Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
File: KYlkeFHvzRmJcu09FJzLvenFXAA.mft (raw, json)
Hash identifier: +Y1vlsodm/dsci8LrDY5c2Ax/JsODU6rWTDQPrDUr+Q=
Subject key identifier: 6A:7E:11:8E:34:BF:97:39:A0:E5:51:66:49:99:3A:2D:EE:5C:85:D0
Authority key identifier: 29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00
Certificate issuer: /CN=2989647851efcd198972ed3d149ccbbde9c55c00
Certificate serial: 019922FA69CD6E61A5623BDC78FDDA702689
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
Manifest number: 09AA
Signing time: Sun 07 Sep 2025 07:01:00 +0000
Manifest this update: Sun 07 Sep 2025 07:01:00 +0000
Manifest next update: Mon 08 Sep 2025 07:01:00 +0000
Files and hashes: 1: 1ndyHQjZ22gElMY09b9UIH97Fd0.roa (hash: d9wD6lD21fFSwiL6i7e8/Tvl1y891h5uDv49+B9KB5s=)
2: KYlkeFHvzRmJcu09FJzLvenFXAA.crl (hash: mCiD/sDG0/TwrjpCfiiiGdWTTctHGOCdI9dkZAYVFxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:69:cd:6e:61:a5:62:3b:dc:78:fd:da:70:26:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989647851efcd198972ed3d149ccbbde9c55c00
Validity
Not Before: Sep 7 07:01:00 2025 GMT
Not After : Sep 8 07:01:00 2025 GMT
Subject: CN=6a7e118e34bf9739a0e5516649993a2dee5c85d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:62:38:a2:bb:b4:67:50:16:66:4b:f1:5d:00:
92:33:93:69:97:96:24:49:1f:b6:ac:51:d3:1a:aa:
7d:5c:06:f6:cd:f1:f2:d2:06:61:a0:2b:cb:f1:04:
c7:ed:e5:47:bd:bb:b2:97:bb:3b:99:9b:b3:89:6e:
d3:a8:ab:38:8c:dc:7d:ba:e1:f2:84:c6:6b:ea:f3:
f4:a5:90:08:44:33:ed:e3:8f:00:f9:a9:6a:1d:89:
12:21:ac:bf:0d:96:db:61:82:9f:08:5b:9e:28:9d:
a6:b9:af:72:9f:6b:98:4a:90:c1:0d:e2:c7:5a:97:
4a:fa:3d:dd:cb:0e:91:92:3b:23:e6:2e:5c:a3:f3:
3e:62:38:90:8c:bb:9f:32:6d:ef:9a:9b:2b:41:90:
d4:cd:7f:aa:8b:49:fc:2c:4c:11:b6:ab:ff:14:18:
9f:e6:38:35:93:99:50:39:d6:c0:e9:44:93:06:76:
02:68:0c:85:92:49:c1:9f:3f:e4:fc:ff:8a:2e:6c:
fe:f6:22:65:25:b9:02:ea:b0:4d:c4:38:97:fc:36:
40:de:46:0c:fd:15:e6:8d:70:d0:6b:07:4c:e2:ed:
79:8e:13:66:d8:c2:fa:c5:a8:27:49:0c:e6:95:dc:
2b:69:06:6d:e5:b9:97:b0:cb:36:ca:e2:e5:95:f8:
12:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7E:11:8E:34:BF:97:39:A0:E5:51:66:49:99:3A:2D:EE:5C:85:D0
X509v3 Authority Key Identifier:
keyid:29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:04:06:d8:d3:63:1c:6c:da:e3:0e:20:9b:9d:89:7c:51:d8:
27:ee:30:6a:83:6a:f6:21:96:ac:d0:69:8e:cd:ee:f1:03:11:
0d:45:6d:de:14:bc:f5:e6:23:fa:60:6d:f9:31:9b:c7:a3:2d:
45:b0:e8:23:e3:7e:ce:90:b7:02:45:1a:60:ca:47:de:84:df:
f4:fa:b2:0a:ff:f0:82:14:59:df:84:67:4d:ea:7c:66:57:2d:
ee:5b:d3:fe:bc:c1:f9:b1:c2:6c:9b:4a:80:32:5e:7b:74:a3:
99:5e:3a:19:ca:c1:6a:d0:d1:a3:46:cb:12:c1:e1:f7:25:78:
e5:11:57:5d:e2:fa:a3:c3:ee:66:11:82:85:bf:52:ae:2b:27:
25:5a:4a:f6:3e:6f:84:f9:33:41:3d:59:f4:0e:69:33:ba:7a:
0c:a7:64:3d:7d:22:de:29:2a:61:a7:c6:7c:7e:28:21:0e:97:
5f:e7:d0:26:ef:d6:e0:36:49:41:99:c6:11:49:8b:9e:cb:21:
d0:20:03:9d:5a:e7:60:10:90:11:c9:4c:e8:c8:07:cb:b1:4a:
75:f9:a1:b9:b5:59:2f:32:1f:55:21:ed:19:0a:fc:2b:ae:1f:
62:62:e6:7e:37:d8:fc:58:a0:16:1b:a5:52:c6:8d:3a:f0:45:
10:13:87:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+mnNbmGlYjvceP3acCaJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ODk2NDc4NTFlZmNkMTk4OTcyZWQzZDE0OWNjYmJkZTlj
NTVjMDAwHhcNMjUwOTA3MDcwMTAwWhcNMjUwOTA4MDcwMTAwWjAzMTEwLwYDVQQD
Eyg2YTdlMTE4ZTM0YmY5NzM5YTBlNTUxNjY0OTk5M2EyZGVlNWM4NWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmI4oru0Z1AWZkvxXQCSM5Npl5Yk
SR+2rFHTGqp9XAb2zfHy0gZhoCvL8QTH7eVHvbuyl7s7mZuziW7TqKs4jNx9uuHy
hMZr6vP0pZAIRDPt448A+alqHYkSIay/DZbbYYKfCFueKJ2mua9yn2uYSpDBDeLH
WpdK+j3dyw6Rkjsj5i5co/M+YjiQjLufMm3vmpsrQZDUzX+qi0n8LEwRtqv/FBif
5jg1k5lQOdbA6USTBnYCaAyFkknBnz/k/P+KLmz+9iJlJbkC6rBNxDiX/DZA3kYM
/RXmjXDQawdM4u15jhNm2ML6xagnSQzmldwraQZt5bmXsMs2yuLllfgScQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGp+EY40v5c5oOVRZkmZOi3uXIXQMB8GA1UdIwQY
MBaAFCmJZHhR780ZiXLtPRScy73pxVwAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9hYjVlODgtZDJmOS00ODdiLWJiOTIt
YTRjYjFjZmQwMGI4LzEvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy9hYjVlODgtZDJmOS00ODdiLWJiOTItYTRjYjFjZmQwMGI4
LzEvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsQQG2NNj
HGza4w4gm52JfFHYJ+4waoNq9iGWrNBpjs3u8QMRDUVt3hS89eYj+mBt+TGbx6Mt
RbDoI+N+zpC3AkUaYMpH3oTf9PqyCv/wghRZ34RnTep8Zlct7lvT/rzB+bHCbJtK
gDJee3SjmV46GcrBatDRo0bLEsHh9yV45RFXXeL6o8PuZhGChb9SrisnJVpK9j5v
hPkzQT1Z9A5pM7p6DKdkPX0i3ikqYafGfH4oIQ6XX+fQJu/W4DZJQZnGEUmLnssh
0CADnVrnYBCQEclM6MgHy7FKdfmhubVZLzIfVSHtGQr8K64fYmLmfjfY/FigFhul
UsaNOvBFEBOHWw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:16:09 2025 by rpki-client