Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
File: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft (raw, json)
Hash identifier: anIU+lleP9ZDRef3HUeYT2QsRVOWGPfPJELgSgRuiog=
Subject key identifier: 8D:63:81:76:AB:D0:04:49:1F:9F:15:91:38:3E:18:D7:E8:03:DE:C5
Authority key identifier: 29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
Certificate issuer: /CN=29da6411a13264dc6de0f101108540ef741ed19a
Certificate serial: 0199FBEC57B32729FA896DC18A1753684CE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
Manifest number: 12FF
Signing time: Sun 19 Oct 2025 10:03:13 +0000
Manifest this update: Sun 19 Oct 2025 10:03:13 +0000
Manifest next update: Mon 20 Oct 2025 10:03:13 +0000
Files and hashes: 1: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl (hash: pAgQFkoorjTaPFpi6snPYM2AR1TBYobwnI1irLcbno4=)
2: ofG1VLRjjYIcZfzAaNigWWgyFxw.roa (hash: ZHICR+Axb4b3KRXOcmZzuP26q8FUw656ivJ0mJFMsoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:03:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:ec:57:b3:27:29:fa:89:6d:c1:8a:17:53:68:4c:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29da6411a13264dc6de0f101108540ef741ed19a
Validity
Not Before: Oct 19 10:03:13 2025 GMT
Not After : Oct 20 10:03:13 2025 GMT
Subject: CN=8d638176abd004491f9f1591383e18d7e803dec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9c:e7:7c:e3:63:9c:5d:6a:85:7b:71:bd:73:
55:a2:31:7a:0c:c2:a6:4a:f3:b6:f2:26:10:a3:35:
cd:25:28:2e:ad:1a:13:14:25:af:48:3e:c6:ab:42:
3b:f9:87:ae:9e:b2:24:5a:2c:75:84:c8:2c:d8:55:
5e:0a:65:eb:50:43:d6:9c:84:bf:18:32:57:fb:1b:
f1:f0:49:e8:40:5d:a5:a2:a8:96:09:e2:3a:97:93:
21:ed:64:bc:21:11:38:77:bb:be:53:68:6e:a5:0b:
30:b9:4e:18:4e:ed:21:a4:7b:61:18:68:0e:fb:32:
77:e9:3e:0e:ca:7e:7c:6a:97:ac:4f:ba:8e:c9:f7:
ae:69:ab:8f:8b:9d:2d:ac:b6:35:92:6e:c3:3f:4c:
90:48:97:1c:e2:3e:66:88:9a:42:e0:49:0b:14:f6:
fb:b9:21:9b:45:f0:bd:40:93:5f:6e:30:f5:e1:d0:
b5:c3:f7:22:f9:d6:7f:1c:4e:10:48:95:bf:22:86:
eb:6b:5d:cb:61:92:04:29:b4:64:af:4a:50:fd:ab:
16:b0:06:c8:2c:ba:0e:cf:d8:24:26:f8:61:ae:74:
a8:06:91:ad:74:9f:3d:48:04:1a:57:c1:2e:44:39:
b4:17:01:7c:26:90:7e:02:7f:01:62:5e:36:8b:98:
96:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:63:81:76:AB:D0:04:49:1F:9F:15:91:38:3E:18:D7:E8:03:DE:C5
X509v3 Authority Key Identifier:
keyid:29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:b8:44:c2:d1:07:db:30:94:83:4f:f8:18:ab:bd:64:4c:fd:
54:8b:11:73:af:80:9d:b1:12:16:a4:13:a1:26:99:52:85:20:
af:41:46:a7:20:cc:c3:18:69:63:e7:90:23:25:3b:14:98:6f:
5b:fd:79:c1:96:81:f1:9e:4d:37:bc:47:5f:57:58:09:86:b8:
ce:85:0d:11:09:65:d1:02:a5:b8:be:0c:78:98:d1:44:6b:95:
ec:9a:0c:27:c6:fd:78:47:12:92:19:d8:e1:4a:ec:95:25:cc:
4d:15:d5:a1:81:6f:52:10:54:da:32:56:df:24:02:01:a8:61:
fb:c2:57:45:62:67:b0:48:1c:be:25:90:47:98:54:d8:1b:fa:
5f:69:5b:13:cc:3d:48:84:89:2f:53:16:41:76:c7:49:82:a0:
ff:9f:30:ef:1c:06:d4:85:b5:9a:a5:b0:29:00:24:df:1f:e7:
55:20:01:8f:54:4e:09:b9:d2:8f:cd:8e:7b:86:32:e9:e3:04:
d6:36:5e:c5:bd:65:79:3a:0f:d8:01:52:c8:da:d7:7b:45:be:
af:9f:a8:91:95:49:f9:15:c3:e6:bf:ab:c3:c4:c1:3f:a6:ee:
4e:01:bd:dd:ee:bd:5b:79:c3:26:ae:5f:32:9e:17:60:6b:55:
8e:44:45:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn77FezJyn6iW3BihdTaEzkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZGE2NDExYTEzMjY0ZGM2ZGUwZjEwMTEwODU0MGVmNzQx
ZWQxOWEwHhcNMjUxMDE5MTAwMzEzWhcNMjUxMDIwMTAwMzEzWjAzMTEwLwYDVQQD
Eyg4ZDYzODE3NmFiZDAwNDQ5MWY5ZjE1OTEzODNlMThkN2U4MDNkZWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pznfONjnF1qhXtxvXNVojF6DMKm
SvO28iYQozXNJSgurRoTFCWvSD7Gq0I7+YeunrIkWix1hMgs2FVeCmXrUEPWnIS/
GDJX+xvx8EnoQF2loqiWCeI6l5Mh7WS8IRE4d7u+U2hupQswuU4YTu0hpHthGGgO
+zJ36T4Oyn58apesT7qOyfeuaauPi50trLY1km7DP0yQSJcc4j5miJpC4EkLFPb7
uSGbRfC9QJNfbjD14dC1w/ci+dZ/HE4QSJW/Iobra13LYZIEKbRkr0pQ/asWsAbI
LLoOz9gkJvhhrnSoBpGtdJ89SAQaV8EuRDm0FwF8JpB+An8BYl42i5iWGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI1jgXar0ARJH58VkTg+GNfoA97FMB8GA1UdIwQY
MBaAFCnaZBGhMmTcbeDxARCFQO90HtGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2Rwa0VhRXlaTnh0NFBFQkVJVkE3M1FlMFpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hNTZjMTItZGI3YS00MjIwLTliMTUt
MWMyYjg0MmQyMmJlLzEvS2Rwa0VhRXlaTnh0NFBFQkVJVkE3M1FlMFpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9hNTZjMTItZGI3YS00MjIwLTliMTUtMWMyYjg0MmQyMmJl
LzEvS2Rwa0VhRXlaTnh0NFBFQkVJVkE3M1FlMFpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE7hEwtEH
2zCUg0/4GKu9ZEz9VIsRc6+AnbESFqQToSaZUoUgr0FGpyDMwxhpY+eQIyU7FJhv
W/15wZaB8Z5NN7xHX1dYCYa4zoUNEQll0QKluL4MeJjRRGuV7JoMJ8b9eEcSkhnY
4UrslSXMTRXVoYFvUhBU2jJW3yQCAahh+8JXRWJnsEgcviWQR5hU2Bv6X2lbE8w9
SISJL1MWQXbHSYKg/58w7xwG1IW1mqWwKQAk3x/nVSABj1ROCbnSj82Oe4Yy6eME
1jZexb1leToP2AFSyNrXe0W+r5+okZVJ+RXD5r+rw8TBP6buTgG93e69W3nDJq5f
Mp4XYGtVjkRF0Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:26:07 2025 by rpki-client