Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
File: kFLex7dhf-OchVDuIMOCIBq5ryo.mft (raw, json)
Hash identifier: 5/1jSrsiZg7eQ/YUzTw3P5441CpJh6A6dxsMI3gogwU=
Subject key identifier: 75:FD:A5:E0:1F:90:86:26:0A:5A:4E:70:E0:D4:D1:1E:81:A4:A0:17
Authority key identifier: 90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
Certificate issuer: /CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Certificate serial: 019A2C315DD897E8265AFBBFE3BB4816343A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
Manifest number: 1183
Signing time: Tue 28 Oct 2025 19:00:23 +0000
Manifest this update: Tue 28 Oct 2025 19:00:23 +0000
Manifest next update: Wed 29 Oct 2025 19:00:23 +0000
Files and hashes: 1: DoqnptEmFDIWhd5INYDJmXuCj7c.roa (hash: knJh69OYwi71VIfestV+KfQIeq85PlXtAbjPJg+Zm8w=)
2: kFLex7dhf-OchVDuIMOCIBq5ryo.crl (hash: m92EEI+ih83I0ZxOoRG1I4t0W1gXMyxmU0XxAMzjRD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 14:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2c:31:5d:d8:97:e8:26:5a:fb:bf:e3:bb:48:16:34:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9052dec7b7617fe39c8550ee20c382201ab9af2a
Validity
Not Before: Oct 28 19:00:23 2025 GMT
Not After : Oct 29 19:00:23 2025 GMT
Subject: CN=75fda5e01f9086260a5a4e70e0d4d11e81a4a017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ef:b4:cf:9a:78:d7:4a:4d:7b:74:0c:0d:b7:
3b:16:a1:6a:07:bd:40:37:85:be:4e:f0:44:79:1a:
b1:0e:9e:05:45:c5:a9:81:50:53:0d:9a:d3:88:51:
e7:f3:e5:a8:22:af:9f:e9:33:3f:ef:9e:10:40:44:
f4:d4:0d:08:6b:4b:9f:36:d0:2a:c2:7c:0a:1e:b7:
fa:e1:83:a5:d7:8b:ea:bf:6d:61:42:04:4d:29:3d:
9f:4f:c3:f6:cc:31:39:76:dc:12:00:47:69:aa:bd:
c0:e4:3d:07:8e:8b:34:9a:cc:4a:30:36:89:35:14:
9d:88:7d:7d:25:cc:3a:d0:be:1e:9e:a7:46:96:1a:
f1:9b:29:4e:77:5e:1a:3c:1b:2c:c2:f0:d1:4b:00:
2e:d3:17:1d:0e:3a:68:50:b0:25:c1:d7:85:25:6f:
c0:26:05:7e:69:ac:2a:ce:e0:36:d1:a5:03:5e:25:
ae:f2:f6:05:9f:83:66:d5:0e:03:11:c7:02:90:ba:
b2:62:2b:61:8b:5b:01:95:d3:60:3a:08:71:f1:ae:
90:21:58:e8:0d:3c:cf:d3:e4:f4:e4:bf:52:cc:a7:
f4:eb:e7:78:3c:7d:2f:60:94:57:88:96:4c:9e:cf:
12:61:ef:42:4d:48:37:a6:4c:ce:b1:5b:47:39:1f:
f1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:FD:A5:E0:1F:90:86:26:0A:5A:4E:70:E0:D4:D1:1E:81:A4:A0:17
X509v3 Authority Key Identifier:
keyid:90:52:DE:C7:B7:61:7F:E3:9C:85:50:EE:20:C3:82:20:1A:B9:AF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kFLex7dhf-OchVDuIMOCIBq5ryo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e9a7a1-e9fe-47d4-ae32-df0a44800aa5/1/kFLex7dhf-OchVDuIMOCIBq5ryo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:82:29:d9:8c:67:db:b1:b7:be:e9:5d:7b:f5:3b:db:75:19:
e5:1b:65:0a:e8:f4:53:5f:00:95:a0:cf:ff:c9:76:bf:9d:71:
50:66:1a:ea:ab:81:5f:fd:a6:3d:15:9b:4f:5f:15:a6:2b:d2:
75:6b:f8:72:0e:ec:9b:e7:32:25:37:f9:b1:5b:40:ae:2d:6c:
8d:b4:6c:b2:0d:6b:af:28:a4:61:c7:ca:c8:d2:38:aa:e2:44:
cb:39:ae:22:09:24:19:19:50:57:f7:b5:05:54:0f:b5:7e:79:
d5:e0:bb:a3:a0:80:fb:55:fc:d1:7f:0b:e3:80:c9:8a:04:1b:
ae:34:5e:e1:40:ff:b1:ae:1b:f5:94:58:b0:e4:2c:d1:ce:4b:
82:01:c7:50:1e:cd:3a:21:8c:f2:25:40:41:3a:19:ff:fe:36:
b9:26:2c:1a:3f:29:35:4f:6d:5f:90:ae:38:00:9b:0f:6a:46:
22:85:ee:f8:3b:2c:e7:9a:11:93:86:95:3b:ff:e6:84:9b:0a:
00:d7:8a:72:59:55:f6:19:25:7e:f2:f4:d1:37:29:1c:d2:66:
d6:e2:8f:3c:28:ca:34:46:33:19:8a:3e:ec:fc:bb:36:7b:6b:
99:9f:88:ad:61:5c:45:37:85:55:cf:0d:c0:ec:22:16:8f:3d:
3e:64:b5:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZosMV3Yl+gmWvu/47tIFjQ6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNTJkZWM3Yjc2MTdmZTM5Yzg1NTBlZTIwYzM4MjIwMWFi
OWFmMmEwHhcNMjUxMDI4MTkwMDIzWhcNMjUxMDI5MTkwMDIzWjAzMTEwLwYDVQQD
Eyg3NWZkYTVlMDFmOTA4NjI2MGE1YTRlNzBlMGQ0ZDExZTgxYTRhMDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6e+0z5p410pNe3QMDbc7FqFqB71A
N4W+TvBEeRqxDp4FRcWpgVBTDZrTiFHn8+WoIq+f6TM/754QQET01A0Ia0ufNtAq
wnwKHrf64YOl14vqv21hQgRNKT2fT8P2zDE5dtwSAEdpqr3A5D0Hjos0msxKMDaJ
NRSdiH19Jcw60L4enqdGlhrxmylOd14aPBsswvDRSwAu0xcdDjpoULAlwdeFJW/A
JgV+aawqzuA20aUDXiWu8vYFn4Nm1Q4DEccCkLqyYithi1sBldNgOghx8a6QIVjo
DTzP0+T05L9SzKf06+d4PH0vYJRXiJZMns8SYe9CTUg3pkzOsVtHOR/xwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHX9peAfkIYmClpOcODU0R6BpKAXMB8GA1UdIwQY
MBaAFJBS3se3YX/jnIVQ7iDDgiAaua8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0ZMZXg3ZGhmLU9jaFZEdUlNT0NJQnE1cnlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9lOWE3YTEtZTlmZS00N2Q0LWFlMzIt
ZGYwYTQ0ODAwYWE1LzEva0ZMZXg3ZGhmLU9jaFZEdUlNT0NJQnE1cnlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9lOWE3YTEtZTlmZS00N2Q0LWFlMzItZGYwYTQ0ODAwYWE1
LzEva0ZMZXg3ZGhmLU9jaFZEdUlNT0NJQnE1cnlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqIIp2Yxn
27G3vulde/U723UZ5RtlCuj0U18AlaDP/8l2v51xUGYa6quBX/2mPRWbT18VpivS
dWv4cg7sm+cyJTf5sVtAri1sjbRssg1rryikYcfKyNI4quJEyzmuIgkkGRlQV/e1
BVQPtX551eC7o6CA+1X80X8L44DJigQbrjRe4UD/sa4b9ZRYsOQs0c5LggHHUB7N
OiGM8iVAQToZ//42uSYsGj8pNU9tX5CuOACbD2pGIoXu+Dss55oRk4aVO//mhJsK
ANeKcllV9hklfvL00TcpHNJm1uKPPCjKNEYzGYo+7Py7NntrmZ+IrWFcRTeFVc8N
wOwiFo89PmS11g==
-----END CERTIFICATE-----
Generated at Tue Oct 28 20:59:16 2025 by rpki-client