Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: aTqXje1BNrkVr5wRCEmbJkhGahQhgqdJEFj5LCo0lyo=
Subject key identifier: E9:B9:26:AE:CE:26:4D:D6:5E:B7:5F:E7:A7:A8:6E:CC:9F:CE:FC:D4
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 0199FE105438472F1ACE335E7A8CF34D87B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 048E
Signing time: Sun 19 Oct 2025 20:01:46 +0000
Manifest this update: Sun 19 Oct 2025 20:01:46 +0000
Manifest next update: Mon 20 Oct 2025 20:01:46 +0000
Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
3: HxZyQaGrGtOk8RKg0Mhbl06w1Co.roa (hash: T6PK192RHox/GMNjjl8t8FiOFdhRf0h3waZVXZOPKpk=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: Z08C+UYtNPkpDiAksQDGNlrIqOO481wG5QFp5SGkhhc=)
5: PwMQ2FB61zxu5sQ2E09luTqKMvk.roa (hash: izn212mH5oYV5cpl26pTxpZxIsUMzoPkaD7C7yvNm8E=)
6: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
7: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=)
8: od9af71GeQfA9Hxa-pUi9HfyQbQ.roa (hash: XWeJ2o3YIDMGq+Gf7bx+E7FN5efcdXQkm09+SRPSSXw=)
9: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:10:54:38:47:2f:1a:ce:33:5e:7a:8c:f3:4d:87:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Oct 19 20:01:46 2025 GMT
Not After : Oct 20 20:01:46 2025 GMT
Subject: CN=e9b926aece264dd65eb75fe7a7a86ecc9fcefcd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3b:2c:20:6a:35:64:37:5a:34:3a:4a:1b:dc:
c4:62:09:69:ce:e8:74:20:51:b8:c4:91:4f:5a:b4:
20:47:b4:39:c5:fa:b9:d0:63:ed:ea:eb:5d:1d:f3:
99:b8:37:18:df:31:44:be:dc:2a:d6:cd:ed:78:09:
4e:d5:3e:bd:02:de:93:bc:18:26:42:b9:d3:8f:af:
9e:4e:24:36:e3:6a:4d:92:41:79:c9:9f:9a:34:3b:
5f:bc:7f:2b:ca:03:57:37:c5:57:76:db:43:ca:62:
89:8c:c4:c9:b5:3a:1a:cf:5a:4a:4e:d3:a7:39:ac:
36:b1:42:4b:15:51:c8:f8:72:9c:7c:f7:d2:cf:11:
75:a9:43:ce:d5:f1:2d:23:4b:b0:ba:b4:82:a4:fb:
e1:19:5b:da:85:af:47:bf:ac:ab:be:0c:c4:53:a0:
a9:79:5b:25:6a:4b:b7:f9:28:99:53:2d:3c:a1:dc:
6f:f9:17:73:96:33:95:62:de:bc:db:f3:85:47:97:
52:23:df:a6:29:5d:1e:7b:3f:09:f9:bc:20:79:52:
d1:d7:b1:ba:5a:fa:fe:f8:57:38:db:59:3f:d8:47:
78:0f:6d:6d:e2:0d:32:3e:43:50:8e:e5:7f:6c:07:
54:a1:d5:08:a3:a6:31:c7:cc:2f:d4:ce:2e:34:49:
77:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B9:26:AE:CE:26:4D:D6:5E:B7:5F:E7:A7:A8:6E:CC:9F:CE:FC:D4
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:76:2c:33:c4:45:0b:ec:c9:f5:47:95:87:a7:12:79:95:45:
0b:94:df:98:2c:e1:71:28:63:d4:ee:34:33:19:ef:7b:be:a6:
fb:3d:96:55:ca:13:37:8d:6c:7f:ef:f6:07:04:24:eb:25:11:
2f:c8:cb:43:52:87:b0:bd:9e:bb:c9:ac:a4:18:53:88:c8:35:
ef:b7:28:50:f8:92:27:05:fe:41:9a:f9:df:18:8a:6a:08:48:
44:d9:48:60:5a:fa:07:b2:fc:d9:d2:ed:50:52:d8:3c:47:54:
00:58:97:26:f9:42:0d:64:00:01:00:b8:8c:53:76:9a:57:1a:
e6:17:58:27:92:5c:12:d8:71:4a:cb:4b:8e:c2:82:06:b5:54:
82:ed:79:5d:eb:c4:c0:8f:08:cd:1d:46:ea:7f:0c:0f:5d:37:
b8:cb:e5:8a:36:cf:6f:1a:f8:86:07:c7:4a:ec:8a:40:81:2a:
7e:7a:47:d1:24:83:00:4a:13:7a:26:f8:d4:39:e9:fe:21:c1:
36:59:61:cd:1d:07:19:d0:f2:48:62:b5:5a:08:fa:98:5f:3f:
13:9d:2a:37:ff:57:01:24:b8:c2:bc:b5:67:f7:d8:4c:36:03:
b5:54:55:b3:a3:84:dd:12:2d:9c:26:2e:27:4f:14:19:c7:b5:
d7:d8:8e:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+EFQ4Ry8azjNeeozzTYeyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh
NTI2ZDgwHhcNMjUxMDE5MjAwMTQ2WhcNMjUxMDIwMjAwMTQ2WjAzMTEwLwYDVQQD
EyhlOWI5MjZhZWNlMjY0ZGQ2NWViNzVmZTdhN2E4NmVjYzlmY2VmY2Q0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzssIGo1ZDdaNDpKG9zEYglpzuh0
IFG4xJFPWrQgR7Q5xfq50GPt6utdHfOZuDcY3zFEvtwq1s3teAlO1T69At6TvBgm
QrnTj6+eTiQ242pNkkF5yZ+aNDtfvH8rygNXN8VXdttDymKJjMTJtToaz1pKTtOn
Oaw2sUJLFVHI+HKcfPfSzxF1qUPO1fEtI0uwurSCpPvhGVvaha9Hv6yrvgzEU6Cp
eVslaku3+SiZUy08odxv+RdzljOVYt682/OFR5dSI9+mKV0eez8J+bwgeVLR17G6
Wvr++Fc421k/2Ed4D21t4g0yPkNQjuV/bAdUodUIo6Yxx8wv1M4uNEl3vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOm5Jq7OJk3WXrdf56eobsyfzvzUMB8GA1UdIwQY
MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt
MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh
LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVXYsM8RF
C+zJ9UeVh6cSeZVFC5TfmCzhcShj1O40Mxnve76m+z2WVcoTN41sf+/2BwQk6yUR
L8jLQ1KHsL2eu8mspBhTiMg177coUPiSJwX+QZr53xiKaghIRNlIYFr6B7L82dLt
UFLYPEdUAFiXJvlCDWQAAQC4jFN2mlca5hdYJ5JcEthxSstLjsKCBrVUgu15XevE
wI8IzR1G6n8MD103uMvlijbPbxr4hgfHSuyKQIEqfnpH0SSDAEoTeib41Dnp/iHB
NllhzR0HGdDySGK1Wgj6mF8/E50qN/9XASS4wry1Z/fYTDYDtVRVs6OE3RItnCYu
J08UGce119iOJw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:36:04 2025 by rpki-client