:94:2d:85:54:c8:77:5e:9d:fe:2e:2b:
78:d9:c7:92:e9:72:94:65:ba:55:6e:b9:e0:b4:51:50:d6:2a:
0d:e2:02:6e:16:af:39:f8:40:d2:fe:d2:ea:90:ef:f0:36:5b:
47:60:20:03:32:d0:cf:b0:9f:a8:3e:26:f2:1f:07:31:5e:a5:
aa:37:54:9f:b6:00:b8:be:c5:92:64:6f:22:47:af:4d:27:da:
94:71:3f:6a:6a:b7:7e:69:b6:03:b1:61:30:c2:93:11:9b:11:
2f:57:e8:f4:ed:a3:fb:a5:ae:88:2d:48:6a:e3:85:fc:1f:bd:
c9:28:9e:7f:23:c0:37:50:35:e0:82:e1:11:3a:f1:79:7d:f5:
2d:61:bc:20:a4:e6:17:58:b1:36:e1:e9:8f:93:ea:fd:1e:2d:
2b:3c:93:9c:4e:fe:44:b1:fc:06:2d:32:38:9c:f5:25:85:19:
cc:4e:9f:c2:35:23:65:f8:6b:f8:72:50:9f:a7:24:ff:53:72:
ba:fd:37:f2:c5:e9:88:af:4a:7e:03:6e:bf:92:e9:74:e5:f1:
6b:b0:67:4a:3a:0a:3c:b6:08:6b:a2:bc:5b:ac:1c:1e:f0:f6:
b3:df:67:fb:d9:cc:63:a3:49:35:54:9d:fe:7a:8b:c6:cc:b4:
1e:03:50:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 06:47:00 2025 by rpki-client