Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.mft
File: KipfTZdgeKzXSVfxcoF-zRnQJQI.mft (raw, json)
Hash identifier: ZDUZms2RLoykASNC1jRxYRTfD2Ofgsja6ICfUSf7Vds=
Subject key identifier: 24:BF:57:9D:5D:81:C9:2B:A6:E2:CB:2C:66:51:2C:53:3C:F1:AC:25
Authority key identifier: 2A:2A:5F:4D:97:60:78:AC:D7:49:57:F1:72:81:7E:CD:19:D0:25:02
Certificate issuer: /CN=2a2a5f4d976078acd74957f172817ecd19d02502
Certificate serial: 019A70A50960F42868B16DAF079C8C251780
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KipfTZdgeKzXSVfxcoF-zRnQJQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.mft
Manifest number: B6
Signing time: Tue 11 Nov 2025 02:00:55 +0000
Manifest this update: Tue 11 Nov 2025 02:00:55 +0000
Manifest next update: Wed 12 Nov 2025 02:00:55 +0000
Files and hashes: 1: KipfTZdgeKzXSVfxcoF-zRnQJQI.crl (hash: 7rcqhs6Ckm5rNwSEaq9f/72eaAngjuoaclQc+RiIQxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KipfTZdgeKzXSVfxcoF-zRnQJQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:09:60:f4:28:68:b1:6d:af:07:9c:8c:25:17:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a2a5f4d976078acd74957f172817ecd19d02502
Validity
Not Before: Nov 11 02:00:55 2025 GMT
Not After : Nov 12 02:00:55 2025 GMT
Subject: CN=24bf579d5d81c92ba6e2cb2c66512c533cf1ac25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:44:2b:d9:0a:88:84:e4:38:9d:39:ab:04:37:
97:2b:42:0c:bc:b8:a0:5b:c1:33:02:c7:e9:21:07:
28:aa:e9:d7:95:18:14:54:fc:48:41:48:d4:08:8d:
b0:7a:bf:48:1f:62:9a:ae:8e:1d:1f:81:55:6f:75:
f6:50:96:cf:c4:8d:8f:ca:53:74:48:0b:54:a0:52:
76:20:4d:4e:77:ce:43:17:b7:86:91:76:67:37:cc:
0b:d9:8a:63:a9:c5:15:9c:66:0c:62:3d:09:8e:cb:
af:18:8c:6d:95:49:9e:48:d4:27:3a:82:42:62:80:
24:3c:6c:f8:94:c6:81:68:7b:fa:8b:09:38:a1:09:
98:a8:82:c0:9c:23:c7:a5:33:51:2c:db:d7:58:66:
98:30:0f:2a:36:87:b0:c3:2a:76:54:53:23:c6:0d:
d7:8c:83:d4:40:cc:4f:f5:56:ea:de:ed:6a:51:ea:
83:46:3a:43:3c:04:36:29:6b:3e:3d:29:0e:bd:c0:
48:fd:d4:df:39:b1:5f:54:a4:06:96:e5:2b:fa:16:
ec:29:4e:f5:74:08:e2:36:2d:0f:bc:ce:57:ed:a3:
9a:95:e4:3d:fc:f8:98:cd:8b:cb:da:e9:e5:a9:a6:
0c:53:36:d1:0a:83:81:a9:71:d5:be:a7:e5:ae:81:
93:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BF:57:9D:5D:81:C9:2B:A6:E2:CB:2C:66:51:2C:53:3C:F1:AC:25
X509v3 Authority Key Identifier:
keyid:2A:2A:5F:4D:97:60:78:AC:D7:49:57:F1:72:81:7E:CD:19:D0:25:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KipfTZdgeKzXSVfxcoF-zRnQJQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/35049e-223d-4908-9754-38bac139c844/1/KipfTZdgeKzXSVfxcoF-zRnQJQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:ba:41:3b:a2:9c:85:e3:34:4d:07:de:3f:07:1c:96:65:01:
1c:0b:e9:58:b5:4b:06:09:06:88:37:37:cb:1d:0b:25:08:49:
99:f1:b7:69:f9:c8:2c:93:16:2b:ba:1a:f8:e8:ad:04:a2:16:
f8:54:e8:85:20:3f:50:1c:80:10:26:ae:88:da:f0:6f:d1:5d:
ad:e9:31:02:0d:2e:a1:da:8e:10:17:0c:8c:33:91:e7:b1:4a:
ad:b6:95:b5:b3:80:d7:f4:ca:1c:f1:15:79:ff:51:c9:74:12:
41:8c:77:da:00:4e:1b:81:82:c2:4a:34:38:a8:fe:25:c8:c7:
6d:80:5a:db:8f:7b:06:b3:8b:91:10:c2:57:af:93:ee:c9:01:
8d:d1:c6:0a:27:c2:13:7c:01:6e:ad:7c:bb:21:80:7c:08:20:
12:67:f1:33:7b:e0:c7:ea:e6:8a:2b:d5:cf:d5:d1:11:99:80:
dd:ae:65:f1:c6:8c:97:c2:b1:d2:88:7a:8b:1e:34:98:25:11:
3d:e7:e7:dd:21:2d:69:b0:a0:03:a2:64:3e:84:29:2f:ec:74:
67:07:da:ff:d4:63:b0:93:03:7e:ff:c8:81:7c:ae:29:19:84:
93:b0:8c:72:68:23:6d:3c:e2:a3:46:d8:1f:e9:60:08:d8:78:
63:17:1d:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpwpQlg9ChosW2vB5yMJReAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMmE1ZjRkOTc2MDc4YWNkNzQ5NTdmMTcyODE3ZWNkMTlk
MDI1MDIwHhcNMjUxMTExMDIwMDU1WhcNMjUxMTEyMDIwMDU1WjAzMTEwLwYDVQQD
EygyNGJmNTc5ZDVkODFjOTJiYTZlMmNiMmM2NjUxMmM1MzNjZjFhYzI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0Qr2QqIhOQ4nTmrBDeXK0IMvLig
W8EzAsfpIQcoqunXlRgUVPxIQUjUCI2wer9IH2Karo4dH4FVb3X2UJbPxI2PylN0
SAtUoFJ2IE1Od85DF7eGkXZnN8wL2YpjqcUVnGYMYj0JjsuvGIxtlUmeSNQnOoJC
YoAkPGz4lMaBaHv6iwk4oQmYqILAnCPHpTNRLNvXWGaYMA8qNoewwyp2VFMjxg3X
jIPUQMxP9Vbq3u1qUeqDRjpDPAQ2KWs+PSkOvcBI/dTfObFfVKQGluUr+hbsKU71
dAjiNi0PvM5X7aOaleQ9/PiYzYvL2unlqaYMUzbRCoOBqXHVvqflroGTSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCS/V51dgckrpuLLLGZRLFM88awlMB8GA1UdIwQY
MBaAFCoqX02XYHis10lX8XKBfs0Z0CUCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2lwZlRaZGdlS3pYU1ZmeGNvRi16Um5RSlFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zNTA0OWUtMjIzZC00OTA4LTk3NTQt
MzhiYWMxMzljODQ0LzEvS2lwZlRaZGdlS3pYU1ZmeGNvRi16Um5RSlFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8zNTA0OWUtMjIzZC00OTA4LTk3NTQtMzhiYWMxMzljODQ0
LzEvS2lwZlRaZGdlS3pYU1ZmeGNvRi16Um5RSlFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADrpBO6Kc
heM0TQfePwcclmUBHAvpWLVLBgkGiDc3yx0LJQhJmfG3afnILJMWK7oa+OitBKIW
+FTohSA/UByAECauiNrwb9FdrekxAg0uodqOEBcMjDOR57FKrbaVtbOA1/TKHPEV
ef9RyXQSQYx32gBOG4GCwko0OKj+JcjHbYBa2497BrOLkRDCV6+T7skBjdHGCifC
E3wBbq18uyGAfAggEmfxM3vgx+rmiivVz9XREZmA3a5l8caMl8Kx0oh6ix40mCUR
Pefn3SEtabCgA6JkPoQpL+x0Zwfa/9RjsJMDfv/IgXyuKRmEk7CMcmgjbTzio0bY
H+lgCNh4YxcdKA==
-----END CERTIFICATE-----
Generated at Tue Nov 11 11:24:59 2025 by rpki-client