Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft
File: k7Hqu-XuDASWgOKryVU0OexkPAs.mft (raw, json)
Hash identifier: 6YK2kvprLbMo13ae8aDg0f95LqsJpDXY5hwMlf37jjI=
Subject key identifier: D1:55:CD:5B:42:58:A5:D0:69:C2:87:97:00:F5:3D:2F:E5:F3:BE:3E
Authority key identifier: 93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B
Certificate issuer: /CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b
Certificate serial: 019A0DF0464A67A9256BCF005587A913D7A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft
Manifest number: 109E
Signing time: Wed 22 Oct 2025 22:00:41 +0000
Manifest this update: Wed 22 Oct 2025 22:00:41 +0000
Manifest next update: Thu 23 Oct 2025 22:00:41 +0000
Files and hashes: 1: PQ_yvQsZl8a1BJZelz18O8KYziI.roa (hash: a9+EgNIf1zhqdc2reiY/K2IYhXxlOzKE9JswUeuIGNI=)
2: k7Hqu-XuDASWgOKryVU0OexkPAs.crl (hash: Vqv2bBRgoEp2CZgO0a3MZl0DvBgU8AtK0Q0BuzCDzMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft
rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0d:f0:46:4a:67:a9:25:6b:cf:00:55:87:a9:13:d7:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b
Validity
Not Before: Oct 22 22:00:41 2025 GMT
Not After : Oct 23 22:00:41 2025 GMT
Subject: CN=d155cd5b4258a5d069c2879700f53d2fe5f3be3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:00:61:8e:1a:1d:a6:00:a6:b5:f8:19:74:55:
79:0d:45:4f:ee:ac:2c:a2:6a:a8:45:1f:51:2d:ca:
b8:94:91:0b:d0:26:da:42:27:aa:ff:8c:03:3b:fb:
cf:1e:c4:69:41:32:72:dd:18:05:c7:9e:a1:f5:26:
d4:d1:d3:98:e0:97:11:e9:d8:81:6c:c5:11:ed:87:
41:9b:89:00:4b:3c:36:21:af:ed:f4:ad:f2:91:9e:
40:46:d7:cc:11:c8:83:55:6e:26:a2:3c:37:0a:cd:
a5:bd:d9:d2:15:01:97:6b:74:16:02:29:62:30:77:
ef:35:e1:a3:49:be:04:2d:58:f8:ca:74:af:55:d6:
4a:a1:05:72:b8:73:6a:d7:27:ae:a0:8c:4d:b5:bd:
73:9f:b1:f9:ef:65:50:64:0b:9b:66:9e:10:83:c8:
29:fd:62:a0:fb:b4:8a:8e:e0:d6:d7:3d:79:c9:30:
78:5f:ee:34:65:a2:59:7d:d7:87:b7:4d:b7:e9:59:
da:59:e4:fc:22:6e:0f:c7:8e:0a:01:b7:6f:db:7e:
73:91:d5:63:6c:cc:d9:0b:6a:61:93:fa:e0:9a:ed:
79:14:c3:c7:34:67:fa:c0:a6:97:51:e7:87:a0:cd:
b7:44:7f:ea:f7:bb:44:03:1f:19:eb:25:76:44:e6:
31:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:55:CD:5B:42:58:A5:D0:69:C2:87:97:00:F5:3D:2F:E5:F3:BE:3E
X509v3 Authority Key Identifier:
keyid:93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:bb:f2:0d:92:21:cf:de:b0:e4:54:1c:3c:dd:d6:69:f2:1c:
90:eb:29:e0:b3:66:23:20:98:32:3f:17:17:49:8d:4c:41:ca:
36:04:ed:d3:e9:70:cf:b0:dc:13:bd:04:a7:83:4a:76:df:0a:
6e:a2:d5:62:71:d9:34:c8:97:8b:55:64:1a:30:2b:21:93:03:
f6:a7:87:a2:3c:c5:e0:8b:e4:07:f6:1f:90:7a:cb:4d:2b:b8:
dd:41:43:6d:9e:86:3b:5c:2b:07:b5:2a:41:ea:b9:d9:9f:8f:
f6:25:8f:24:3d:d2:32:a6:34:3e:90:da:de:7e:03:2f:6b:e4:
b5:bb:1e:f5:46:df:76:d9:ce:28:24:4f:49:2d:58:6b:d7:92:
f4:ce:97:09:96:7c:44:50:b4:c8:84:1d:d0:af:3d:f1:ff:00:
de:5a:1d:78:c9:c2:29:2b:b8:88:b2:d2:c3:f1:4b:ed:67:06:
5e:f4:24:7b:48:d9:39:e9:90:ea:c9:d1:0d:d2:12:6a:ce:d0:
74:0d:c1:30:84:9c:0a:67:68:f0:04:0d:e7:2a:54:40:53:74:
5f:8f:73:1e:20:c7:66:01:e3:6c:6b:57:f8:5e:3e:8e:0a:03:
51:cb:99:20:d3:20:f9:19:34:21:69:23:90:bf:2f:79:15:fd:
fd:1f:d3:cf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoN8EZKZ6kla88AVYepE9elMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzYjFlYWJiZTVlZTBjMDQ5NjgwZTJhYmM5NTUzNDM5ZWM2
NDNjMGIwHhcNMjUxMDIyMjIwMDQxWhcNMjUxMDIzMjIwMDQxWjAzMTEwLwYDVQQD
EyhkMTU1Y2Q1YjQyNThhNWQwNjljMjg3OTcwMGY1M2QyZmU1ZjNiZTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgBhjhodpgCmtfgZdFV5DUVP7qws
omqoRR9RLcq4lJEL0CbaQieq/4wDO/vPHsRpQTJy3RgFx56h9SbU0dOY4JcR6diB
bMUR7YdBm4kASzw2Ia/t9K3ykZ5ARtfMEciDVW4mojw3Cs2lvdnSFQGXa3QWAili
MHfvNeGjSb4ELVj4ynSvVdZKoQVyuHNq1yeuoIxNtb1zn7H572VQZAubZp4Qg8gp
/WKg+7SKjuDW1z15yTB4X+40ZaJZfdeHt0236VnaWeT8Im4Px44KAbdv235zkdVj
bMzZC2phk/rgmu15FMPHNGf6wKaXUeeHoM23RH/q97tEAx8Z6yV2ROYxGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNFVzVtCWKXQacKHlwD1PS/l874+MB8GA1UdIwQY
MBaAFJOx6rvl7gwEloDiq8lVNDnsZDwLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xYjUxMmItMjE1OS00ZjljLWEwYmYt
OWQyOGJmNWVmM2MxLzEvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8xYjUxMmItMjE1OS00ZjljLWEwYmYtOWQyOGJmNWVmM2Mx
LzEvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMLvyDZIh
z96w5FQcPN3WafIckOsp4LNmIyCYMj8XF0mNTEHKNgTt0+lwz7DcE70Ep4NKdt8K
bqLVYnHZNMiXi1VkGjArIZMD9qeHojzF4IvkB/YfkHrLTSu43UFDbZ6GO1wrB7Uq
Qeq52Z+P9iWPJD3SMqY0PpDa3n4DL2vktbse9UbfdtnOKCRPSS1Ya9eS9M6XCZZ8
RFC0yIQd0K898f8A3lodeMnCKSu4iLLSw/FL7WcGXvQke0jZOemQ6snRDdISas7Q
dA3BMIScCmdo8AQN5ypUQFN0X49zHiDHZgHjbGtX+F4+jgoDUcuZINMg+Rk0IWkj
kL8veRX9/R/Tzw==
-----END CERTIFICATE-----
Generated at Thu Oct 23 07:01:34 2025 by rpki-client