Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
File: KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft (raw, json)
Hash identifier: 6rhGQ+cty08jO96rJmYsv3Adi2OJfCjIhwrefTuSP20=
Subject key identifier: 7D:2D:42:85:D0:09:DF:AF:19:74:96:17:78:C5:6C:F4:64:A8:12:0B
Authority key identifier: 29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
Certificate issuer: /CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Certificate serial: 0199FD344796A4D86AAB64B3527A89E2456E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
Manifest number: 0D7D
Signing time: Sun 19 Oct 2025 16:01:25 +0000
Manifest this update: Sun 19 Oct 2025 16:01:25 +0000
Manifest next update: Mon 20 Oct 2025 16:01:25 +0000
Files and hashes: 1: 3Q4b3ZrB5hBNl0sc19tX6sYik8M.roa (hash: Y2d6NgWxe37Sh2Kw4xqcfrnYvSssw7Fp3dHdg6i9y18=)
2: KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl (hash: ofYNQfGBKxcfUTCfOrdKVNUDFN3P41Jzu0T6bYSPbB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:47:96:a4:d8:6a:ab:64:b3:52:7a:89:e2:45:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Validity
Not Before: Oct 19 16:01:25 2025 GMT
Not After : Oct 20 16:01:25 2025 GMT
Subject: CN=7d2d4285d009dfaf1974961778c56cf464a8120b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:73:51:2f:9a:be:21:89:2a:f4:7e:69:b7:fe:
e4:ef:3b:ec:51:4b:ec:fb:60:29:bc:26:8e:eb:e7:
45:4a:a2:07:03:2b:b0:9e:0b:91:dc:1b:2d:d4:4c:
37:29:e5:e0:7b:1d:6d:97:78:34:2d:8e:86:d4:14:
52:7f:c0:ed:84:e8:25:f7:f5:7a:24:b3:02:8f:a4:
67:c7:0d:5f:c7:b4:42:9e:43:dd:a7:77:88:93:b2:
a1:c2:ee:8a:a4:1e:14:52:36:33:59:b1:f4:91:6a:
e4:ad:04:77:7b:bb:55:d6:d7:4c:7d:6d:75:f2:f7:
1d:73:53:27:15:ef:19:c1:fe:ca:51:44:76:fa:46:
a7:72:d1:e6:1a:c3:42:d3:70:0b:22:fc:1b:bd:4d:
5a:ed:e1:9b:53:73:90:2d:45:2f:af:61:80:9e:7e:
8e:cf:84:f6:f4:58:2b:3d:49:3e:a2:03:80:01:67:
8f:69:54:12:ab:b9:2f:5d:37:2a:99:65:70:89:70:
c9:02:43:2c:bd:38:1c:f9:1a:53:34:23:de:25:00:
b3:a5:44:cf:a3:d8:71:eb:c4:1b:a8:24:80:aa:03:
e0:80:61:bf:d3:15:60:fa:74:1d:f8:14:93:29:33:
33:35:0f:4a:85:3c:70:76:59:02:73:a9:7a:b2:46:
a2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2D:42:85:D0:09:DF:AF:19:74:96:17:78:C5:6C:F4:64:A8:12:0B
X509v3 Authority Key Identifier:
keyid:29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:d1:57:de:b7:a6:53:95:f5:76:ae:5b:d3:a6:7a:5f:86:46:
be:40:9a:89:4e:78:5a:58:5c:3a:04:eb:2f:33:b2:71:01:6c:
a4:5a:65:26:34:b4:f6:c1:12:b5:eb:5f:8a:28:c1:2d:3a:f9:
56:01:b3:35:54:22:ce:54:23:8c:cd:c4:93:78:77:0c:b0:65:
f4:6d:51:28:cd:a1:e9:8e:f0:98:71:2e:fd:63:29:81:05:7e:
66:d1:c5:50:3c:9b:8f:53:85:40:17:d7:3f:6a:3e:6d:86:ae:
05:58:9f:67:c8:8d:8f:07:82:74:37:9f:27:38:6d:67:04:7a:
c5:34:a7:89:f5:89:37:9e:9c:67:6a:f3:42:de:47:1f:41:f0:
72:c4:50:85:21:cf:a8:69:7a:64:c1:70:11:22:28:57:b7:8e:
fd:45:bc:e7:35:1d:cb:eb:21:8a:71:2f:92:25:88:12:65:31:
be:14:8b:fa:13:a4:e7:31:ba:35:c6:de:d8:f2:6a:74:79:20:
1b:2e:5d:87:77:87:33:fa:d8:ab:34:62:b6:93:d3:ec:c6:0a:
46:99:1d:67:9f:67:8e:8d:94:d8:52:57:76:c4:18:cf:c8:7d:
8d:88:18:aa:80:b0:39:a5:77:c6:31:3b:5f:4e:4b:38:b5:d4:
18:3e:64:27
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NEeWpNhqq2SzUnqJ4kVuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NzE5NGY0YjUyYjlmZjQzM2YyYmYwZDE2YjU4YzExYzdj
ZjExMzEwHhcNMjUxMDE5MTYwMTI1WhcNMjUxMDIwMTYwMTI1WjAzMTEwLwYDVQQD
Eyg3ZDJkNDI4NWQwMDlkZmFmMTk3NDk2MTc3OGM1NmNmNDY0YTgxMjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3NRL5q+IYkq9H5pt/7k7zvsUUvs
+2ApvCaO6+dFSqIHAyuwnguR3Bst1Ew3KeXgex1tl3g0LY6G1BRSf8DthOgl9/V6
JLMCj6Rnxw1fx7RCnkPdp3eIk7Khwu6KpB4UUjYzWbH0kWrkrQR3e7tV1tdMfW11
8vcdc1MnFe8Zwf7KUUR2+kanctHmGsNC03ALIvwbvU1a7eGbU3OQLUUvr2GAnn6O
z4T29FgrPUk+ogOAAWePaVQSq7kvXTcqmWVwiXDJAkMsvTgc+RpTNCPeJQCzpUTP
o9hx68QbqCSAqgPggGG/0xVg+nQd+BSTKTMzNQ9KhTxwdlkCc6l6skaiWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH0tQoXQCd+vGXSWF3jFbPRkqBILMB8GA1UdIwQY
MBaAFClxlPS1K5/0M/K/DRa1jBHHzxExMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1hHVTlMVXJuX1F6OHI4TkZyV01FY2ZQRVRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS84MGI0YzAtMDZjYi00NDI0LTlkZDUt
NWE5ODg5MzFlYTMzLzEvS1hHVTlMVXJuX1F6OHI4TkZyV01FY2ZQRVRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS84MGI0YzAtMDZjYi00NDI0LTlkZDUtNWE5ODg5MzFlYTMz
LzEvS1hHVTlMVXJuX1F6OHI4TkZyV01FY2ZQRVRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHtFX3rem
U5X1dq5b06Z6X4ZGvkCaiU54WlhcOgTrLzOycQFspFplJjS09sEStetfiijBLTr5
VgGzNVQizlQjjM3Ek3h3DLBl9G1RKM2h6Y7wmHEu/WMpgQV+ZtHFUDybj1OFQBfX
P2o+bYauBVifZ8iNjweCdDefJzhtZwR6xTSnifWJN56cZ2rzQt5HH0HwcsRQhSHP
qGl6ZMFwESIoV7eO/UW85zUdy+shinEvkiWIEmUxvhSL+hOk5zG6Ncbe2PJqdHkg
Gy5dh3eHM/rYqzRitpPT7MYKRpkdZ59njo2U2FJXdsQYz8h9jYgYqoCwOaV3xjE7
X05LOLXUGD5kJw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:29:52 2025 by rpki-client