Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft
File: kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft (raw, json)
Hash identifier: sH+nuWMsO6JOuo4BkY0v35OVxu6k+rxyjb4C4sF8/cA=
Subject key identifier: BC:73:B5:71:EB:01:25:B8:5F:E1:B7:32:D0:19:AF:F1:7C:A3:05:A2
Authority key identifier: 90:36:10:CF:2A:54:64:3A:0A:1B:6B:15:1F:A6:6E:32:50:04:CB:4A
Certificate issuer: /CN=903610cf2a54643a0a1b6b151fa66e325004cb4a
Certificate serial: 0199FE46A01021748EA999BA4545EF6771AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft
Manifest number: 060D
Signing time: Sun 19 Oct 2025 21:01:05 +0000
Manifest this update: Sun 19 Oct 2025 21:01:05 +0000
Manifest next update: Mon 20 Oct 2025 21:01:05 +0000
Files and hashes: 1: kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl (hash: PGcJYYaNvhWXWW/ysZKyd6AQWlqSdjPwHnM6kfD4XTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:a0:10:21:74:8e:a9:99:ba:45:45:ef:67:71:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=903610cf2a54643a0a1b6b151fa66e325004cb4a
Validity
Not Before: Oct 19 21:01:05 2025 GMT
Not After : Oct 20 21:01:05 2025 GMT
Subject: CN=bc73b571eb0125b85fe1b732d019aff17ca305a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:be:7f:14:11:66:34:6b:2c:a8:03:69:e0:12:
fd:69:29:c0:70:93:66:7c:ec:e6:55:e1:59:52:c5:
3f:3b:a7:3c:83:75:c6:67:12:82:ed:ab:04:5a:57:
7a:ed:f9:86:4e:67:58:67:0b:7e:77:03:32:b8:8e:
73:93:6a:35:4d:25:9d:c3:27:90:c2:d2:bd:70:fb:
25:f0:28:77:40:3f:24:dd:da:93:f0:1b:34:6b:89:
4c:06:68:7c:e3:cf:2b:5d:73:47:50:e5:94:80:34:
af:ec:64:73:a7:f2:99:68:27:71:f0:62:b4:bb:55:
25:a2:fc:5e:08:50:b8:75:26:40:03:9d:a4:dd:f4:
89:ee:8e:39:fb:74:14:65:f0:3d:35:f5:71:c3:fa:
b8:cb:b0:5f:32:eb:4e:96:38:e1:67:39:6d:56:f0:
a2:08:de:b9:20:1b:40:c7:34:04:db:34:4b:8d:14:
4c:96:48:92:8a:e3:57:44:f9:24:3c:a5:77:4b:fc:
a7:f3:f5:56:2a:7a:c2:75:f9:30:f3:2c:76:3f:cf:
d7:1b:4a:5b:82:02:e8:f9:1a:bf:d9:68:f3:aa:6d:
23:75:8a:37:b2:6e:55:17:bc:e6:96:93:1a:21:ff:
b0:eb:90:f5:af:df:85:13:3f:a9:5a:82:01:4f:94:
cb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:73:B5:71:EB:01:25:B8:5F:E1:B7:32:D0:19:AF:F1:7C:A3:05:A2
X509v3 Authority Key Identifier:
keyid:90:36:10:CF:2A:54:64:3A:0A:1B:6B:15:1F:A6:6E:32:50:04:CB:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kDYQzypUZDoKG2sVH6ZuMlAEy0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b4e1bb-346a-44b3-a0af-bc53f388fafa/1/kDYQzypUZDoKG2sVH6ZuMlAEy0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:2f:02:f8:f4:12:56:56:51:51:c1:8d:d0:72:2d:7b:9d:82:
9f:7c:8a:d9:72:8b:53:da:3d:9c:dd:6c:99:f0:68:4e:8c:26:
6e:3c:8a:06:1d:bf:15:bd:92:28:b2:f1:1d:bc:20:21:20:d4:
58:ce:a7:d0:6d:1f:27:c1:5a:5c:77:5b:7f:8c:f9:d0:fb:d6:
cd:12:c7:b2:9d:df:5b:26:da:43:62:12:23:ee:f6:bb:98:6b:
71:32:c2:89:d4:13:97:6c:56:00:3b:05:db:23:1f:73:b2:e7:
c6:7b:25:90:dc:04:49:4b:b0:b0:97:46:a3:7e:c7:0a:1a:7d:
51:22:eb:72:d4:a3:72:fe:a6:1e:f0:eb:0b:e2:e1:5c:d7:ce:
c6:4d:11:34:e5:e1:76:5f:13:e8:0a:27:05:e6:f3:d3:d6:a7:
63:8f:8c:7b:10:93:58:3b:09:d2:4c:34:d4:7d:89:e3:a9:78:
6f:cb:54:4f:89:84:7a:14:f2:55:51:d6:bc:84:65:12:cd:9e:
2c:37:ac:66:5f:26:eb:9b:76:84:d6:0a:ae:fd:67:1f:d6:b0:
00:57:fc:e5:45:ae:4a:09:87:bf:04:3c:2e:bc:e0:fc:30:b2:
13:77:7c:bf:fc:8d:8e:58:23:81:31:84:a4:67:1e:5f:f1:02:
9f:a3:c6:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn+RqAQIXSOqZm6RUXvZ3GsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwMzYxMGNmMmE1NDY0M2EwYTFiNmIxNTFmYTY2ZTMyNTAw
NGNiNGEwHhcNMjUxMDE5MjEwMTA1WhcNMjUxMDIwMjEwMTA1WjAzMTEwLwYDVQQD
EyhiYzczYjU3MWViMDEyNWI4NWZlMWI3MzJkMDE5YWZmMTdjYTMwNWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4r5/FBFmNGssqANp4BL9aSnAcJNm
fOzmVeFZUsU/O6c8g3XGZxKC7asEWld67fmGTmdYZwt+dwMyuI5zk2o1TSWdwyeQ
wtK9cPsl8Ch3QD8k3dqT8Bs0a4lMBmh8488rXXNHUOWUgDSv7GRzp/KZaCdx8GK0
u1UlovxeCFC4dSZAA52k3fSJ7o45+3QUZfA9NfVxw/q4y7BfMutOljjhZzltVvCi
CN65IBtAxzQE2zRLjRRMlkiSiuNXRPkkPKV3S/yn8/VWKnrCdfkw8yx2P8/XG0pb
ggLo+Rq/2Wjzqm0jdYo3sm5VF7zmlpMaIf+w65D1r9+FEz+pWoIBT5TLBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLxztXHrASW4X+G3MtAZr/F8owWiMB8GA1UdIwQY
MBaAFJA2EM8qVGQ6ChtrFR+mbjJQBMtKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0RZUXp5cFVaRG9LRzJzVkg2WnVNbEFFeTBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iNGUxYmItMzQ2YS00NGIzLWEwYWYt
YmM1M2YzODhmYWZhLzEva0RZUXp5cFVaRG9LRzJzVkg2WnVNbEFFeTBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9iNGUxYmItMzQ2YS00NGIzLWEwYWYtYmM1M2YzODhmYWZh
LzEva0RZUXp5cFVaRG9LRzJzVkg2WnVNbEFFeTBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFC8C+PQS
VlZRUcGN0HIte52Cn3yK2XKLU9o9nN1smfBoTowmbjyKBh2/Fb2SKLLxHbwgISDU
WM6n0G0fJ8FaXHdbf4z50PvWzRLHsp3fWybaQ2ISI+72u5hrcTLCidQTl2xWADsF
2yMfc7LnxnslkNwESUuwsJdGo37HChp9USLrctSjcv6mHvDrC+LhXNfOxk0RNOXh
dl8T6AonBebz09anY4+MexCTWDsJ0kw01H2J46l4b8tUT4mEehTyVVHWvIRlEs2e
LDesZl8m65t2hNYKrv1nH9awAFf85UWuSgmHvwQ8Lrzg/DCyE3d8v/yNjlgjgTGE
pGceX/ECn6PGMA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 01:19:36 2025 by rpki-client