Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
File: kCGOgBpTJZXptxxkNoTqBflr9fM.mft (raw, json)
Hash identifier: ZTneCmZhSlE7wXFvEtfFLjSKQaOXmoCkJVMwrYARIqM=
Subject key identifier: 44:F1:9F:54:CB:1A:B5:CB:92:FF:10:01:3C:01:F8:40:D8:10:49:A0
Authority key identifier: 90:21:8E:80:1A:53:25:95:E9:B7:1C:64:36:84:EA:05:F9:6B:F5:F3
Certificate issuer: /CN=90218e801a532595e9b71c643684ea05f96bf5f3
Certificate serial: 0199FD6AECCAF4C589DF1AAE987949547E17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
Manifest number: 0447
Signing time: Sun 19 Oct 2025 17:01:06 +0000
Manifest this update: Sun 19 Oct 2025 17:01:06 +0000
Manifest next update: Mon 20 Oct 2025 17:01:06 +0000
Files and hashes: 1: kCGOgBpTJZXptxxkNoTqBflr9fM.crl (hash: U4OFV68F3jQRLBM8HembFx2PsLszQ1ffrQregKpMuio=)
2: wO4tKRWBwJAF_Ti9XP-8yjRZuUU.roa (hash: G7Rk/RipLXF/QPRugyDtoGfESmr50WO1Zig00oPYW14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:6a:ec:ca:f4:c5:89:df:1a:ae:98:79:49:54:7e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90218e801a532595e9b71c643684ea05f96bf5f3
Validity
Not Before: Oct 19 17:01:06 2025 GMT
Not After : Oct 20 17:01:06 2025 GMT
Subject: CN=44f19f54cb1ab5cb92ff10013c01f840d81049a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:05:2c:5d:f8:fa:e4:9d:aa:5d:df:2f:88:36:
92:af:5a:f7:8c:f3:80:f7:a0:8a:64:24:a5:bd:23:
af:79:00:8d:78:fc:2b:63:47:c3:2f:88:a8:50:70:
d1:47:b5:00:f9:8a:cd:0f:e2:ca:a8:3c:15:83:a1:
10:6b:2e:fe:aa:3f:9b:34:f5:18:bb:fd:c6:ea:fc:
93:62:65:7c:8e:d5:b6:a1:5a:d4:32:47:75:a2:f9:
88:45:52:a4:36:a4:b9:4f:c5:3c:34:96:f2:5d:16:
f4:a1:49:55:8c:92:8e:82:2d:9f:bb:6c:b7:1d:79:
23:f9:9b:82:aa:9f:f7:dd:c4:f9:08:78:54:fe:17:
af:7f:c6:81:3b:32:fd:53:7d:f7:af:43:f7:06:dc:
cb:c0:45:9b:fc:f4:7e:55:bc:43:68:14:46:f9:56:
cb:36:45:3d:d0:04:83:1e:d1:fe:b0:65:87:24:0a:
e3:5b:4e:32:2d:15:62:ec:92:1a:71:ab:b7:c5:e2:
07:df:c9:08:27:b8:d8:b0:02:ae:4e:d6:3b:4d:f1:
4d:0b:f3:ca:e8:25:b2:87:4b:c3:26:ac:fb:c3:d3:
59:01:c8:f6:e3:89:c1:f0:5b:fb:0d:ae:9f:9b:15:
cb:5a:cc:f9:52:c4:ed:a0:af:95:9e:f3:12:f5:3f:
9e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F1:9F:54:CB:1A:B5:CB:92:FF:10:01:3C:01:F8:40:D8:10:49:A0
X509v3 Authority Key Identifier:
keyid:90:21:8E:80:1A:53:25:95:E9:B7:1C:64:36:84:EA:05:F9:6B:F5:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:09:5b:d4:09:f1:94:1c:aa:1e:6a:ce:ef:bb:8a:a5:9a:97:
6e:6f:48:60:52:3b:d3:a8:4a:c1:14:a6:99:c2:a1:2b:91:a4:
d7:89:e3:ca:36:7b:41:d6:27:60:cf:71:5b:48:9d:43:e6:a5:
1e:5e:30:8a:c4:62:a2:b9:34:6a:63:60:38:8e:79:1b:06:a8:
31:5c:c8:b2:8b:c4:b7:bf:4b:3e:36:8c:be:76:e9:3a:7f:ad:
c5:29:8d:d5:7d:c4:cd:2d:da:62:25:95:5d:05:8f:f4:90:22:
25:2d:1f:c0:10:bc:b8:ff:80:e1:74:22:b0:e2:d4:c2:9b:2c:
ef:49:06:cc:c7:b2:af:de:cc:31:df:11:d4:d6:b6:cd:ae:f4:
6f:07:cd:9b:66:24:9c:d4:f2:32:f1:2f:22:bf:d6:fc:2e:a5:
34:66:d3:b7:f6:03:78:30:55:28:9f:80:c9:86:ba:48:2b:17:
32:cb:d1:92:a6:56:75:8e:42:d2:6c:60:82:72:22:b9:52:e2:
1f:c1:53:2b:72:57:2d:33:d4:75:8f:09:3e:31:7a:1b:43:52:
5a:a6:e2:44:be:01:97:08:5f:fb:f3:97:6c:ee:5b:0f:90:2c:
b2:ac:e7:d8:6c:71:e5:bb:73:22:b8:08:87:14:ba:37:22:46:
a0:f8:cf:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9auzK9MWJ3xqumHlJVH4XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwMjE4ZTgwMWE1MzI1OTVlOWI3MWM2NDM2ODRlYTA1Zjk2
YmY1ZjMwHhcNMjUxMDE5MTcwMTA2WhcNMjUxMDIwMTcwMTA2WjAzMTEwLwYDVQQD
Eyg0NGYxOWY1NGNiMWFiNWNiOTJmZjEwMDEzYzAxZjg0MGQ4MTA0OWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwUsXfj65J2qXd8viDaSr1r3jPOA
96CKZCSlvSOveQCNePwrY0fDL4ioUHDRR7UA+YrND+LKqDwVg6EQay7+qj+bNPUY
u/3G6vyTYmV8jtW2oVrUMkd1ovmIRVKkNqS5T8U8NJbyXRb0oUlVjJKOgi2fu2y3
HXkj+ZuCqp/33cT5CHhU/hevf8aBOzL9U333r0P3BtzLwEWb/PR+VbxDaBRG+VbL
NkU90ASDHtH+sGWHJArjW04yLRVi7JIacau3xeIH38kIJ7jYsAKuTtY7TfFNC/PK
6CWyh0vDJqz7w9NZAcj244nB8Fv7Da6fmxXLWsz5UsTtoK+VnvMS9T+ewQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFETxn1TLGrXLkv8QATwB+EDYEEmgMB8GA1UdIwQY
MBaAFJAhjoAaUyWV6bccZDaE6gX5a/XzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0NHT2dCcFRKWlhwdHh4a05vVHFCZmxyOWZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xYjY2MjQtODQ0MS00ZDAxLTk2ZTMt
NjAxODEyZWY0MjhiLzEva0NHT2dCcFRKWlhwdHh4a05vVHFCZmxyOWZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi8xYjY2MjQtODQ0MS00ZDAxLTk2ZTMtNjAxODEyZWY0Mjhi
LzEva0NHT2dCcFRKWlhwdHh4a05vVHFCZmxyOWZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxQlb1Anx
lByqHmrO77uKpZqXbm9IYFI706hKwRSmmcKhK5Gk14njyjZ7QdYnYM9xW0idQ+al
Hl4wisRiork0amNgOI55GwaoMVzIsovEt79LPjaMvnbpOn+txSmN1X3EzS3aYiWV
XQWP9JAiJS0fwBC8uP+A4XQisOLUwpss70kGzMeyr97MMd8R1Na2za70bwfNm2Yk
nNTyMvEvIr/W/C6lNGbTt/YDeDBVKJ+AyYa6SCsXMsvRkqZWdY5C0mxggnIiuVLi
H8FTK3JXLTPUdY8JPjF6G0NSWqbiRL4Blwhf+/OXbO5bD5Assqzn2Gxx5btzIrgI
hxS6NyJGoPjPYQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 00:03:41 2025 by rpki-client