Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier: cTTTwcxyLnIjrSKv216m6B8SryBD6/n8JhU+81rpL+k=
Subject key identifier: C9:A7:BA:EC:95:2A:78:BC:9B:A9:45:8D:61:00:E7:A9:17:68:AA:48
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 019A1F1AEBCFB4AB10022A2366AA76298707
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number: 0AE8
Signing time: Sun 26 Oct 2025 06:00:49 +0000
Manifest this update: Sun 26 Oct 2025 06:00:49 +0000
Manifest next update: Mon 27 Oct 2025 06:00:49 +0000
Files and hashes: 1: REM4mLJG7EnsBgBtsv162D0wKhg.roa (hash: lvlcTJIeXHpqeTqGfZTwiMwS8+bWAY5YDqELcR5epC0=)
2: Tkqht9ZvM7aeuWPx5RB29sIJQsY.roa (hash: GjW60rpkATBwTZcA2wdYPAVMSlJOCTBR0jsl1OrgYgE=)
3: XddNSlbeSdL2BDOBSBtXKwmbrLQ.roa (hash: YTwv2DMMu/UpDiaZkqxeVtYaDul2+Oka8KEh6z36NkA=)
4: b10-uyzSDsE84X1NxkfqXsdCqjM.roa (hash: 656/1JM/Gtv27/XvapYOtDJ81ebQFKIEF9n9ARvTwoo=)
5: bXzPu6L2HXchD9ZujQmLXPM_bDM.roa (hash: KqR406WMI/nRws1aNrGcGP+z2vKLl1H8bxnYaFt2+LA=)
6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: xqJzGhtRo1YrGC3FC4v1fan7Lhl8lsdcwnVUBSYg6HM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:1a:eb:cf:b4:ab:10:02:2a:23:66:aa:76:29:87:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Oct 26 06:00:49 2025 GMT
Not After : Oct 27 06:00:49 2025 GMT
Subject: CN=c9a7baec952a78bc9ba9458d6100e7a91768aa48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a7:73:34:11:2d:ef:5c:c0:e2:32:18:01:fb:
92:cf:bd:44:a4:f0:15:28:2c:3b:2d:6c:68:8d:17:
de:f6:36:81:92:f9:6f:75:8e:5f:b4:35:59:9d:16:
d7:6e:02:ec:41:59:fc:10:5c:f3:04:55:d1:9b:7e:
f8:95:ff:da:f9:40:04:f6:f1:de:5c:5e:33:46:f2:
c7:a2:9e:9f:ef:00:19:3a:0a:85:59:bc:7b:3a:c0:
0d:76:4e:f5:f7:2e:94:f4:8d:7d:13:b3:03:a5:ff:
ad:4f:a5:ed:db:e9:4c:bf:4d:c3:c8:79:52:e4:d9:
b4:b0:49:7e:95:63:5f:93:af:1d:63:5a:34:87:52:
d3:9b:96:fb:91:0f:35:3f:09:ad:d0:76:d2:f9:1a:
4f:70:5e:f5:b5:c0:fd:e8:ee:71:25:24:7a:0f:1b:
24:cb:18:dd:d1:2a:fc:17:dc:e2:90:01:ee:24:4c:
da:06:a9:7e:32:0b:ea:23:c9:b7:07:1d:c3:ef:b2:
c9:39:5a:c5:8c:45:cc:e0:27:18:e7:35:06:d3:f7:
ca:ae:97:78:20:43:4b:e8:f3:b5:06:fc:54:d3:11:
7e:d2:3f:e9:e8:66:ec:71:5d:0a:46:1d:7c:d9:8c:
1b:b2:8c:40:d0:d8:f3:83:fe:7b:3e:34:c2:c8:fe:
9f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:A7:BA:EC:95:2A:78:BC:9B:A9:45:8D:61:00:E7:A9:17:68:AA:48
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:89:4c:e7:f5:24:34:b6:0f:73:51:dc:c5:4a:43:10:25:cc:
85:16:2c:cb:be:48:7f:78:bc:74:12:d4:56:83:31:c3:46:9f:
77:10:8b:9d:d9:e5:36:81:27:3c:ab:52:59:3d:95:80:58:8d:
58:76:54:5b:8a:a4:40:60:30:9a:5e:b2:5f:bd:53:7e:74:dc:
95:2b:27:ea:e7:33:f4:23:84:f4:c6:1e:4b:da:89:7d:10:a0:
85:ea:25:29:de:be:b8:63:ff:c0:24:ce:b1:22:af:5e:3f:ad:
a1:1e:ce:bd:09:a8:84:77:58:2a:a0:24:a1:37:ba:93:ad:c0:
ce:2b:5f:24:38:e4:fa:b8:ee:a8:14:c4:8d:99:7a:88:6d:0d:
ac:74:3a:6d:87:cc:1b:a3:00:c5:f5:af:14:98:5a:77:8b:b3:
bc:de:52:02:83:cc:e3:76:9c:35:31:9c:35:54:16:69:48:7e:
eb:83:71:a4:5e:b4:37:9b:4f:c3:d0:5b:22:83:02:80:90:50:
c6:0e:aa:16:65:68:c0:41:3f:44:8e:07:0a:cb:db:f3:d6:fb:
45:80:bd:e4:29:20:d3:f6:30:f6:45:e8:24:9b:7b:9e:c8:4f:
66:cf:20:e5:47:64:ad:13:79:cd:fa:f0:9e:ef:53:99:4f:d3:
39:71:7f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 11:13:49 2025 by rpki-client