Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
File: kfWJGibPpDaiPn4f-XZki-5573c.mft (raw, json)
Hash identifier: EJ2g/XH4pcwPQxAk/bR4sSqLs75WvP3OZWdIaikPNg8=
Subject key identifier: 1F:9C:6B:92:3C:5A:5E:2D:39:18:35:F1:C8:E2:3D:B0:35:3C:0F:BF
Authority key identifier: 91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
Certificate issuer: /CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Certificate serial: 019A2E1FD3A5C59A11974C85879EF8BE06ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
Manifest number: 156B
Signing time: Wed 29 Oct 2025 04:00:28 +0000
Manifest this update: Wed 29 Oct 2025 04:00:28 +0000
Manifest next update: Thu 30 Oct 2025 04:00:28 +0000
Files and hashes: 1: AwtKEHfYyxnQ1th-VlZxSnr7g6Q.roa (hash: kaMvuNz15dIgQL2M/Qvml14U3ZSUX9PuIaFhO+5H45U=)
2: DIxBuJDWRajN2G8Xp5FV5TyPSvA.roa (hash: OfQWp1njClDrdouukOkCvfJ95D6ij98TPOIuqpcwAzY=)
3: kfWJGibPpDaiPn4f-XZki-5573c.crl (hash: 4vHA9EGliX7EqxPSnAiXBAnVHehCDtFBOPPjw/yxueE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2e:1f:d3:a5:c5:9a:11:97:4c:85:87:9e:f8:be:06:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Validity
Not Before: Oct 29 04:00:28 2025 GMT
Not After : Oct 30 04:00:28 2025 GMT
Subject: CN=1f9c6b923c5a5e2d391835f1c8e23db0353c0fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2b:07:85:20:b8:1d:ef:19:7f:1f:1d:6e:e0:
c4:06:c6:44:00:17:5f:aa:f8:83:ee:38:1e:f5:98:
04:df:a8:f5:ed:45:66:57:37:e2:5e:66:d6:d5:9d:
6b:47:d6:8a:a4:96:92:53:c5:ff:aa:0f:a0:73:fb:
53:6b:cc:e1:84:c7:48:78:9e:fe:9b:a6:74:99:d4:
41:72:6d:08:cf:6f:ad:82:a7:38:b4:87:fa:f2:61:
64:f7:96:f1:4b:50:c6:66:39:92:68:63:9e:f7:4e:
5c:71:fe:5d:9d:30:1c:fe:df:ab:c2:eb:41:0d:5f:
cc:79:3b:94:ec:8d:39:ab:13:6c:37:31:c4:76:17:
ea:bb:4b:5e:8b:ad:83:fb:32:38:f6:1a:4c:c3:ec:
ac:45:82:a3:52:ff:73:84:0c:31:f7:e7:f5:c3:ab:
28:0c:b6:5e:df:05:8f:b8:5c:40:4a:b3:6f:ae:4d:
b6:cf:45:ff:c5:35:2e:83:c8:9c:df:17:e7:4b:de:
6d:77:db:83:6c:78:a3:c6:53:7a:b6:3e:13:85:47:
7a:7b:eb:4e:10:1e:2d:d3:b1:26:57:32:8c:21:43:
f0:99:e1:a0:c3:16:9d:aa:cd:48:dc:20:58:c7:f3:
b0:7c:39:dc:d6:07:da:02:af:6f:ca:5c:54:b8:44:
56:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9C:6B:92:3C:5A:5E:2D:39:18:35:F1:C8:E2:3D:B0:35:3C:0F:BF
X509v3 Authority Key Identifier:
keyid:91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:93:1e:85:54:d1:46:cf:60:b6:79:89:d1:df:3d:f0:57:72:
22:65:d2:03:56:ec:f8:fb:26:94:57:3a:20:86:d1:00:85:49:
fe:f6:2b:66:d5:a0:07:4e:87:51:7c:4b:6b:1c:7d:a4:44:bb:
53:fc:7d:37:2b:39:1d:f8:c6:ca:84:47:e4:62:fa:3f:6b:de:
d6:71:0b:4b:50:68:6e:08:9b:d4:b0:a8:00:e6:f3:92:bf:8b:
2d:87:d8:69:d1:55:df:dc:d0:09:1f:0c:4e:0a:66:73:67:26:
31:3f:38:c2:ce:cf:17:ae:ee:fc:ba:ea:e8:12:b3:e8:43:25:
e1:26:ed:b1:02:47:54:90:44:5b:dd:c8:cb:c1:56:0f:f4:13:
5b:b2:d0:7b:3f:1d:18:82:20:f6:be:db:27:99:dd:11:2e:4f:
87:09:a1:23:bd:41:43:b3:5c:c4:6e:1e:e0:cd:87:b9:ee:71:
4f:7b:c2:34:f1:34:ba:a3:84:ad:ab:82:87:9d:93:2d:b4:e7:
48:f6:02:62:11:cd:48:08:76:8c:84:eb:95:07:cf:ff:a2:96:
f2:2e:62:23:fd:ae:42:1a:79:f5:ae:2a:93:2b:fd:66:90:23:
e5:99:16:02:4a:03:72:cd:54:e6:0c:a4:ff:5f:18:d6:fc:3f:
0f:6d:b7:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZouH9OlxZoRl0yFh574vgbtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZjU4OTFhMjZjZmE0MzZhMjNlN2UxZmY5NzY2NDhiZWU3
OWVmNzcwHhcNMjUxMDI5MDQwMDI4WhcNMjUxMDMwMDQwMDI4WjAzMTEwLwYDVQQD
EygxZjljNmI5MjNjNWE1ZTJkMzkxODM1ZjFjOGUyM2RiMDM1M2MwZmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxisHhSC4He8Zfx8dbuDEBsZEABdf
qviD7jge9ZgE36j17UVmVzfiXmbW1Z1rR9aKpJaSU8X/qg+gc/tTa8zhhMdIeJ7+
m6Z0mdRBcm0Iz2+tgqc4tIf68mFk95bxS1DGZjmSaGOe905ccf5dnTAc/t+rwutB
DV/MeTuU7I05qxNsNzHEdhfqu0tei62D+zI49hpMw+ysRYKjUv9zhAwx9+f1w6so
DLZe3wWPuFxASrNvrk22z0X/xTUug8ic3xfnS95td9uDbHijxlN6tj4ThUd6e+tO
EB4t07EmVzKMIUPwmeGgwxadqs1I3CBYx/OwfDnc1gfaAq9vylxUuERWVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB+ca5I8Wl4tORg18cjiPbA1PA+/MB8GA1UdIwQY
MBaAFJH1iRomz6Q2oj5+H/l2ZIvuee93MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83ZjFiNzQtYzhkNy00YTBkLThhMzkt
ZGFhNzM5MGI1YmE3LzEva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy83ZjFiNzQtYzhkNy00YTBkLThhMzktZGFhNzM5MGI1YmE3
LzEva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALZMehVTR
Rs9gtnmJ0d898FdyImXSA1bs+PsmlFc6IIbRAIVJ/vYrZtWgB06HUXxLaxx9pES7
U/x9Nys5HfjGyoRH5GL6P2ve1nELS1Bobgib1LCoAObzkr+LLYfYadFV39zQCR8M
Tgpmc2cmMT84ws7PF67u/Lrq6BKz6EMl4SbtsQJHVJBEW93Iy8FWD/QTW7LQez8d
GIIg9r7bJ5ndES5PhwmhI71BQ7NcxG4e4M2Hue5xT3vCNPE0uqOErauCh52TLbTn
SPYCYhHNSAh2jITrlQfP/6KW8i5iI/2uQhp59a4qkyv9ZpAj5ZkWAkoDcs1U5gyk
/18Y1vw/D2235g==
-----END CERTIFICATE-----
Generated at Wed Oct 29 12:49:52 2025 by rpki-client