Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft
File: KC5DLtiL7BrRRURJYygU1DmWseA.mft (raw, json)
Hash identifier: ELQj2ohLcef9pf75aQ9yY3WbCJSwfgU+jfaVWRm8pGs=
Subject key identifier: 28:9A:F3:E6:F5:D3:22:D6:C7:6E:39:5C:5F:C6:F0:42:BB:A1:91:64
Authority key identifier: 28:2E:43:2E:D8:8B:EC:1A:D1:45:44:49:63:28:14:D4:39:96:B1:E0
Certificate issuer: /CN=282e432ed88bec1ad1454449632814d43996b1e0
Certificate serial: 0199FD3439BDEA0FC89525621D73CA0A28AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft
Manifest number: 0D3A
Signing time: Sun 19 Oct 2025 16:01:22 +0000
Manifest this update: Sun 19 Oct 2025 16:01:22 +0000
Manifest next update: Mon 20 Oct 2025 16:01:22 +0000
Files and hashes: 1: 9FnOB-XBygoB-RgBBWEsPTbvFTc.roa (hash: faK52ZKxn8mhj7q+v4KziaARqXuKQdUnupgh7Jp3IVk=)
2: KC5DLtiL7BrRRURJYygU1DmWseA.crl (hash: mupxosICOKhAycA5rpDgZkz9LgpUuutUpct3kqR73I8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:39:bd:ea:0f:c8:95:25:62:1d:73:ca:0a:28:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282e432ed88bec1ad1454449632814d43996b1e0
Validity
Not Before: Oct 19 16:01:22 2025 GMT
Not After : Oct 20 16:01:22 2025 GMT
Subject: CN=289af3e6f5d322d6c76e395c5fc6f042bba19164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:33:cb:1b:1e:15:4d:62:4a:db:32:54:14:
bf:22:08:d1:2a:35:4e:d7:0c:16:7b:13:10:ce:84:
6b:b7:d0:16:4d:d3:26:43:ff:e1:c8:cb:a2:7e:3c:
8b:80:fb:4c:3b:7c:03:12:8c:58:f9:31:56:8f:98:
ca:97:7a:6c:41:ef:8d:c6:80:4b:b0:c7:3a:ec:f5:
10:bf:32:34:57:63:52:ea:42:8f:27:c4:0d:92:f6:
fe:b7:8d:71:9e:39:d0:a7:01:0a:6d:e5:28:2a:e9:
8a:ca:0c:8a:9d:59:e6:77:51:f9:92:60:59:da:b1:
26:13:62:f2:f1:f3:6a:eb:83:ff:42:94:ee:ba:1c:
0e:ab:40:6d:f3:23:6e:fe:76:7e:b6:f3:31:2d:9e:
63:49:6e:cc:bc:96:dd:9e:13:96:c5:58:4d:99:85:
5f:fb:14:0c:33:90:57:6c:87:6a:e0:fd:0c:11:6f:
b0:8d:48:11:37:21:1a:4d:db:bf:02:cf:cd:fc:04:
50:ff:ef:e4:55:ad:da:6b:4c:15:36:d8:94:f1:de:
60:48:a8:c3:d2:83:75:e4:2c:82:b5:b7:1c:dc:8b:
2d:5a:8d:eb:d5:07:72:82:ee:b5:f8:b7:01:40:89:
77:10:5a:74:2f:af:8f:11:c2:a8:0b:6e:5a:d6:8e:
45:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:9A:F3:E6:F5:D3:22:D6:C7:6E:39:5C:5F:C6:F0:42:BB:A1:91:64
X509v3 Authority Key Identifier:
keyid:28:2E:43:2E:D8:8B:EC:1A:D1:45:44:49:63:28:14:D4:39:96:B1:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:90:fe:c2:c5:f1:a3:3e:70:c4:f9:0a:d3:83:92:d4:93:bd:
7e:c0:08:1e:d5:f8:50:1f:f1:26:e9:6f:03:8f:3a:d5:45:dd:
70:42:2d:0f:9d:2f:9a:18:1f:90:f6:c1:32:f2:fd:46:1c:bd:
95:02:ab:49:fa:e8:03:70:2c:18:ec:3f:c8:32:1e:25:51:21:
6b:6d:29:61:34:9a:c6:9e:e8:f6:96:72:6e:51:1f:5c:5f:6d:
07:80:45:01:ae:10:d3:ab:77:8c:aa:d5:97:ed:fc:ac:77:56:
f5:40:ac:21:f4:47:cf:de:d3:20:5e:6d:f1:fd:67:79:bf:a7:
ed:24:ec:16:d9:f4:9f:77:00:16:69:4c:e1:c6:55:80:03:51:
3a:04:35:1e:09:a0:27:ad:e8:21:a0:09:05:33:f9:fa:4a:b4:
24:51:27:2e:4f:4b:c5:11:1a:17:b0:55:4b:c1:f8:bd:6c:3c:
07:67:6d:a1:29:41:31:35:db:7f:47:81:6e:49:51:ec:60:5d:
64:1c:33:7b:b8:3a:3e:de:be:33:71:e2:98:d9:ec:f8:40:09:
e7:7d:c2:3a:7f:ff:b9:40:2c:b4:49:26:b9:75:ba:6e:99:9b:
ec:8b:c9:2d:3f:06:46:d9:3e:9b:51:0d:df:bc:47:66:5a:89:
2d:85:3e:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn9NDm96g/IlSViHXPKCiitMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MmU0MzJlZDg4YmVjMWFkMTQ1NDQ0OTYzMjgxNGQ0Mzk5
NmIxZTAwHhcNMjUxMDE5MTYwMTIyWhcNMjUxMDIwMTYwMTIyWjAzMTEwLwYDVQQD
EygyODlhZjNlNmY1ZDMyMmQ2Yzc2ZTM5NWM1ZmM2ZjA0MmJiYTE5MTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUEzyxseFU1iStsyVBS/IgjRKjVO
1wwWexMQzoRrt9AWTdMmQ//hyMuifjyLgPtMO3wDEoxY+TFWj5jKl3psQe+NxoBL
sMc67PUQvzI0V2NS6kKPJ8QNkvb+t41xnjnQpwEKbeUoKumKygyKnVnmd1H5kmBZ
2rEmE2Ly8fNq64P/QpTuuhwOq0Bt8yNu/nZ+tvMxLZ5jSW7MvJbdnhOWxVhNmYVf
+xQMM5BXbIdq4P0MEW+wjUgRNyEaTdu/As/N/ARQ/+/kVa3aa0wVNtiU8d5gSKjD
0oN15CyCtbcc3IstWo3r1Qdygu61+LcBQIl3EFp0L6+PEcKoC25a1o5FNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCia8+b10yLWx245XF/G8EK7oZFkMB8GA1UdIwQY
MBaAFCguQy7Yi+wa0UVESWMoFNQ5lrHgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0M1REx0aUw3QnJSUlVSSll5Z1UxRG1Xc2VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9jNjBmMDgtYjI0Yi00ZGM0LWEyN2Mt
ZmMwYWE3MmU4ZWFkLzEvS0M1REx0aUw3QnJSUlVSSll5Z1UxRG1Xc2VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi9jNjBmMDgtYjI0Yi00ZGM0LWEyN2MtZmMwYWE3MmU4ZWFk
LzEvS0M1REx0aUw3QnJSUlVSSll5Z1UxRG1Xc2VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaZD+wsXx
oz5wxPkK04OS1JO9fsAIHtX4UB/xJulvA4861UXdcEItD50vmhgfkPbBMvL9Rhy9
lQKrSfroA3AsGOw/yDIeJVEha20pYTSaxp7o9pZyblEfXF9tB4BFAa4Q06t3jKrV
l+38rHdW9UCsIfRHz97TIF5t8f1neb+n7STsFtn0n3cAFmlM4cZVgANROgQ1Hgmg
J63oIaAJBTP5+kq0JFEnLk9LxREaF7BVS8H4vWw8B2dtoSlBMTXbf0eBbklR7GBd
ZBwze7g6Pt6+M3HimNns+EAJ533COn//uUAstEkmuXW6bpmb7IvJLT8GRtk+m1EN
37xHZlqJLYU+1w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:32:15 2025 by rpki-client