Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: VJXgK4opVN87qwf89z4vbOOyfcAlQHSK3NiweoYlcIQ=
Subject key identifier: CC:24:6E:64:CB:DD:04:86:BD:59:E8:F4:58:59:7F:56:F7:31:04:36
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 019A15E06A3F7D2FA6F9ACE61F1A5761599A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 1562
Signing time: Fri 24 Oct 2025 11:00:19 +0000
Manifest this update: Fri 24 Oct 2025 11:00:19 +0000
Manifest next update: Sat 25 Oct 2025 11:00:19 +0000
Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: TCkStKRcQZ8CBVI8MFJPXgviztUj6/9uQ9gxYy1gCdk=)
2: o9Mrd_Zp-119sDj-V8VZv-bH4Po.roa (hash: T/Zr25wueuSL7uIuxkLz/YPHfupfyL0OiqXaAJQQ9Uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 25 Oct 2025 11:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:15:e0:6a:3f:7d:2f:a6:f9:ac:e6:1f:1a:57:61:59:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Oct 24 11:00:19 2025 GMT
Not After : Oct 25 11:00:19 2025 GMT
Subject: CN=cc246e64cbdd0486bd59e8f458597f56f7310436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:92:36:97:1b:4d:49:6e:62:55:3d:3e:c3:ba:
46:0c:d4:67:0f:0d:47:6f:71:05:0d:bf:20:a9:d8:
62:0d:56:90:1b:a4:f7:8e:90:34:61:ef:ba:f7:ef:
a0:70:11:05:87:23:a6:96:ad:0c:74:c2:64:94:30:
2d:a8:18:12:e4:81:e9:bb:1a:26:ec:52:6b:74:4f:
14:4a:84:6f:bf:10:89:55:96:ed:bc:6f:08:c4:e6:
53:fc:70:ae:78:5a:9d:4d:25:05:e8:09:25:bb:24:
c1:80:d2:73:65:85:d6:0b:13:24:e1:31:ac:a9:4e:
fa:d7:0e:43:77:c3:90:5b:83:cb:39:a1:0e:48:40:
1a:ee:d5:0d:8d:ae:44:1b:ec:cd:20:33:45:a3:e3:
aa:a2:99:4c:98:dd:c8:b6:df:5c:fb:7c:96:4d:0c:
6e:65:a3:a5:81:cf:68:42:a3:b7:9f:a5:da:54:91:
4d:35:5c:2e:4a:3a:d8:f6:53:a6:e1:b6:e9:7b:e1:
28:d0:cf:f0:6a:2e:fb:94:d9:c4:2a:fe:53:11:5f:
f1:77:82:6b:d2:3a:3c:a6:17:9b:dc:b2:7e:80:9f:
3c:fc:03:09:a5:8e:46:c4:52:f8:b8:cb:6b:b9:02:
a0:5e:e0:b9:4c:f1:7f:d1:18:23:31:0f:85:c7:9f:
01:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:24:6E:64:CB:DD:04:86:BD:59:E8:F4:58:59:7F:56:F7:31:04:36
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:6a:54:8e:19:69:46:8a:0c:04:34:c5:2a:3e:02:ab:29:3b:
95:3c:ed:0c:37:21:13:78:a5:1e:8e:4c:3f:42:b5:e0:1f:35:
7f:12:2a:a2:d2:e5:56:b1:c2:e2:fa:54:d6:54:9a:01:40:bb:
69:95:bf:03:d7:fa:73:f8:26:b8:e0:fe:b7:c3:07:9d:20:9f:
c2:61:01:07:ae:a9:e4:bb:e1:0e:84:5e:04:34:f2:9c:22:8e:
6b:3f:c1:db:8f:46:60:08:a2:13:a6:e6:9f:00:fa:88:bf:18:
19:91:e5:7c:a1:e7:25:f0:53:fe:18:41:19:91:3a:95:89:5d:
90:b4:1b:d3:7e:df:ff:78:87:01:f3:83:bf:11:29:18:d3:2b:
3a:62:c6:76:4e:c2:af:89:24:9f:06:82:45:52:8b:65:f6:41:
03:87:e5:2e:00:f2:ef:8b:5e:e7:be:97:73:e5:d0:c4:08:a1:
63:98:64:a1:b7:dc:33:a6:49:9f:7a:fe:a3:b3:b2:f1:09:66:
58:85:df:51:7e:c2:1a:a8:49:fa:a8:99:9e:82:8c:44:98:0a:
2c:70:a3:ae:24:7d:88:d6:d7:d0:ce:95:e8:c3:7d:37:28:10:
9d:74:7d:c1:12:0c:a8:41:ba:56:33:44:a9:ec:58:f1:a0:a7:
f2:de:15:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoV4Go/fS+m+azmHxpXYVmaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNDQ0YjA3OWRmMDA4YTdjN2NiZTI4ZmNiYTVkYmUwNjIw
ZThlMTcwHhcNMjUxMDI0MTEwMDE5WhcNMjUxMDI1MTEwMDE5WjAzMTEwLwYDVQQD
EyhjYzI0NmU2NGNiZGQwNDg2YmQ1OWU4ZjQ1ODU5N2Y1NmY3MzEwNDM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15I2lxtNSW5iVT0+w7pGDNRnDw1H
b3EFDb8gqdhiDVaQG6T3jpA0Ye+69++gcBEFhyOmlq0MdMJklDAtqBgS5IHpuxom
7FJrdE8USoRvvxCJVZbtvG8IxOZT/HCueFqdTSUF6AkluyTBgNJzZYXWCxMk4TGs
qU761w5Dd8OQW4PLOaEOSEAa7tUNja5EG+zNIDNFo+OqoplMmN3Itt9c+3yWTQxu
ZaOlgc9oQqO3n6XaVJFNNVwuSjrY9lOm4bbpe+Eo0M/wai77lNnEKv5TEV/xd4Jr
0jo8pheb3LJ+gJ88/AMJpY5GxFL4uMtruQKgXuC5TPF/0RgjMQ+Fx58BOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMwkbmTL3QSGvVno9FhZf1b3MQQ2MB8GA1UdIwQY
MBaAFJBESwed8Ainx8vij8ul2+BiDo4XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yNGVjOGUtMWNjNi00NWUzLTkwNjMt
OTkxNDk4NjdkYmY3LzEva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8yNGVjOGUtMWNjNi00NWUzLTkwNjMtOTkxNDk4NjdkYmY3
LzEva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC2pUjhlp
RooMBDTFKj4Cqyk7lTztDDchE3ilHo5MP0K14B81fxIqotLlVrHC4vpU1lSaAUC7
aZW/A9f6c/gmuOD+t8MHnSCfwmEBB66p5LvhDoReBDTynCKOaz/B249GYAiiE6bm
nwD6iL8YGZHlfKHnJfBT/hhBGZE6lYldkLQb037f/3iHAfODvxEpGNMrOmLGdk7C
r4kknwaCRVKLZfZBA4flLgDy74te576Xc+XQxAihY5hkobfcM6ZJn3r+o7Oy8Qlm
WIXfUX7CGqhJ+qiZnoKMRJgKLHCjriR9iNbX0M6V6MN9NygQnXR9wRIMqEG6VjNE
qexY8aCn8t4VxQ==
-----END CERTIFICATE-----
Generated at Fri Oct 24 19:18:28 2025 by rpki-client