Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
File: KMvNlssXsh1iT9IXD9DXCBY68j0.mft (raw, json)
Hash identifier: p/unz19P3LZpxY4KFQazk3N12j8gsAG2MU5/gxSIDkg=
Subject key identifier: 54:15:DA:5F:83:49:82:3E:9E:E8:64:31:74:6C:EE:A2:03:8E:6D:15
Authority key identifier: 28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
Certificate issuer: /CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Certificate serial: 019A71B8794BA39B47169CCD2C56F2A597FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
Manifest number: 1047
Signing time: Tue 11 Nov 2025 07:01:46 +0000
Manifest this update: Tue 11 Nov 2025 07:01:46 +0000
Manifest next update: Wed 12 Nov 2025 07:01:46 +0000
Files and hashes: 1: KMvNlssXsh1iT9IXD9DXCBY68j0.crl (hash: 3zubSka/bjCkAXHlcZ52VDCsl5UUPC48iAKDhWT8EGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:79:4b:a3:9b:47:16:9c:cd:2c:56:f2:a5:97:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Validity
Not Before: Nov 11 07:01:46 2025 GMT
Not After : Nov 12 07:01:46 2025 GMT
Subject: CN=5415da5f8349823e9ee86431746ceea2038e6d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:01:1c:79:4d:e8:b3:b3:79:76:33:5e:33:ab:
c2:d3:04:7f:fb:f7:32:97:1b:84:8e:fb:fa:9b:e9:
17:b6:15:9c:79:be:85:4d:3e:58:1b:9a:e4:f4:55:
ec:ee:eb:a8:aa:b8:44:91:da:14:99:f6:fb:88:df:
89:0b:ce:df:c3:ba:57:3e:b7:7d:62:dc:f2:31:ee:
03:27:27:2b:52:ca:e8:24:69:9a:57:76:b1:e6:7f:
71:7f:44:7f:f6:50:41:76:49:56:99:ed:a3:3f:5e:
6c:00:b1:ea:8c:5f:76:72:91:38:10:b6:e4:51:e2:
11:4d:4a:48:c5:00:59:a5:bf:fa:22:e3:48:a7:87:
8a:61:44:b4:b3:63:47:e3:b5:0a:e5:34:83:67:c0:
1c:7e:94:5e:34:6c:96:ad:77:35:5d:bf:09:f8:bb:
c7:fd:0f:e6:bf:28:ea:f9:85:80:9b:69:81:83:6e:
75:ed:06:e1:c7:e7:ec:29:13:b9:fe:86:3e:ef:fb:
25:a6:c9:54:f1:24:67:54:4a:65:e3:01:49:62:9f:
06:f9:17:13:a7:0b:e1:84:0b:36:65:79:76:33:87:
dd:37:5a:79:df:f9:15:8b:c5:18:67:8d:8a:98:6f:
06:72:43:2c:21:a9:3e:cd:4c:2e:22:ee:e2:6c:7e:
e5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:15:DA:5F:83:49:82:3E:9E:E8:64:31:74:6C:EE:A2:03:8E:6D:15
X509v3 Authority Key Identifier:
keyid:28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:99:22:46:99:b4:14:5f:75:9c:a0:db:f9:6e:6c:0b:42:22:
ab:37:d1:60:73:22:21:02:ed:f5:23:4c:f5:d9:58:f1:84:e3:
0f:02:ba:d3:a8:0f:c4:e2:d5:d9:87:7d:d1:d7:42:46:9e:ea:
39:1f:07:db:6c:73:8b:66:c0:a8:00:8f:65:c6:38:c1:16:1e:
94:e0:a0:3d:27:f8:56:3e:33:ad:a3:b9:99:8f:87:74:1e:d9:
e8:d7:de:f6:13:7e:ab:02:32:0b:43:46:27:22:39:ee:d6:e1:
2c:d7:02:85:3a:ad:08:08:0c:c4:3a:cc:24:e9:9b:81:99:f1:
c5:be:b3:b7:a0:5e:db:55:62:21:af:5f:9e:cb:b4:ad:e1:9f:
bc:10:a0:4a:4e:f9:de:87:53:8d:51:39:f1:86:d6:b3:82:59:
5c:df:8e:86:9d:f7:37:55:86:c1:08:d3:c1:cb:07:36:cc:11:
99:4c:4c:14:7d:06:67:d4:fc:a8:c0:9f:39:6b:02:c2:29:1a:
bd:86:6a:57:00:06:1c:9b:23:e1:62:d5:7a:ec:6a:ab:33:0c:
40:b4:cd:a3:d6:70:e0:b9:a0:8b:b9:4a:b5:8a:f4:93:e0:6c:
75:f6:a9:82:0e:15:f4:dc:7c:38:f2:26:f4:dc:cb:26:7a:ae:
47:3f:a2:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuHlLo5tHFpzNLFbypZf7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4Y2JjZDk2Y2IxN2IyMWQ2MjRmZDIxNzBmZDBkNzA4MTYz
YWYyM2QwHhcNMjUxMTExMDcwMTQ2WhcNMjUxMTEyMDcwMTQ2WjAzMTEwLwYDVQQD
Eyg1NDE1ZGE1ZjgzNDk4MjNlOWVlODY0MzE3NDZjZWVhMjAzOGU2ZDE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QEceU3os7N5djNeM6vC0wR/+/cy
lxuEjvv6m+kXthWceb6FTT5YG5rk9FXs7uuoqrhEkdoUmfb7iN+JC87fw7pXPrd9
YtzyMe4DJycrUsroJGmaV3ax5n9xf0R/9lBBdklWme2jP15sALHqjF92cpE4ELbk
UeIRTUpIxQBZpb/6IuNIp4eKYUS0s2NH47UK5TSDZ8AcfpReNGyWrXc1Xb8J+LvH
/Q/mvyjq+YWAm2mBg2517Qbhx+fsKRO5/oY+7/slpslU8SRnVEpl4wFJYp8G+RcT
pwvhhAs2ZXl2M4fdN1p53/kVi8UYZ42KmG8GckMsIak+zUwuIu7ibH7lmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFQV2l+DSYI+nuhkMXRs7qIDjm0VMB8GA1UdIwQY
MBaAFCjLzZbLF7IdYk/SFw/Q1wgWOvI9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82ZTQwZWUtNzkzNS00MWE5LThlZTct
ZjlhNjk0NDlkNWZhLzEvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC82ZTQwZWUtNzkzNS00MWE5LThlZTctZjlhNjk0NDlkNWZh
LzEvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIpkiRpm0
FF91nKDb+W5sC0IiqzfRYHMiIQLt9SNM9dlY8YTjDwK606gPxOLV2Yd90ddCRp7q
OR8H22xzi2bAqACPZcY4wRYelOCgPSf4Vj4zraO5mY+HdB7Z6Nfe9hN+qwIyC0NG
JyI57tbhLNcChTqtCAgMxDrMJOmbgZnxxb6zt6Be21ViIa9fnsu0reGfvBCgSk75
3odTjVE58YbWs4JZXN+Ohp33N1WGwQjTwcsHNswRmUxMFH0GZ9T8qMCfOWsCwika
vYZqVwAGHJsj4WLVeuxqqzMMQLTNo9Zw4Lmgi7lKtYr0k+Bsdfapgg4V9Nx8OPIm
9NzLJnquRz+iwQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 12:52:34 2025 by rpki-client