Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
File: KhfSVHdMl6nGhansXSTy_GlomQg.mft (raw, json)
Hash identifier: mvF0b97Y4FzNS51LM0qygPKUeWTRxvxWu2ivJcjrgVQ=
Subject key identifier: E7:AF:4D:EE:B2:C2:B5:A9:7B:D0:52:27:8E:B0:B8:AE:99:13:B7:B5
Authority key identifier: 2A:17:D2:54:77:4C:97:A9:C6:85:A9:EC:5D:24:F2:FC:69:68:99:08
Certificate issuer: /CN=2a17d254774c97a9c685a9ec5d24f2fc69689908
Certificate serial: 0199FD3452B6529AD860648CF2BBD27BD69C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
Manifest number: 141E
Signing time: Sun 19 Oct 2025 16:01:28 +0000
Manifest this update: Sun 19 Oct 2025 16:01:28 +0000
Manifest next update: Mon 20 Oct 2025 16:01:28 +0000
Files and hashes: 1: 1ibpJfSu5zvmElDRsm3yBPA2Psc.roa (hash: fl2TXrWlprslHDoqKeFpyUnoLUsON1oTzkxdU0IwAjQ=)
2: KhfSVHdMl6nGhansXSTy_GlomQg.crl (hash: FFla5mGAuU0fWQ9D0+qSIxt1PgdHaX6fKIzxUZPWKUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 16:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:52:b6:52:9a:d8:60:64:8c:f2:bb:d2:7b:d6:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a17d254774c97a9c685a9ec5d24f2fc69689908
Validity
Not Before: Oct 19 16:01:28 2025 GMT
Not After : Oct 20 16:01:28 2025 GMT
Subject: CN=e7af4deeb2c2b5a97bd052278eb0b8ae9913b7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9b:f5:c4:6d:c7:bc:fa:5e:62:ec:95:9f:77:
e5:2a:c6:c5:5f:9c:16:59:99:c1:f0:48:c4:91:e3:
0c:b5:88:bc:0b:a8:6b:42:26:37:af:6c:59:f7:aa:
dd:8b:af:f7:9b:05:44:7d:6c:32:fe:72:42:a4:4f:
bb:de:91:ee:49:06:79:d9:76:53:ef:f1:25:5b:7a:
9d:e1:71:fa:db:ef:40:ac:d7:b0:16:74:a2:a5:8a:
09:5e:26:03:95:df:ef:dc:a0:fc:d4:63:6e:8b:0e:
c7:31:ea:51:e2:30:ce:d1:26:73:1a:cc:31:f2:1f:
49:fa:d8:81:7c:73:5e:55:eb:64:ae:0f:ce:db:8c:
70:a8:8b:7e:61:e9:bf:22:aa:39:32:ba:ed:f0:45:
1b:36:27:c7:67:5e:26:b0:fe:28:73:4d:ea:65:a6:
15:14:e2:a4:54:ce:8d:0d:ad:c2:d6:08:7c:f9:3f:
9f:b1:46:02:99:82:32:99:38:fa:6d:11:12:90:ad:
78:24:9b:ab:72:d6:f2:fc:23:82:18:ae:09:0b:42:
36:e9:3a:5f:58:e7:fa:06:85:2d:ca:ff:7b:85:80:
72:e2:2c:00:bf:c9:32:83:d4:c6:80:53:81:be:87:
03:d5:eb:c9:bf:6e:4a:b6:56:72:96:a8:1c:7f:9c:
8d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AF:4D:EE:B2:C2:B5:A9:7B:D0:52:27:8E:B0:B8:AE:99:13:B7:B5
X509v3 Authority Key Identifier:
keyid:2A:17:D2:54:77:4C:97:A9:C6:85:A9:EC:5D:24:F2:FC:69:68:99:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:c1:e7:51:0a:67:7e:f3:2c:1c:c1:5a:3c:2e:34:eb:20:20:
65:93:35:66:70:e4:85:8b:f8:3c:ee:82:49:a9:21:ea:00:f2:
b6:9b:c7:a0:99:7d:49:e7:64:64:59:3b:07:95:2d:e1:87:fb:
95:c6:26:9c:53:17:50:3f:43:8b:4b:dc:de:f2:7c:70:ec:be:
c9:5a:76:70:21:e7:e0:ca:68:f6:80:ac:33:2a:ea:88:d9:ef:
21:85:af:73:ec:be:a3:1f:6c:19:5f:9b:51:0b:6b:26:ed:1e:
2b:f0:51:22:dd:55:cb:f3:50:0e:c7:db:d1:27:e8:ad:c9:d8:
6f:e9:dc:8f:62:09:4c:07:4f:ee:3e:1e:6f:3a:66:58:93:66:
91:28:6e:54:0d:14:f4:1f:a6:4d:25:a1:4f:06:94:b0:e8:85:
9c:a2:5b:77:5e:a6:24:cc:d4:b7:5a:63:82:20:2c:49:23:0d:
9d:42:be:21:eb:cc:f0:02:48:88:cb:dc:a7:38:03:1e:9b:71:
2d:bf:b8:76:07:25:21:47:c4:1c:07:b7:8d:ee:55:1c:2e:5d:
a1:6f:ca:4d:dc:4c:db:a6:73:79:69:e1:21:b9:47:6b:04:db:
bd:2e:f0:04:47:2a:1e:e7:cc:6a:1b:ee:de:c7:d9:de:ad:cc:
63:81:3a:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NFK2UprYYGSM8rvSe9acMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMTdkMjU0Nzc0Yzk3YTljNjg1YTllYzVkMjRmMmZjNjk2
ODk5MDgwHhcNMjUxMDE5MTYwMTI4WhcNMjUxMDIwMTYwMTI4WjAzMTEwLwYDVQQD
EyhlN2FmNGRlZWIyYzJiNWE5N2JkMDUyMjc4ZWIwYjhhZTk5MTNiN2I1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZv1xG3HvPpeYuyVn3flKsbFX5wW
WZnB8EjEkeMMtYi8C6hrQiY3r2xZ96rdi6/3mwVEfWwy/nJCpE+73pHuSQZ52XZT
7/ElW3qd4XH62+9ArNewFnSipYoJXiYDld/v3KD81GNuiw7HMepR4jDO0SZzGswx
8h9J+tiBfHNeVetkrg/O24xwqIt+Yem/Iqo5Mrrt8EUbNifHZ14msP4oc03qZaYV
FOKkVM6NDa3C1gh8+T+fsUYCmYIymTj6bRESkK14JJurctby/COCGK4JC0I26Tpf
WOf6BoUtyv97hYBy4iwAv8kyg9TGgFOBvocD1evJv25KtlZylqgcf5yN4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOevTe6ywrWpe9BSJ46wuK6ZE7e1MB8GA1UdIwQY
MBaAFCoX0lR3TJepxoWp7F0k8vxpaJkIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82NmE0MzktY2YzMy00N2M1LTkyYWIt
ODBiNTExOGFiYWY2LzEvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi82NmE0MzktY2YzMy00N2M1LTkyYWItODBiNTExOGFiYWY2
LzEvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW8HnUQpn
fvMsHMFaPC406yAgZZM1ZnDkhYv4PO6CSakh6gDytpvHoJl9SedkZFk7B5Ut4Yf7
lcYmnFMXUD9Di0vc3vJ8cOy+yVp2cCHn4Mpo9oCsMyrqiNnvIYWvc+y+ox9sGV+b
UQtrJu0eK/BRIt1Vy/NQDsfb0SforcnYb+ncj2IJTAdP7j4ebzpmWJNmkShuVA0U
9B+mTSWhTwaUsOiFnKJbd16mJMzUt1pjgiAsSSMNnUK+IevM8AJIiMvcpzgDHptx
Lb+4dgclIUfEHAe3je5VHC5doW/KTdxM26ZzeWnhIblHawTbvS7wBEcqHufMahvu
3sfZ3q3MY4E64Q==
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:33:49 2025 by rpki-client