Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
File: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft (raw, json)
Hash identifier: 1eeFqBn2eyKw7m+idIJNq/sua5AVoaX+ySpqyR8bh4A=
Subject key identifier: D4:BE:48:AC:C7:36:BF:D2:67:01:E9:3A:DD:CB:61:39:F5:8D:40:24
Authority key identifier: 91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
Certificate issuer: /CN=913836859c6ce1869340edf1f273709b8094d9d4
Certificate serial: 019A72CA5A5EB5AB830DAA9F544F902D514D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
Manifest number: 1687
Signing time: Tue 11 Nov 2025 12:00:55 +0000
Manifest this update: Tue 11 Nov 2025 12:00:55 +0000
Manifest next update: Wed 12 Nov 2025 12:00:55 +0000
Files and hashes: 1: i0znYyDIsk78QzCDDCTg60lK9ig.roa (hash: aeDo1wq5VczgcfrDX0J+4eB6IcjwVsRwiJM6vkXROSk=)
2: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl (hash: tKm0/T9qR7PebLvrkVn7uOiTSq2gHmC6lKy16BeaK44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:ca:5a:5e:b5:ab:83:0d:aa:9f:54:4f:90:2d:51:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913836859c6ce1869340edf1f273709b8094d9d4
Validity
Not Before: Nov 11 12:00:55 2025 GMT
Not After : Nov 12 12:00:55 2025 GMT
Subject: CN=d4be48acc736bfd26701e93addcb6139f58d4024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d0:c8:4e:14:e1:d6:46:18:d7:d8:f7:c9:9e:
86:ab:5b:c6:e9:15:41:3f:61:c6:57:ae:1f:de:58:
76:99:5c:e6:06:86:d9:c0:54:34:1b:a5:b0:ec:a4:
22:a4:5c:1e:da:61:95:ee:8b:4a:e0:95:16:9a:a3:
e7:a9:b0:7f:1c:58:c5:a9:50:94:6b:17:8d:9b:29:
97:72:db:de:ee:94:77:d2:bf:12:d9:b3:77:19:f5:
32:8e:23:d0:e9:51:0d:93:14:50:57:c4:9c:89:bd:
65:b0:63:5d:46:55:4b:f7:72:2e:09:54:03:d6:9c:
f2:fa:d3:99:3d:8e:84:b0:22:35:a8:7a:ba:00:1a:
9a:fc:b8:8b:da:47:b4:fc:48:eb:5b:0c:ad:c7:30:
bf:80:f5:5f:d4:88:6f:e5:7c:e6:a4:1b:3f:d0:a9:
e3:cc:b2:b3:d0:0f:c2:00:cc:d0:43:a9:0d:52:c8:
43:d4:95:52:e0:fa:80:b0:44:ee:c4:59:02:87:ab:
fc:bf:1b:5d:b2:87:03:07:0b:bb:17:9e:f3:64:53:
af:91:06:51:63:7e:99:d9:e3:aa:16:cf:48:cf:0a:
05:b1:fb:4d:b1:92:c0:5f:3b:2d:a8:58:35:39:b6:
ad:fd:a5:02:4c:e5:64:af:4c:7c:83:eb:28:ea:26:
5f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BE:48:AC:C7:36:BF:D2:67:01:E9:3A:DD:CB:61:39:F5:8D:40:24
X509v3 Authority Key Identifier:
keyid:91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:1f:16:8f:c0:8f:f0:bc:83:12:c0:c2:d1:f5:c9:b0:72:ad:
32:f0:d0:39:0b:30:40:06:55:6e:dc:2f:a9:0b:b2:97:0b:a6:
3e:1c:42:83:f6:b7:b4:31:14:a3:90:14:a3:46:30:d1:e0:0c:
23:28:a0:3a:fe:26:80:06:fb:4d:a4:23:69:95:94:fc:b2:33:
60:dc:77:ac:ee:4a:70:e2:f1:3e:78:40:df:cd:28:58:68:a3:
e4:76:0f:62:e7:e7:ed:cc:d6:7e:fd:92:fd:04:ae:af:82:fb:
e2:ab:fe:a7:c0:47:04:2b:02:1e:99:0e:10:00:71:28:6a:0b:
0e:97:f5:70:e6:27:67:06:8a:93:96:5e:f1:6d:aa:45:c8:70:
f1:df:08:74:91:4a:8f:18:23:d1:f2:5f:e6:fc:49:a1:80:a5:
f2:fc:38:a6:a5:8e:06:48:30:40:bd:c1:78:5f:6a:ea:d2:2f:
63:f0:b1:6a:b9:ca:a6:90:bf:02:40:88:27:7f:86:c0:c5:34:
19:18:79:9a:91:9d:03:6a:75:0b:6f:b0:8e:35:58:45:04:ec:
31:58:77:f2:c9:9f:13:52:87:74:1b:38:50:5a:d0:6a:e6:76:
9f:b1:db:5d:e3:42:8b:ac:8e:fe:3d:98:64:cd:23:ad:b1:d0:
ff:29:fa:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpyylpetauDDaqfVE+QLVFNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMzgzNjg1OWM2Y2UxODY5MzQwZWRmMWYyNzM3MDliODA5
NGQ5ZDQwHhcNMjUxMTExMTIwMDU1WhcNMjUxMTEyMTIwMDU1WjAzMTEwLwYDVQQD
EyhkNGJlNDhhY2M3MzZiZmQyNjcwMWU5M2FkZGNiNjEzOWY1OGQ0MDI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNDIThTh1kYY19j3yZ6Gq1vG6RVB
P2HGV64f3lh2mVzmBobZwFQ0G6Ww7KQipFwe2mGV7otK4JUWmqPnqbB/HFjFqVCU
axeNmymXctve7pR30r8S2bN3GfUyjiPQ6VENkxRQV8Scib1lsGNdRlVL93IuCVQD
1pzy+tOZPY6EsCI1qHq6ABqa/LiL2ke0/EjrWwytxzC/gPVf1Ihv5XzmpBs/0Knj
zLKz0A/CAMzQQ6kNUshD1JVS4PqAsETuxFkCh6v8vxtdsocDBwu7F57zZFOvkQZR
Y36Z2eOqFs9IzwoFsftNsZLAXzstqFg1Obat/aUCTOVkr0x8g+so6iZfyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNS+SKzHNr/SZwHpOt3LYTn1jUAkMB8GA1UdIwQY
MBaAFJE4NoWcbOGGk0Dt8fJzcJuAlNnUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1RnMmhaeHM0WWFUUU8zeDhuTndtNENVMmRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9lOGYzNDQtZWRiMi00NDAwLWIzY2Et
NTI3YWM1NGMyMzU3LzEva1RnMmhaeHM0WWFUUU8zeDhuTndtNENVMmRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9lOGYzNDQtZWRiMi00NDAwLWIzY2EtNTI3YWM1NGMyMzU3
LzEva1RnMmhaeHM0WWFUUU8zeDhuTndtNENVMmRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAax8Wj8CP
8LyDEsDC0fXJsHKtMvDQOQswQAZVbtwvqQuylwumPhxCg/a3tDEUo5AUo0Yw0eAM
IyigOv4mgAb7TaQjaZWU/LIzYNx3rO5KcOLxPnhA380oWGij5HYPYufn7czWfv2S
/QSur4L74qv+p8BHBCsCHpkOEABxKGoLDpf1cOYnZwaKk5Ze8W2qRchw8d8IdJFK
jxgj0fJf5vxJoYCl8vw4pqWOBkgwQL3BeF9q6tIvY/CxarnKppC/AkCIJ3+GwMU0
GRh5mpGdA2p1C2+wjjVYRQTsMVh38smfE1KHdBs4UFrQauZ2n7HbXeNCi6yO/j2Y
ZM0jrbHQ/yn6gA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 17:17:00 2025 by rpki-client