Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: cdxUHHTLpDJYyLQMesssvafDgsrtLc57JUaltOiQ4I4=
Subject key identifier: DA:31:6E:63:92:18:9C:65:13:35:EB:45:B7:FD:1C:A8:5F:6B:66:1C
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 019A24E5D800FFAC63304CA71D1D3FC0D150
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 16F6
Signing time: Mon 27 Oct 2025 09:00:34 +0000
Manifest this update: Mon 27 Oct 2025 09:00:34 +0000
Manifest next update: Tue 28 Oct 2025 09:00:34 +0000
Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=)
2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: jFVg9RS5hWRtv6BXmnrGzlg74qWBDpklzb4InVdRNAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 08:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:e5:d8:00:ff:ac:63:30:4c:a7:1d:1d:3f:c0:d1:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Oct 27 09:00:34 2025 GMT
Not After : Oct 28 09:00:34 2025 GMT
Subject: CN=da316e6392189c651335eb45b7fd1ca85f6b661c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:72:90:c2:4d:35:3e:5b:31:c1:a7:be:b1:fa:
d0:96:97:7a:eb:cc:4b:86:5e:14:50:dc:4c:f0:4e:
d2:37:aa:8d:1c:2e:d6:2e:97:98:cd:09:26:45:73:
1c:d2:3a:ab:b9:64:58:60:d4:8b:7e:42:23:c2:08:
c6:e2:1c:a9:10:ed:71:b6:d5:39:f0:27:bf:1e:6f:
d6:0d:ca:95:c6:9b:6b:b6:11:09:ae:0e:9d:ff:0d:
75:73:ba:61:e7:fb:59:79:58:79:b7:a5:29:95:58:
fb:53:61:fa:5f:a0:0e:ec:49:63:0a:87:f6:f8:3b:
dc:53:f3:c8:8b:57:21:bf:2d:d2:80:94:0a:06:93:
14:c1:4c:6b:fb:e9:07:81:46:18:79:a7:6d:8a:e2:
9a:48:dc:8f:c5:1c:3b:04:2b:91:b7:fd:dc:92:ed:
43:1b:e0:2a:ee:52:65:f6:15:43:bc:6b:98:b4:8c:
6a:7d:46:96:f2:68:b2:97:cb:94:34:4b:bd:87:99:
dc:a6:70:7a:22:42:30:22:39:80:84:03:3b:50:6f:
3c:33:d6:fe:77:d9:93:42:92:21:d5:e0:88:5b:00:
c4:2d:49:6b:9d:fb:c2:3c:09:86:29:63:ba:69:a7:
1a:f2:81:f0:95:a0:f9:6a:69:1e:97:e0:cc:16:b6:
29:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:31:6E:63:92:18:9C:65:13:35:EB:45:B7:FD:1C:A8:5F:6B:66:1C
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:57:0f:f8:7d:de:b5:6a:15:2b:4d:f8:c3:35:95:21:6c:fa:
5e:45:8f:fe:00:22:d5:94:23:96:6a:89:a9:3f:a4:31:a9:37:
c7:a9:9b:94:de:1e:1b:da:49:3d:03:3e:ca:4d:fe:6e:54:16:
f7:b6:75:9e:33:20:5f:ba:c5:18:e5:77:96:8a:ac:6a:65:5c:
d9:a9:b9:40:90:91:7a:fa:2f:e2:43:b7:e1:ac:56:5f:c2:33:
f9:95:9d:f8:a2:da:db:42:29:15:f7:a1:a0:db:cd:70:cf:f6:
3f:d2:09:30:a0:b4:68:92:2c:4c:a9:cc:d9:2d:82:de:d4:8a:
70:d8:9a:45:ba:12:21:42:ff:f9:9c:fa:c6:ed:0e:eb:04:0e:
f4:88:57:0b:8a:84:c8:90:e3:33:75:5f:77:40:76:1f:f5:87:
d9:4e:6e:21:fb:01:af:6d:ff:e5:3b:7a:69:ce:b1:c2:9d:51:
21:94:67:03:d1:86:19:89:5b:79:9d:f5:7b:31:ab:a2:72:eb:
bc:5b:c6:a5:93:21:d1:e7:56:a5:29:0d:07:88:c6:71:64:cf:
eb:52:6b:ea:da:e2:75:95:da:69:0a:d6:97:10:e9:99:88:6d:
c4:25:af:9f:87:a4:da:28:33:ee:35:1c:86:a8:3b:87:a5:0c:
09:5c:86:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZok5dgA/6xjMEynHR0/wNFQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYjNhM2EwZDY2MmQxNGRhODQwNGJkMjFkYzQ4OWU2Mzk0
NTYyNGUwHhcNMjUxMDI3MDkwMDM0WhcNMjUxMDI4MDkwMDM0WjAzMTEwLwYDVQQD
EyhkYTMxNmU2MzkyMTg5YzY1MTMzNWViNDViN2ZkMWNhODVmNmI2NjFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHKQwk01Plsxwae+sfrQlpd668xL
hl4UUNxM8E7SN6qNHC7WLpeYzQkmRXMc0jqruWRYYNSLfkIjwgjG4hypEO1xttU5
8Ce/Hm/WDcqVxptrthEJrg6d/w11c7ph5/tZeVh5t6UplVj7U2H6X6AO7EljCof2
+DvcU/PIi1chvy3SgJQKBpMUwUxr++kHgUYYeadtiuKaSNyPxRw7BCuRt/3cku1D
G+Aq7lJl9hVDvGuYtIxqfUaW8miyl8uUNEu9h5ncpnB6IkIwIjmAhAM7UG88M9b+
d9mTQpIh1eCIWwDELUlrnfvCPAmGKWO6aaca8oHwlaD5amkel+DMFrYp6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNoxbmOSGJxlEzXrRbf9HKhfa2YcMB8GA1UdIwQY
MBaAFJCzo6DWYtFNqEBL0h3EieY5RWJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQt
Mjg4Y2ZkMWMyYTNkLzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQtMjg4Y2ZkMWMyYTNk
LzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEFcP+H3e
tWoVK034wzWVIWz6XkWP/gAi1ZQjlmqJqT+kMak3x6mblN4eG9pJPQM+yk3+blQW
97Z1njMgX7rFGOV3loqsamVc2am5QJCRevov4kO34axWX8Iz+ZWd+KLa20IpFfeh
oNvNcM/2P9IJMKC0aJIsTKnM2S2C3tSKcNiaRboSIUL/+Zz6xu0O6wQO9IhXC4qE
yJDjM3Vfd0B2H/WH2U5uIfsBr23/5Tt6ac6xwp1RIZRnA9GGGYlbeZ31ezGronLr
vFvGpZMh0edWpSkNB4jGcWTP61Jr6tridZXaaQrWlxDpmYhtxCWvn4ek2igz7jUc
hqg7h6UMCVyGyQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 12:24:57 2025 by rpki-client