Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: KKxq3cXcLxBnZqDImSC8Z1a6MIt53raldNsHBkco4sQ=
Subject key identifier: 15:EC:5E:5E:87:8D:30:A8:F8:04:D9:C9:A0:F9:10:72:AC:BA:8F:C9
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 0199FDD90A63668F0AC59678DF20D54A84C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 163B
Signing time: Sun 19 Oct 2025 19:01:23 +0000
Manifest this update: Sun 19 Oct 2025 19:01:23 +0000
Manifest next update: Mon 20 Oct 2025 19:01:23 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: 8ZSSvtLSCtmL0PksNYA068REM8JnxPzQNQ89X9PXmco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d9:0a:63:66:8f:0a:c5:96:78:df:20:d5:4a:84:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Oct 19 19:01:23 2025 GMT
Not After : Oct 20 19:01:23 2025 GMT
Subject: CN=15ec5e5e878d30a8f804d9c9a0f91072acba8fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:83:45:95:a3:8a:51:6d:f6:df:7a:4b:3a:de:
e9:29:13:68:2e:bc:cb:ac:84:e5:3f:48:84:86:a6:
77:5f:51:3f:ab:ab:70:3f:b9:d5:d2:ae:44:7e:7a:
32:48:8b:b4:05:5b:1c:11:86:85:f0:c7:95:80:24:
74:a9:bb:eb:cc:c1:6e:e8:19:b6:f0:bf:52:1a:30:
f7:93:e6:b7:15:6b:eb:80:a3:59:67:bc:f6:bf:ce:
f3:5a:30:60:ed:09:f7:fc:d9:2c:c7:f1:99:2e:ca:
73:1d:22:98:f0:f9:4d:17:da:97:64:c6:e0:68:c6:
b0:6a:a2:2b:ed:77:48:28:c4:f7:7e:60:28:0a:37:
4c:23:64:d2:0f:3f:29:df:fc:e5:59:14:49:b8:ce:
cd:19:f1:78:a9:4f:8f:e4:9d:c7:6e:f9:20:f8:07:
90:c5:9b:3f:f2:2a:22:e7:19:65:8a:f1:f7:94:68:
c2:7c:4d:4d:39:55:df:ae:cf:55:21:59:5f:95:92:
d1:a9:e6:be:5e:f7:37:60:3a:94:d4:31:7a:0b:ed:
2f:2e:7c:f9:93:16:c6:d5:dc:33:32:30:a2:b9:c1:
64:42:e9:78:f0:bd:cc:c0:00:6e:62:2a:cf:8f:94:
e9:4e:25:17:80:ec:23:65:50:91:c9:e0:f3:79:30:
09:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:EC:5E:5E:87:8D:30:A8:F8:04:D9:C9:A0:F9:10:72:AC:BA:8F:C9
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:86:4b:2d:2f:4c:9f:25:82:71:f2:da:1e:0d:c2:62:3f:99:
85:07:2d:ce:10:80:10:02:1c:ab:36:30:09:ec:09:ed:b5:6b:
58:8b:75:8b:6b:bf:80:4e:b7:12:fc:75:77:b5:b4:48:a4:cc:
05:2d:01:13:cc:63:ea:a9:e8:0e:89:21:05:43:a2:34:8b:db:
80:ab:be:ab:f6:be:71:30:23:52:cd:bc:44:90:d3:fb:15:bb:
b4:6a:fe:35:53:1a:61:7c:d7:03:10:ac:50:fb:19:73:40:6c:
64:73:49:08:cd:c9:22:ab:0f:ae:26:f0:37:3c:ba:9f:1b:82:
3c:5b:29:49:a5:dc:d3:44:2d:3a:68:a9:3d:3e:4d:71:b2:8a:
b9:90:30:02:3b:44:dc:c0:0f:46:c5:ed:98:b3:50:4d:b6:e3:
6f:e3:fe:d3:6a:17:a5:ce:a7:88:ee:5c:90:0d:1a:50:23:f2:
5d:ef:9d:ce:e6:85:94:77:76:a9:6a:85:a5:d8:09:5c:2d:b1:
70:27:b3:be:4c:8c:0e:b7:3d:ee:a3:5c:0b:5b:e0:b4:b0:e9:
a1:e5:89:15:26:c4:97:57:e2:69:55:05:4a:ff:b5:df:e1:c5:
0b:aa:e1:29:64:43:4b:44:c8:69:83:99:9c:0b:15:70:66:59:
05:af:53:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92QpjZo8KxZZ43yDVSoTEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwY2NkOTEzYTk5YmFmZDg5M2UwN2JhOTY4YTY3NDM0ZTNk
ZjU0MjAwHhcNMjUxMDE5MTkwMTIzWhcNMjUxMDIwMTkwMTIzWjAzMTEwLwYDVQQD
EygxNWVjNWU1ZTg3OGQzMGE4ZjgwNGQ5YzlhMGY5MTA3MmFjYmE4ZmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6YNFlaOKUW3233pLOt7pKRNoLrzL
rITlP0iEhqZ3X1E/q6twP7nV0q5EfnoySIu0BVscEYaF8MeVgCR0qbvrzMFu6Bm2
8L9SGjD3k+a3FWvrgKNZZ7z2v87zWjBg7Qn3/Nksx/GZLspzHSKY8PlNF9qXZMbg
aMawaqIr7XdIKMT3fmAoCjdMI2TSDz8p3/zlWRRJuM7NGfF4qU+P5J3Hbvkg+AeQ
xZs/8ioi5xllivH3lGjCfE1NOVXfrs9VIVlflZLRqea+Xvc3YDqU1DF6C+0vLnz5
kxbG1dwzMjCiucFkQul48L3MwABuYirPj5TpTiUXgOwjZVCRyeDzeTAJDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBXsXl6HjTCo+ATZyaD5EHKsuo/JMB8GA1UdIwQY
MBaAFJDM2ROpm6/Yk+B7qWimdDTj31QgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWIt
ZjZhNTEzZGUyZmVhLzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWItZjZhNTEzZGUyZmVh
LzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACIZLLS9M
nyWCcfLaHg3CYj+ZhQctzhCAEAIcqzYwCewJ7bVrWIt1i2u/gE63Evx1d7W0SKTM
BS0BE8xj6qnoDokhBUOiNIvbgKu+q/a+cTAjUs28RJDT+xW7tGr+NVMaYXzXAxCs
UPsZc0BsZHNJCM3JIqsPribwNzy6nxuCPFspSaXc00QtOmipPT5NcbKKuZAwAjtE
3MAPRsXtmLNQTbbjb+P+02oXpc6niO5ckA0aUCPyXe+dzuaFlHd2qWqFpdgJXC2x
cCezvkyMDrc97qNcC1vgtLDpoeWJFSbEl1fiaVUFSv+13+HFC6rhKWRDS0TIaYOZ
nAsVcGZZBa9TxQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 21:00:13 2025 by rpki-client