Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/2fa75a-11b8-49ae-924a-eb9dcd17b476/1/KL8TZ9YSDGyHl6BEhtduR7EwrVE.mft
File: KL8TZ9YSDGyHl6BEhtduR7EwrVE.mft (raw, json)
Hash identifier: LL9abhyfE9+3CGVC33mjQLc7rFOuz1gjcgws55FIbhU=
Subject key identifier: 65:9C:BF:6B:18:28:98:34:A9:5B:29:4C:F1:E4:21:CA:36:4F:B6:7D
Authority key identifier: 28:BF:13:67:D6:12:0C:6C:87:97:A0:44:86:D7:6E:47:B1:30:AD:51
Certificate issuer: /CN=28bf1367d6120c6c8797a04486d76e47b130ad51
Certificate serial: 0199FB7CC42061438AF00B747D78D3FD3D84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL8TZ9YSDGyHl6BEhtduR7EwrVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/2fa75a-11b8-49ae-924a-eb9dcd17b476/1/KL8TZ9YSDGyHl6BEhtduR7EwrVE.mft
Manifest number: 58
Signing time: Sun 19 Oct 2025 08:01:21 +0000
Manifest this update: Sun 19 Oct 2025 08:01:21 +0000
Manifest next update: Mon 20 Oct 2025 08:01:21 +0000
Files and hashes: 1: KL8TZ9YSDGyHl6BEhtduR7EwrVE.crl (hash: MfPLHA5PSOI9ahinnIZ/ip9pyC/UBZ53dYBS1VQRKMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/2fa75a-11b8-49ae-924a-eb9dcd17b476/1/KL8TZ9YSDGyHl6BEhtduR7EwrVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/2fa75a-11b8-49ae-924a-eb9dcd17b476/1/KL8TZ9YSDGyHl6BEhtduR7EwrVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL8TZ9YSDGyHl6BEhtduR7EwrVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:c4:20:61:43:8a:f0:0b:74:7d:78:d3:fd:3d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bf1367d6120c6c8797a04486d76e47b130ad51
Validity
Not Before: Oct 19 08:01:21 2025 GMT
Not After : Oct 20 08:01:21 2025 GMT
Subject: CN=659cbf6b18289834a95b294cf1e421ca364fb67d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ee:81:d6:e8:7e:28:b2:ad:d6:bd:89:40:b2:
b0:7b:1c:60:f2:0a:cc:d2:56:68:b9:0a:0b:c0:c9:
84:5f:0c:77:fb:3d:6a:87:a1:bb:12:75:88:49:a5:
70:e8:74:67:3a:b4:c2:97:5a:bc:06:02:dc:b0:86:
07:ae:68:e9:e9:bc:5d:fc:af:d3:dc:f7:9c:72:84:
e3:4b:23:98:59:8a:0d:96:23:6d:ba:32:5f:36:2f:
9d:c9:22:c7:34:54:46:e7:9e:16:7d:55:0c:41:c0:
68:aa:1e:8d:95:7c:37:ee:a5:54:58:89:77:73:3a:
69:55:be:c0:2b:50:9f:bb:18:62:f2:16:f1:80:60:
59:79:a4:c7:09:31:fc:71:c4:57:40:25:63:3e:8e:
38:3f:e5:0a:ba:5a:c9:ea:4e:ca:db:e9:6b:c0:1e:
14:09:a6:5c:a5:d3:03:cd:2e:0f:ea:12:31:e1:f7:
7f:e1:7b:2e:80:62:59:2c:16:d2:08:4a:f9:fe:09:
fb:82:dc:58:ae:93:89:31:46:0e:4b:5f:27:cd:2e:
f6:69:8f:b5:57:88:fd:86:a2:70:f4:28:a2:4a:d1:
5a:e5:3d:89:b9:62:46:fd:6a:1f:14:af:ab:ce:7e:
50:18:da:bc:32:b9:06:92:94:49:69:75:23:38:2a:
7a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:9C:BF:6B:18:28:98:34:A9:5B:29:4C:F1:E4:21:CA:36:4F:B6:7D
X509v3 Authority Key Identifier:
keyid:28:BF:13:67:D6:12:0C:6C:87:97:A0:44:86:D7:6E:47:B1:30:AD:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL8TZ9YSDGyHl6BEhtduR7EwrVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2fa75a-11b8-49ae-924a-eb9dcd17b476/1/KL8TZ9YSDGyHl6BEhtduR7EwrVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/2fa75a-11b8-49ae-924a-eb9dcd17b476/1/KL8TZ9YSDGyHl6BEhtduR7EwrVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:17:70:63:96:ad:9c:db:10:98:00:7f:bf:a6:19:17:18:96:
c3:64:cc:77:5a:8c:16:3a:9e:d9:9c:75:fe:fe:82:de:db:90:
f7:21:96:eb:b8:95:37:18:ee:b9:4c:3b:a7:fe:dc:e2:96:8f:
b9:64:ed:c8:a3:9a:7e:a6:7f:c9:13:15:a8:ab:a1:5c:6d:66:
89:4a:d4:8f:85:4d:05:28:eb:e9:b6:9c:01:c2:6e:c7:f9:b8:
fa:06:6f:a1:6e:ba:6c:06:1c:00:4e:47:04:5c:f7:72:79:09:
f2:06:ee:79:39:4d:2b:8d:25:f1:04:d0:84:f7:9a:a8:87:89:
b1:a5:2a:47:b3:29:8a:1d:07:79:1d:2f:7f:88:83:16:0e:e1:
21:fb:6d:69:1f:9d:3d:96:cb:b9:42:9d:bb:ee:0e:b5:bc:b9:
9f:34:44:c3:84:81:b4:dd:c5:8d:82:4f:a2:77:d3:84:f2:67:
2d:96:14:d9:04:56:87:3a:10:f1:fd:37:0a:5c:ee:eb:0f:e1:
94:3e:74:7b:0b:f5:2b:91:2d:26:8e:f2:01:92:f9:31:1b:b0:
79:e2:fc:e6:12:57:c6:2a:df:53:6c:b2:0f:51:89:0a:9b:c2:
29:c1:c9:d6:81:fe:0f:6c:aa:c6:79:ad:4d:34:ea:fb:da:70:
f4:4a:dd:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7fMQgYUOK8At0fXjT/T2EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YmYxMzY3ZDYxMjBjNmM4Nzk3YTA0NDg2ZDc2ZTQ3YjEz
MGFkNTEwHhcNMjUxMDE5MDgwMTIxWhcNMjUxMDIwMDgwMTIxWjAzMTEwLwYDVQQD
Eyg2NTljYmY2YjE4Mjg5ODM0YTk1YjI5NGNmMWU0MjFjYTM2NGZiNjdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+6B1uh+KLKt1r2JQLKwexxg8grM
0lZouQoLwMmEXwx3+z1qh6G7EnWISaVw6HRnOrTCl1q8BgLcsIYHrmjp6bxd/K/T
3PeccoTjSyOYWYoNliNtujJfNi+dySLHNFRG554WfVUMQcBoqh6NlXw37qVUWIl3
czppVb7AK1Cfuxhi8hbxgGBZeaTHCTH8ccRXQCVjPo44P+UKulrJ6k7K2+lrwB4U
CaZcpdMDzS4P6hIx4fd/4XsugGJZLBbSCEr5/gn7gtxYrpOJMUYOS18nzS72aY+1
V4j9hqJw9CiiStFa5T2JuWJG/WofFK+rzn5QGNq8MrkGkpRJaXUjOCp6vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGWcv2sYKJg0qVspTPHkIco2T7Z9MB8GA1UdIwQY
MBaAFCi/E2fWEgxsh5egRIbXbkexMK1RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0w4VFo5WVNER3lIbDZCRWh0ZHVSN0V3clZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8yZmE3NWEtMTFiOC00OWFlLTkyNGEt
ZWI5ZGNkMTdiNDc2LzEvS0w4VFo5WVNER3lIbDZCRWh0ZHVSN0V3clZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8yZmE3NWEtMTFiOC00OWFlLTkyNGEtZWI5ZGNkMTdiNDc2
LzEvS0w4VFo5WVNER3lIbDZCRWh0ZHVSN0V3clZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPxdwY5at
nNsQmAB/v6YZFxiWw2TMd1qMFjqe2Zx1/v6C3tuQ9yGW67iVNxjuuUw7p/7c4paP
uWTtyKOafqZ/yRMVqKuhXG1miUrUj4VNBSjr6bacAcJux/m4+gZvoW66bAYcAE5H
BFz3cnkJ8gbueTlNK40l8QTQhPeaqIeJsaUqR7Mpih0HeR0vf4iDFg7hIfttaR+d
PZbLuUKdu+4Otby5nzREw4SBtN3FjYJPonfThPJnLZYU2QRWhzoQ8f03Clzu6w/h
lD50ewv1K5EtJo7yAZL5MRuweeL85hJXxirfU2yyD1GJCpvCKcHJ1oH+D2yqxnmt
TTTq+9pw9ErdPA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:04:42 2025 by rpki-client