Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
File: kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json)
Hash identifier: UnyTpR93KzXn6mrfOxWzNlhk+8+Uk7wBoT0+q1I16Ng=
Subject key identifier: 3B:E1:D1:3D:2B:30:AA:78:34:A8:3D:62:C6:BA:15:9A:C3:8C:F4:CD
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 019A1FBFA07319A20088C05FAE4E3581A1C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
Manifest number: 16F5
Signing time: Sun 26 Oct 2025 09:00:43 +0000
Manifest this update: Sun 26 Oct 2025 09:00:43 +0000
Manifest next update: Mon 27 Oct 2025 09:00:43 +0000
Files and hashes: 1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=)
2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=)
3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=)
4: cM2WijieWcfz1get8DBHQkXXH94.roa (hash: YN463PMg+163k21SmND+h8gKso19maJII2obZdv1r0M=)
5: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: I/sNhASjMBdOu0crVF1ZTXEDi0Qb5wZKfmWzoKVeKXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 03:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:1f:bf:a0:73:19:a2:00:88:c0:5f:ae:4e:35:81:a1:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Oct 26 09:00:43 2025 GMT
Not After : Oct 27 09:00:43 2025 GMT
Subject: CN=3be1d13d2b30aa7834a83d62c6ba159ac38cf4cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d0:67:27:58:b1:da:db:a8:af:53:a4:3d:ae:
a8:1a:54:20:6e:d9:89:12:f0:f6:9a:6a:3d:d7:69:
3f:87:0e:4d:c0:1e:d7:25:65:a4:94:20:77:fa:c4:
9e:a0:28:9d:27:6b:39:bd:00:44:3c:bc:8c:da:ef:
49:f2:f0:d5:da:33:4f:3a:8d:63:ed:71:bd:02:5f:
b6:f3:3f:5b:82:53:2c:ce:84:c3:67:56:92:ca:91:
55:62:de:b9:e1:8f:e6:b1:89:1c:f3:58:ff:44:77:
63:c5:e1:0f:8f:d3:d0:9e:e7:49:b0:e2:7f:3e:35:
33:f8:ed:7d:fc:4c:cf:41:1d:81:76:05:4e:c6:1d:
d3:64:58:1e:fc:93:9d:2e:b7:fb:54:45:be:fb:93:
83:6a:b5:2f:79:5d:9c:89:f8:44:5b:72:31:c5:40:
a8:89:20:07:97:c6:39:4f:f7:8a:d8:a1:ce:f1:91:
dd:1e:ca:e2:9c:3c:46:98:c7:bd:c2:d3:2f:f9:49:
3d:c1:4d:9a:29:c1:f1:a8:bf:fd:7c:33:d6:3d:ec:
44:56:82:23:1d:f4:b8:dc:a0:a4:1c:b5:91:e0:9d:
b2:ef:3a:0d:9e:b3:39:40:42:7a:30:8e:a0:25:94:
c5:b4:55:fd:63:0c:92:74:67:64:f7:8a:1c:a2:9d:
09:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E1:D1:3D:2B:30:AA:78:34:A8:3D:62:C6:BA:15:9A:C3:8C:F4:CD
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:2a:35:14:1a:a3:b1:ef:be:08:4c:4c:20:53:4e:ea:fd:02:
10:af:de:28:85:78:f9:d2:a4:9c:f6:5f:23:03:31:dd:4e:9c:
25:a3:84:34:bb:e1:ec:47:ca:65:e8:bb:97:69:29:2d:e0:b5:
ae:a1:46:a3:1d:fa:c1:20:d6:f7:22:76:a8:ea:1d:43:22:69:
db:e7:27:5e:bc:87:47:08:33:8c:12:98:1d:f0:76:bd:cf:53:
9b:9c:09:e8:27:e8:d2:21:cb:33:0d:a5:76:66:ff:2e:58:4d:
15:15:cc:71:d0:06:07:74:1e:b3:78:63:6e:0e:01:e4:51:cf:
6b:f0:d1:75:db:51:be:79:e8:1b:41:a2:94:d6:23:22:48:15:
e8:6e:40:a4:38:a8:5e:e8:02:05:31:f7:50:25:46:06:8e:b9:
dc:97:6e:43:2b:06:31:75:ff:31:c0:b7:8b:60:c6:d0:43:58:
5b:09:a6:d8:8f:d5:7f:a4:f4:dd:e9:1c:10:79:e9:07:f5:4b:
6d:6a:d4:aa:ab:f9:66:0e:f8:b4:c0:40:7a:0e:42:f9:ee:09:
84:42:79:f0:65:84:c0:33:cb:a9:97:01:19:72:ae:92:f5:f2:
2f:0a:43:6f:20:f8:a2:6b:e5:3c:5b:36:86:f4:71:9f:9e:a0:
e4:44:fd:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 12:27:01 2025 by rpki-client