Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: X0lYIoqypXjSHIVrX28duxVzIhQ5bSKC66Hz+ZiR72s=
Subject key identifier: 60:D7:3D:BA:94:21:5A:49:B3:C0:FC:15:3A:C5:BB:33:AD:32:46:82
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019A2289AA31C13F61F53361A5ACC904C24C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1700
Signing time: Sun 26 Oct 2025 22:00:38 +0000
Manifest this update: Sun 26 Oct 2025 22:00:38 +0000
Manifest next update: Mon 27 Oct 2025 22:00:38 +0000
Files and hashes: 1: Lx4QL8l0KgaffC4QXEWzVHcEawc.roa (hash: DxG2rV8lArm7XTxrRaRlBv42lE1FblGks/y6Gbm7tWY=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: mG0WF/Si7WK4zJQE5z1Tjhe/tIf4+wORhNPWt4GiiGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 19:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:22:89:aa:31:c1:3f:61:f5:33:61:a5:ac:c9:04:c2:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Oct 26 22:00:38 2025 GMT
Not After : Oct 27 22:00:38 2025 GMT
Subject: CN=60d73dba94215a49b3c0fc153ac5bb33ad324682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bc:37:62:12:3e:74:3f:dc:41:eb:60:88:4e:
4d:1b:a4:e5:90:ad:9f:31:69:1e:88:76:cc:a7:35:
2c:d8:2c:53:63:64:f2:bb:ef:42:b5:14:ef:a8:88:
a5:be:2c:99:fd:f7:84:95:96:53:25:f9:94:04:4b:
87:65:9a:69:12:eb:68:8f:c5:d7:18:9d:50:7a:4a:
b8:f1:9e:cc:c8:c9:52:68:b2:ef:d3:27:14:6a:c0:
61:14:67:3e:d6:6c:bf:0d:93:b3:d1:43:1e:7a:0b:
71:e7:5d:56:1a:37:d0:ce:ce:aa:4f:ce:cc:03:e3:
52:51:da:32:9d:81:87:28:aa:18:fe:28:1a:73:34:
a9:6b:40:cf:7a:91:02:40:ba:b9:62:e4:5c:b6:e9:
14:98:14:b4:41:35:fc:c9:8a:7d:92:4b:cd:13:79:
84:a7:0b:f9:23:98:dd:82:b4:a1:eb:cc:4e:fa:5a:
6d:33:62:31:bc:d9:f2:1d:1e:f2:be:4f:61:54:9c:
df:08:62:8f:df:69:e8:ef:02:88:56:a5:b1:2b:ba:
66:87:6d:c0:7a:85:bb:81:fe:cc:b2:7e:0f:13:81:
3a:fd:e0:3c:8e:aa:77:11:67:e7:c1:63:0a:af:76:
95:de:27:68:0f:7c:59:12:38:c0:68:2c:3a:de:e1:
5e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D7:3D:BA:94:21:5A:49:B3:C0:FC:15:3A:C5:BB:33:AD:32:46:82
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:e7:40:62:75:72:ec:24:47:22:05:f4:44:a4:3e:b2:a0:9b:
b8:0a:dc:31:68:14:15:ee:65:06:b0:20:61:70:68:cc:03:dc:
ed:2a:dc:bd:3c:91:55:86:fb:9c:fa:29:bf:d8:6c:b4:87:88:
8e:be:a7:5e:49:89:6f:54:a2:11:c0:03:d7:9d:54:08:c8:00:
5a:dc:ae:dc:b5:b6:2f:a8:b0:c9:bd:13:bb:f9:37:74:68:af:
b2:f3:bb:c9:98:75:72:23:2f:e0:4c:47:4a:28:ed:36:e8:3f:
da:06:4b:d9:05:b1:2f:b0:dc:12:1a:70:18:86:24:18:ef:1e:
7d:50:5e:e0:78:ca:0e:50:a5:be:c7:53:09:48:d1:21:82:02:
e6:8c:00:f5:de:4b:90:29:20:3f:36:a8:2c:80:58:fd:35:6b:
af:d2:87:40:dd:2d:47:4a:e1:59:b4:37:df:22:19:03:e1:33:
d5:91:8a:94:9c:f8:a0:a6:98:86:6f:67:10:fd:87:71:16:d2:
75:31:5b:70:6c:f8:58:ae:56:f9:34:50:74:0a:cb:2e:18:1e:
d1:d5:c9:7a:2b:b7:d9:d7:49:51:79:1d:f4:d3:1c:b0:27:dd:
41:17:8f:15:74:50:bd:ea:1e:1e:51:3b:9e:30:38:71:5c:ed:
53:eb:3f:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 04:31:52 2025 by rpki-client