Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
File: CKkhe9gwYnyz5lfAuQY8giNN28s.mft (raw, json)
Hash identifier: +SAYsEtmHq35IAxoban38/ynX8s97XOAJ8f81eegGxE=
Subject key identifier: 84:B1:14:2F:EB:4A:FE:15:BC:20:9A:CD:A2:B3:76:A8:B0:3C:AF:96
Authority key identifier: 08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
Certificate issuer: /CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Certificate serial: 0199FC5826324B2871B3D9F176CD87729473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
Manifest number: 16E5
Signing time: Sun 19 Oct 2025 12:00:59 +0000
Manifest this update: Sun 19 Oct 2025 12:00:59 +0000
Manifest next update: Mon 20 Oct 2025 12:00:59 +0000
Files and hashes: 1: 34veN2ucTJBbi388PrmLekhLRzM.roa (hash: zPkkR8nXQL9mfEVd+D/kn8bIVDt7EDLAoyKRPC1BVEk=)
2: CKkhe9gwYnyz5lfAuQY8giNN28s.crl (hash: UcN5+T1QfINwu6QCGfB6zltVfPJ7SM2ZL9uPXJK/UjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:26:32:4b:28:71:b3:d9:f1:76:cd:87:72:94:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Validity
Not Before: Oct 19 12:00:59 2025 GMT
Not After : Oct 20 12:00:59 2025 GMT
Subject: CN=84b1142feb4afe15bc209acda2b376a8b03caf96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:66:4b:b8:e9:41:ab:05:f3:1d:62:8e:35:b5:
d7:64:11:08:fb:e3:db:e3:c6:a5:00:df:cb:a7:ef:
78:13:b7:46:f1:aa:38:16:d2:4d:b6:c8:63:56:b5:
69:4b:d5:76:51:cb:a7:d6:75:ac:d1:44:83:fd:e8:
a7:11:6d:6d:31:55:95:2e:32:bf:46:f5:e8:d2:60:
95:61:b5:91:88:01:8b:7b:cd:1a:0a:2e:c0:20:3f:
e3:0a:6c:a9:08:d7:33:13:7f:76:50:8e:86:ef:d2:
9f:39:1b:30:1a:78:09:d6:36:fc:f2:40:7b:8d:5b:
d9:91:ba:48:10:61:e5:04:35:11:5b:74:b3:89:3e:
d1:c8:b4:6f:50:f2:d3:b4:32:5f:bf:52:64:cb:8c:
fe:34:b6:ab:81:72:19:3c:3f:a3:ef:b6:fb:73:33:
9e:52:14:a7:55:3c:23:f7:55:4d:d6:29:b7:9e:27:
70:63:93:80:a1:0e:33:2d:06:bc:e2:ac:12:5b:9e:
ca:75:85:e4:41:7a:6b:f7:98:7b:07:c0:21:e5:ee:
00:21:93:3a:fb:0b:cd:e8:51:db:6d:17:e9:dc:da:
54:13:d6:e6:0f:00:08:64:35:b9:f3:e7:87:27:a6:
20:7b:ef:e1:d6:72:1b:74:85:3d:0c:8b:fb:f6:52:
8d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:B1:14:2F:EB:4A:FE:15:BC:20:9A:CD:A2:B3:76:A8:B0:3C:AF:96
X509v3 Authority Key Identifier:
keyid:08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:0b:72:10:a4:e0:7e:f8:0e:d9:1d:e6:d2:47:e7:2a:b3:6e:
22:fd:05:6f:b8:9d:45:23:97:c9:56:07:2e:fd:cb:52:2f:86:
30:8a:ef:79:7d:b0:d1:b5:59:fc:90:42:ad:02:21:1e:bd:92:
85:e3:90:cc:5a:e9:d2:a0:18:29:6b:e7:c3:cb:36:a3:f4:fc:
88:3d:ba:d3:bc:9c:59:dc:49:28:d9:2f:83:21:a7:41:79:20:
c5:58:2c:19:7d:f0:77:4b:e6:e1:f8:a5:8c:d4:63:ac:de:25:
d7:0c:19:9f:38:8d:a7:ee:27:1b:43:8d:03:b1:4b:29:58:b7:
b7:c6:b6:f3:d7:99:df:af:d5:ad:29:d2:de:18:f7:d4:00:d2:
2b:1f:73:73:04:7d:2a:0f:05:46:66:44:a0:6f:03:d1:ec:68:
8a:7b:87:32:2e:98:b8:54:79:1c:ad:c5:ce:2c:8c:cb:83:dd:
eb:f1:cc:ad:3c:01:d0:66:a8:67:a2:80:87:03:d2:29:85:87:
e8:28:77:cf:37:b2:15:59:54:d8:01:92:2b:3b:44:15:18:18:
6b:cd:58:e7:53:f8:04:cb:13:39:cc:a2:07:89:7a:06:48:a4:
f4:f3:88:a7:a9:a5:fb:7f:83:ac:52:c4:84:4f:db:8d:83:d6:
08:aa:2f:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WCYySyhxs9nxds2HcpRzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YTkyMTdiZDgzMDYyN2NiM2U2NTdjMGI5MDYzYzgyMjM0
ZGRiY2IwHhcNMjUxMDE5MTIwMDU5WhcNMjUxMDIwMTIwMDU5WjAzMTEwLwYDVQQD
Eyg4NGIxMTQyZmViNGFmZTE1YmMyMDlhY2RhMmIzNzZhOGIwM2NhZjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8GZLuOlBqwXzHWKONbXXZBEI++Pb
48alAN/Lp+94E7dG8ao4FtJNtshjVrVpS9V2Ucun1nWs0USD/einEW1tMVWVLjK/
RvXo0mCVYbWRiAGLe80aCi7AID/jCmypCNczE392UI6G79KfORswGngJ1jb88kB7
jVvZkbpIEGHlBDURW3SziT7RyLRvUPLTtDJfv1Jky4z+NLargXIZPD+j77b7czOe
UhSnVTwj91VN1im3nidwY5OAoQ4zLQa84qwSW57KdYXkQXpr95h7B8Ah5e4AIZM6
+wvN6FHbbRfp3NpUE9bmDwAIZDW58+eHJ6Yge+/h1nIbdIU9DIv79lKNmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFISxFC/rSv4VvCCazaKzdqiwPK+WMB8GA1UdIwQY
MBaAFAipIXvYMGJ8s+ZXwLkGPIIjTdvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC83ZGRlNDQtZDdiNS00OGRhLWJjNjgt
MmM1YmFjMzVjMzQ0LzEvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC83ZGRlNDQtZDdiNS00OGRhLWJjNjgtMmM1YmFjMzVjMzQ0
LzEvQ0traGU5Z3dZbnl6NWxmQXVRWThnaU5OMjhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvwtyEKTg
fvgO2R3m0kfnKrNuIv0Fb7idRSOXyVYHLv3LUi+GMIrveX2w0bVZ/JBCrQIhHr2S
heOQzFrp0qAYKWvnw8s2o/T8iD2607ycWdxJKNkvgyGnQXkgxVgsGX3wd0vm4fil
jNRjrN4l1wwZnziNp+4nG0ONA7FLKVi3t8a289eZ36/VrSnS3hj31ADSKx9zcwR9
Kg8FRmZEoG8D0exoinuHMi6YuFR5HK3FziyMy4Pd6/HMrTwB0GaoZ6KAhwPSKYWH
6Ch3zzeyFVlU2AGSKztEFRgYa81Y51P4BMsTOcyiB4l6Bkik9POIp6ml+3+DrFLE
hE/bjYPWCKovGw==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:07:11 2025 by rpki-client