Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
File: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft (raw, json)
Hash identifier: uT8ZyhJVuQ9qTvXopOPC1rmm3rne+TcjdftDbB8Hpc8=
Subject key identifier: 5E:5A:3B:BB:23:11:8E:3F:97:90:2D:B2:FA:79:CD:FB:64:1C:95:98
Authority key identifier: 91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
Certificate issuer: /CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Certificate serial: 0199FCC672E2F9626C4A7E5E031D2D2DD10E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
Manifest number: 020A
Signing time: Sun 19 Oct 2025 14:01:27 +0000
Manifest this update: Sun 19 Oct 2025 14:01:27 +0000
Manifest next update: Mon 20 Oct 2025 14:01:27 +0000
Files and hashes: 1: N05LSOD5G7OCVr2R2Lk3Qm3IMnc.roa (hash: 2FUijApprdSPC+yt20CbCF23SFHyPUM/peKf0m3x+RA=)
2: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl (hash: lW25HdNXGQkXKfMIgSE8CE7QbCnp+iBuea3Eb7S0/mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:72:e2:f9:62:6c:4a:7e:5e:03:1d:2d:2d:d1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Validity
Not Before: Oct 19 14:01:27 2025 GMT
Not After : Oct 20 14:01:27 2025 GMT
Subject: CN=5e5a3bbb23118e3f97902db2fa79cdfb641c9598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:86:7d:1d:47:76:a0:88:46:b7:71:f3:c9:12:
6a:78:8d:69:53:39:72:3b:c1:97:cc:2d:19:f0:ed:
e1:68:e3:9e:ff:04:f0:d3:e2:65:06:7d:2f:5d:be:
5c:72:76:df:05:c2:23:12:b0:7a:fa:eb:2b:f2:63:
25:7d:d7:8c:10:7a:62:32:8c:95:f0:77:7a:cf:00:
15:0a:41:d7:30:ae:9a:b5:15:90:14:ae:38:4e:dc:
42:ce:e4:84:49:20:d3:dc:20:9b:a7:b0:15:b8:4a:
63:2a:25:d8:41:e8:9f:b5:c1:f7:01:27:6f:d5:50:
c7:1a:36:87:dd:73:c4:6a:5d:77:24:29:79:4c:a2:
ba:7a:c7:d8:e7:45:17:15:47:94:6d:7e:69:11:d9:
d5:19:b9:19:b2:f5:ec:84:47:e2:41:b1:c2:31:21:
5e:da:bb:e3:48:d4:6c:f2:71:47:06:7d:3a:03:30:
03:64:84:ed:0d:72:f4:19:e8:5b:39:54:c1:0c:95:
0f:38:2a:2c:07:44:43:1d:15:ca:62:6d:0d:cd:89:
a5:fd:3f:92:93:00:ef:24:56:8e:c4:69:ec:84:0d:
03:69:53:65:b8:60:aa:8f:3d:34:f5:c4:e8:3f:80:
3c:50:ba:9b:00:ea:7f:62:d5:d0:be:e8:ab:d1:34:
97:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5A:3B:BB:23:11:8E:3F:97:90:2D:B2:FA:79:CD:FB:64:1C:95:98
X509v3 Authority Key Identifier:
keyid:91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:6f:77:0b:47:e9:a3:9b:a3:be:f8:80:16:f0:20:79:e9:08:
eb:15:e5:62:2f:9a:5c:6f:83:30:06:ca:84:47:5c:55:a3:96:
f7:ae:d2:85:31:ed:3f:46:92:79:d8:cc:5e:9a:38:d5:d6:10:
d2:0c:5c:f1:98:08:8d:11:13:5c:38:2d:c8:d8:11:04:04:c3:
70:c3:98:6a:c8:11:44:a0:1f:24:2c:fd:01:23:f9:44:de:34:
9f:d1:00:f2:07:8f:49:25:66:14:b4:d0:4b:c1:80:23:c6:cd:
1e:ee:eb:81:40:ee:01:ac:81:d9:2e:d8:3a:1f:a0:50:3b:11:
ad:f2:b5:32:ed:10:00:d1:5a:88:15:a6:44:cc:fb:d5:37:d0:
ed:9b:f2:7d:1e:24:6e:ef:1f:fd:1d:76:98:e4:ca:cb:75:c3:
f3:8d:b1:06:28:31:af:c5:3a:06:86:2d:7b:45:5d:70:9b:c5:
8b:8d:e6:67:d9:a9:01:94:6a:cf:56:a0:98:b2:89:7c:ef:a4:
ac:74:1f:de:51:f4:44:07:cc:45:ef:38:58:98:28:98:1f:b7:
e5:db:20:37:c4:8d:a1:9e:1c:a1:f4:51:bb:ca:a2:fd:26:a1:
26:ce:58:6e:53:db:1c:dd:9a:11:9e:65:a8:39:e9:6b:7c:57:
18:99:af:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8xnLi+WJsSn5eAx0tLdEOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYmQ1ODgzYzgyYWVkMjVmZWYxYjE4ZDcwZDAyMTViMDdm
NzI3ZDgwHhcNMjUxMDE5MTQwMTI3WhcNMjUxMDIwMTQwMTI3WjAzMTEwLwYDVQQD
Eyg1ZTVhM2JiYjIzMTE4ZTNmOTc5MDJkYjJmYTc5Y2RmYjY0MWM5NTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYZ9HUd2oIhGt3HzyRJqeI1pUzly
O8GXzC0Z8O3haOOe/wTw0+JlBn0vXb5ccnbfBcIjErB6+usr8mMlfdeMEHpiMoyV
8Hd6zwAVCkHXMK6atRWQFK44TtxCzuSESSDT3CCbp7AVuEpjKiXYQeiftcH3ASdv
1VDHGjaH3XPEal13JCl5TKK6esfY50UXFUeUbX5pEdnVGbkZsvXshEfiQbHCMSFe
2rvjSNRs8nFHBn06AzADZITtDXL0GehbOVTBDJUPOCosB0RDHRXKYm0NzYml/T+S
kwDvJFaOxGnshA0DaVNluGCqjz009cToP4A8ULqbAOp/YtXQvuir0TSXQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF5aO7sjEY4/l5Atsvp5zftkHJWYMB8GA1UdIwQY
MBaAFJG9WIPIKu0l/vGxjXDQIVsH9yfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85ZDU2YTMtNDQxNy00OTQwLWJhYTIt
OWU5NjJjZDlkZDgyLzEva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC85ZDU2YTMtNDQxNy00OTQwLWJhYTItOWU5NjJjZDlkZDgy
LzEva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP293C0fp
o5ujvviAFvAgeekI6xXlYi+aXG+DMAbKhEdcVaOW967ShTHtP0aSedjMXpo41dYQ
0gxc8ZgIjRETXDgtyNgRBATDcMOYasgRRKAfJCz9ASP5RN40n9EA8gePSSVmFLTQ
S8GAI8bNHu7rgUDuAayB2S7YOh+gUDsRrfK1Mu0QANFaiBWmRMz71TfQ7ZvyfR4k
bu8f/R12mOTKy3XD842xBigxr8U6BoYte0VdcJvFi43mZ9mpAZRqz1agmLKJfO+k
rHQf3lH0RAfMRe84WJgomB+35dsgN8SNoZ4cofRRu8qi/SahJs5YblPbHN2aEZ5l
qDnpa3xXGJmvZQ==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:52:06 2025 by rpki-client