Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
File: _kFOohqRFtLN-PXALQhnOvpXaJM.mft (raw, json)
Hash identifier: j5SQlSiUTT+hXqI1BpCubga/g1PtvtQ3UROkWuzJaJw=
Subject key identifier: D4:70:27:4E:DD:81:F5:66:C6:AE:B7:09:6D:0B:8F:18:4B:CD:41:00
Authority key identifier: FE:41:4E:A2:1A:91:16:D2:CD:F8:F5:C0:2D:08:67:3A:FA:57:68:93
Certificate issuer: /CN=fe414ea21a9116d2cdf8f5c02d08673afa576893
Certificate serial: 0199FC5914126C7EEEE470CA14C791D677CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
Manifest number: 047D
Signing time: Sun 19 Oct 2025 12:02:00 +0000
Manifest this update: Sun 19 Oct 2025 12:02:00 +0000
Manifest next update: Mon 20 Oct 2025 12:02:00 +0000
Files and hashes: 1: 0MAgU7sTLhp2qbqkuMgBEoG1GaM.roa (hash: qBfT5pIrk1/WlfhHIXDzrsxZlkpu9JZ5SsEtvG7MW+c=)
2: _kFOohqRFtLN-PXALQhnOvpXaJM.crl (hash: MLVPaz1xyUGDlqMb2qYhKm1tvwDF8nGJF8v+nwC6CME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:59:14:12:6c:7e:ee:e4:70:ca:14:c7:91:d6:77:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe414ea21a9116d2cdf8f5c02d08673afa576893
Validity
Not Before: Oct 19 12:02:00 2025 GMT
Not After : Oct 20 12:02:00 2025 GMT
Subject: CN=d470274edd81f566c6aeb7096d0b8f184bcd4100
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:99:65:34:50:33:31:3e:2d:cf:28:45:93:da:
00:68:d8:7a:0e:32:c3:d2:8b:16:01:1c:ab:13:d8:
15:09:76:70:18:9d:52:ee:73:cb:58:63:25:31:44:
49:d4:59:31:73:c4:0b:2e:99:1f:96:10:ce:70:93:
fc:27:eb:ad:a6:e2:64:44:02:8f:66:e1:74:67:26:
6d:f7:78:30:b1:f0:3c:26:f4:99:95:bf:da:97:5a:
71:1a:8b:1b:f2:be:f6:d1:27:8c:49:87:27:35:8a:
e8:8e:66:fd:ff:44:3e:30:1c:13:5a:03:6d:f0:a7:
ad:55:d4:84:ff:ee:a3:6a:73:f3:f6:22:22:85:a4:
66:76:89:14:a8:11:a3:6b:65:67:61:3c:38:76:25:
19:12:e0:cb:5e:73:65:31:59:b8:4a:fb:36:14:f5:
36:3b:94:08:33:c5:7e:ab:fd:9e:87:9a:ee:c5:b7:
29:c8:58:39:4c:19:f6:b1:9c:c9:4f:a6:dc:0b:b2:
09:3c:f5:b2:35:6b:2e:f1:88:bf:b9:5d:c9:50:1b:
fb:35:5b:48:c0:bb:80:5b:1c:5f:7a:83:de:ff:95:
88:8b:b0:5a:87:6e:f0:58:03:08:03:e6:f3:fc:bf:
2f:c9:e9:f8:30:61:26:31:8e:b8:92:9a:e0:84:6f:
db:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:70:27:4E:DD:81:F5:66:C6:AE:B7:09:6D:0B:8F:18:4B:CD:41:00
X509v3 Authority Key Identifier:
keyid:FE:41:4E:A2:1A:91:16:D2:CD:F8:F5:C0:2D:08:67:3A:FA:57:68:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:58:e5:af:f0:bf:7e:fe:09:a7:2c:04:36:cf:8a:36:d6:9e:
07:5c:1d:de:97:a3:07:44:21:24:58:a7:e0:e8:cf:e6:7c:15:
5a:e6:41:96:93:93:e4:f8:a9:4e:77:f6:93:b1:c8:ca:3e:ee:
b9:cb:3d:31:87:e5:42:56:6f:29:9b:d8:cd:a9:62:2f:79:ef:
14:2e:33:2e:73:76:97:6b:cb:37:21:f5:cb:2a:89:09:d6:07:
39:25:62:bf:42:41:f2:a7:82:e6:9a:19:d6:7c:bf:1c:a0:25:
b8:ab:c8:6b:a7:01:6b:84:d8:38:98:db:e1:df:9f:59:4b:65:
4e:b1:fb:61:e9:f0:c0:be:4d:93:c0:73:28:5d:a3:c4:11:c6:
df:c6:a1:6b:83:ef:8e:8b:b4:55:23:77:f0:17:07:d3:52:b4:
b8:b6:fc:45:98:6b:30:4c:1d:5b:c2:f7:46:0c:77:d1:01:a4:
42:79:63:b4:71:f5:cb:8f:38:f5:bb:84:20:ce:3f:d4:49:7b:
99:94:de:50:c4:e7:e5:02:bc:d9:9e:3f:e3:f5:04:19:25:a6:
54:48:c0:5d:3c:59:f1:ab:ab:f6:30:12:a3:e3:16:67:db:d6:
c8:d3:92:33:77:dc:9c:44:43:30:8f:b5:cf:08:19:a8:c5:b5:
f2:f8:56:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WRQSbH7u5HDKFMeR1nfPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNDE0ZWEyMWE5MTE2ZDJjZGY4ZjVjMDJkMDg2NzNhZmE1
NzY4OTMwHhcNMjUxMDE5MTIwMjAwWhcNMjUxMDIwMTIwMjAwWjAzMTEwLwYDVQQD
EyhkNDcwMjc0ZWRkODFmNTY2YzZhZWI3MDk2ZDBiOGYxODRiY2Q0MTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5llNFAzMT4tzyhFk9oAaNh6DjLD
0osWARyrE9gVCXZwGJ1S7nPLWGMlMURJ1Fkxc8QLLpkflhDOcJP8J+utpuJkRAKP
ZuF0ZyZt93gwsfA8JvSZlb/al1pxGosb8r720SeMSYcnNYrojmb9/0Q+MBwTWgNt
8KetVdSE/+6janPz9iIihaRmdokUqBGja2VnYTw4diUZEuDLXnNlMVm4Svs2FPU2
O5QIM8V+q/2eh5ruxbcpyFg5TBn2sZzJT6bcC7IJPPWyNWsu8Yi/uV3JUBv7NVtI
wLuAWxxfeoPe/5WIi7Bah27wWAMIA+bz/L8vyen4MGEmMY64kprghG/bhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNRwJ07dgfVmxq63CW0LjxhLzUEAMB8GA1UdIwQY
MBaAFP5BTqIakRbSzfj1wC0IZzr6V2iTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2tGT29ocVJGdExOLVBYQUxRaG5PdnBYYUpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9lNzFkMjEtYTM2MC00NTc5LTgxYTAt
YmNjYTI2ZmM4OTQ1LzEvX2tGT29ocVJGdExOLVBYQUxRaG5PdnBYYUpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9lNzFkMjEtYTM2MC00NTc5LTgxYTAtYmNjYTI2ZmM4OTQ1
LzEvX2tGT29ocVJGdExOLVBYQUxRaG5PdnBYYUpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN1jlr/C/
fv4JpywENs+KNtaeB1wd3pejB0QhJFin4OjP5nwVWuZBlpOT5PipTnf2k7HIyj7u
ucs9MYflQlZvKZvYzaliL3nvFC4zLnN2l2vLNyH1yyqJCdYHOSViv0JB8qeC5poZ
1ny/HKAluKvIa6cBa4TYOJjb4d+fWUtlTrH7YenwwL5Nk8BzKF2jxBHG38aha4Pv
jou0VSN38BcH01K0uLb8RZhrMEwdW8L3Rgx30QGkQnljtHH1y4849buEIM4/1El7
mZTeUMTn5QK82Z4/4/UEGSWmVEjAXTxZ8aur9jASo+MWZ9vWyNOSM3fcnERDMI+1
zwgZqMW18vhWDQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:41:52 2025 by rpki-client