Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json)
Hash identifier: ZdBL2IpzdMuD/QMctPauHcgWrMnpJhTsavHaOelY28o=
Subject key identifier: 61:B7:00:F6:E9:88:67:CB:B5:6A:B8:2B:DB:61:0C:2C:1D:9F:07:33
Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292
Certificate serial: 0199FB458EF1499F790665EA358ADD6108B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
Manifest number: 105F
Signing time: Sun 19 Oct 2025 07:01:03 +0000
Manifest this update: Sun 19 Oct 2025 07:01:03 +0000
Manifest next update: Mon 20 Oct 2025 07:01:03 +0000
Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: JnUtym3LXzFKpml6YxHgCRDMGPP7CAyvy0M5cbUTf5A=)
2: jp-8lbUOvN6sUPZsTL-dh7MOVR8.roa (hash: /kMpoM5rzLA4Q5DdnfjuYEV0in2H+0XYtN+u4LENV/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:45:8e:f1:49:9f:79:06:65:ea:35:8a:dd:61:08:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292
Validity
Not Before: Oct 19 07:01:03 2025 GMT
Not After : Oct 20 07:01:03 2025 GMT
Subject: CN=61b700f6e98867cbb56ab82bdb610c2c1d9f0733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3c:f3:d4:dc:e6:2f:e7:22:29:0b:51:eb:15:
c7:af:db:2c:26:f7:d5:93:3e:bc:10:6b:4c:07:af:
77:46:f0:2c:e1:0d:07:da:69:88:59:23:17:d2:3c:
b4:58:66:17:d3:53:24:f3:9f:dd:fa:8b:11:c8:a4:
a8:bf:e5:0e:e9:3e:c2:bd:69:d6:7a:cd:cb:d7:1a:
90:51:cb:90:95:9d:24:c9:de:37:5c:24:08:b5:c1:
c9:ae:10:e8:c5:86:ca:1c:65:28:af:df:ba:dc:ae:
26:02:86:72:70:97:35:1e:54:d7:60:36:60:63:e8:
de:58:85:56:ee:28:b6:0c:f8:44:3d:c9:a7:d8:55:
2b:b5:85:4e:65:15:7b:f5:5b:12:60:84:5f:30:ae:
e7:73:d5:2f:7a:dd:d1:9d:76:0e:56:17:9a:cc:71:
c0:46:3f:28:2f:51:46:da:7b:04:ee:df:22:65:e3:
66:8d:ab:34:6e:b3:dd:fe:77:c4:f5:a9:19:e6:f1:
41:ca:24:dc:31:67:fc:a1:d4:d0:93:f2:64:73:90:
43:75:d9:8e:9a:d3:eb:4c:47:19:0e:3e:b1:8e:d0:
6b:cf:f0:ff:6b:3f:7a:5a:36:aa:4d:5f:48:4c:c1:
b1:bb:cb:67:ca:25:2d:5e:57:61:a8:fd:f0:8c:ce:
e6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B7:00:F6:E9:88:67:CB:B5:6A:B8:2B:DB:61:0C:2C:1D:9F:07:33
X509v3 Authority Key Identifier:
keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:41:d1:17:2c:7e:db:a5:86:c8:53:67:58:f9:4a:2f:69:9f:
3b:25:12:fc:a1:62:a2:9c:b5:f1:4e:b0:f2:f8:6f:45:f0:bd:
28:72:f7:7e:78:84:29:56:8d:94:94:a1:2d:a6:bd:01:1e:17:
24:4c:61:43:a0:50:64:ad:95:20:db:4b:88:01:2c:81:bf:ad:
e6:80:db:84:3e:39:e6:37:32:43:76:37:be:1a:31:23:77:a6:
3d:e8:9d:d9:eb:6a:1c:15:e0:8f:00:47:51:1f:9d:cd:22:43:
d3:60:db:80:3d:bf:1e:12:16:7e:6b:0a:1e:ae:24:8a:75:82:
99:80:2e:5a:83:55:45:bf:54:17:c1:c2:4e:e2:81:ea:88:62:
3a:d7:c5:e1:5d:1b:3b:ac:20:09:81:65:de:f1:41:4f:97:f7:
71:22:85:b1:ad:65:02:d8:25:01:a3:af:9d:bc:08:56:e7:ab:
9a:6b:0c:e0:4c:34:1a:cc:8c:87:12:a1:84:46:e3:63:c1:d4:
da:a8:42:b4:e3:aa:c7:e5:4c:f3:94:84:e1:67:c2:70:c3:10:
f8:87:69:54:1b:8f:01:78:4e:f5:51:ed:19:98:62:86:45:69:
08:41:62:26:c5:24:3d:9b:c1:c1:46:0d:e2:2d:c7:f9:37:7f:
bc:b4:a7:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn7RY7xSZ95BmXqNYrdYQizMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YmViZDQ2NTg2MTg0NzNlZDRjODM3NjdjNTFkZThlMjMz
YzMyOTIwHhcNMjUxMDE5MDcwMTAzWhcNMjUxMDIwMDcwMTAzWjAzMTEwLwYDVQQD
Eyg2MWI3MDBmNmU5ODg2N2NiYjU2YWI4MmJkYjYxMGMyYzFkOWYwNzMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTzz1NzmL+ciKQtR6xXHr9ssJvfV
kz68EGtMB693RvAs4Q0H2mmIWSMX0jy0WGYX01Mk85/d+osRyKSov+UO6T7CvWnW
es3L1xqQUcuQlZ0kyd43XCQItcHJrhDoxYbKHGUor9+63K4mAoZycJc1HlTXYDZg
Y+jeWIVW7ii2DPhEPcmn2FUrtYVOZRV79VsSYIRfMK7nc9Uvet3RnXYOVheazHHA
Rj8oL1FG2nsE7t8iZeNmjas0brPd/nfE9akZ5vFByiTcMWf8odTQk/Jkc5BDddmO
mtPrTEcZDj6xjtBrz/D/az96WjaqTV9ITMGxu8tnyiUtXldhqP3wjM7mRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGG3APbpiGfLtWq4K9thDCwdnwczMB8GA1UdIwQY
MBaAFCi+vUZYYYRz7UyDdnxR3o4jPDKSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9hYTk3NWMtYjliNS00NjUxLWJjNWIt
YmE3OTU2YjBmMmRkLzEvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy9hYTk3NWMtYjliNS00NjUxLWJjNWItYmE3OTU2YjBmMmRk
LzEvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmEHRFyx+
26WGyFNnWPlKL2mfOyUS/KFiopy18U6w8vhvRfC9KHL3fniEKVaNlJShLaa9AR4X
JExhQ6BQZK2VINtLiAEsgb+t5oDbhD455jcyQ3Y3vhoxI3emPeid2etqHBXgjwBH
UR+dzSJD02DbgD2/HhIWfmsKHq4kinWCmYAuWoNVRb9UF8HCTuKB6ohiOtfF4V0b
O6wgCYFl3vFBT5f3cSKFsa1lAtglAaOvnbwIVuermmsM4Ew0GsyMhxKhhEbjY8HU
2qhCtOOqx+VM85SE4WfCcMMQ+IdpVBuPAXhO9VHtGZhihkVpCEFiJsUkPZvBwUYN
4i3H+Td/vLSnkg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 15:26:07 2025 by rpki-client