Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: dA3lX7tFtIZdZuyH0WLaqrHp4NRMz6E3RVgfMJy8Imw=
Subject key identifier: 2B:89:85:CB:C1:EA:62:51:9D:D5:59:1F:6B:F0:19:AE:20:A1:FA:BC
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 019A71B8A8FFF79B9EBAFFC6253B715B2EA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 0638
Signing time: Tue 11 Nov 2025 07:01:58 +0000
Manifest this update: Tue 11 Nov 2025 07:01:58 +0000
Manifest next update: Wed 12 Nov 2025 07:01:58 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: z9mlyDh0WK+mWUir7HggohVtCkBmmA9/Rb9nrFCP3Bw=)
2: N3FIvLoAi-SrbWKri-QxAJXERl0.roa (hash: oePUnAR/4Fy7x02aEJQp05kRfdkIvxnqMAYzYP5D1B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:a8:ff:f7:9b:9e:ba:ff:c6:25:3b:71:5b:2e:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Nov 11 07:01:58 2025 GMT
Not After : Nov 12 07:01:58 2025 GMT
Subject: CN=2b8985cbc1ea62519dd5591f6bf019ae20a1fabc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:61:76:52:9d:77:a5:f8:aa:45:36:33:b5:d9:
11:b4:74:f5:87:3c:a4:d5:f6:d8:ad:38:91:f5:4f:
56:8d:7a:e9:73:16:4c:a3:76:cd:2c:33:72:53:35:
1b:47:6c:5d:6d:25:d6:3d:59:17:c4:b6:87:70:c8:
11:c6:a7:fe:e6:86:6e:6f:67:44:03:20:8f:23:20:
cd:45:4a:ac:6d:f3:b8:fe:19:36:b1:46:2f:ae:21:
38:2f:50:0a:a8:01:02:e5:78:e6:9a:df:88:4e:29:
1a:c9:8a:b2:4f:ff:2f:51:73:b1:11:8f:8d:9d:be:
4f:59:58:e9:b7:c1:ee:6f:b9:ef:2e:01:cb:05:7e:
57:ad:90:b9:43:ba:0e:c8:7f:c1:f1:66:85:48:72:
a0:29:8a:47:57:ab:28:e9:e0:dc:f7:24:0e:28:2e:
aa:84:dd:f2:65:5d:fc:02:29:b5:c2:78:22:a3:b8:
9e:8e:2d:ff:ed:c6:0b:de:7b:a0:cb:c0:b3:91:2c:
af:96:b8:d9:f5:cd:34:be:3c:51:53:42:07:a3:b8:
ac:58:b9:76:44:6e:f9:b3:b3:d6:85:e6:da:36:5b:
9b:9e:9a:13:70:76:f9:94:84:18:92:cd:59:42:ce:
6a:96:9d:a2:f7:ae:fc:92:4a:75:c1:6c:aa:85:3d:
74:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:89:85:CB:C1:EA:62:51:9D:D5:59:1F:6B:F0:19:AE:20:A1:FA:BC
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:51:da:1f:68:fc:8b:d2:37:e9:5a:72:49:79:d8:87:ec:6e:
62:c5:cf:ac:07:a2:7b:0d:c4:e6:d7:19:a6:dd:be:60:82:2d:
ac:51:d0:d0:04:05:65:43:26:3a:b8:1d:f4:fa:6b:ae:46:61:
cc:90:f2:f6:3c:c6:8f:f9:28:f9:e2:74:e8:9f:d9:0f:4a:45:
78:ad:23:30:82:f4:04:2c:1a:ac:6f:fa:2a:42:07:95:a2:b7:
20:15:13:3b:9d:10:4f:0a:d3:4b:f2:d6:b5:36:33:7a:77:70:
a7:e3:c2:3e:57:08:7b:9a:a6:1a:f1:c9:d0:0a:40:08:97:d2:
dc:48:56:74:59:0a:a5:09:9d:49:c7:ca:7b:0b:48:ef:67:97:
12:14:fc:0d:5a:78:d1:94:dc:d4:28:fa:6c:2a:01:10:30:45:
41:47:98:45:07:7e:d9:7f:c9:21:06:bd:a2:59:23:2e:83:b6:
08:bd:db:db:87:8f:b1:82:70:ca:6a:21:86:32:e4:7b:ed:70:
fb:39:41:6a:e5:8e:b8:23:69:d2:8f:9a:96:95:40:f1:c2:76:
2e:3b:f1:19:57:97:7d:b9:28:e7:58:c0:3a:5e:f2:3d:7e:8b:
ca:9b:0c:2c:59:09:6d:b8:9e:fb:3d:fe:d9:7d:50:fc:9f:f1:
af:6c:2f:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpxuKj/95ueuv/GJTtxWy6pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YmJiNTRlMzc4MjZjMDM5MGIwNDM3OTI3OWY4ZTA2Y2Zm
M2EyMzQwHhcNMjUxMTExMDcwMTU4WhcNMjUxMTEyMDcwMTU4WjAzMTEwLwYDVQQD
EygyYjg5ODVjYmMxZWE2MjUxOWRkNTU5MWY2YmYwMTlhZTIwYTFmYWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5mF2Up13pfiqRTYztdkRtHT1hzyk
1fbYrTiR9U9WjXrpcxZMo3bNLDNyUzUbR2xdbSXWPVkXxLaHcMgRxqf+5oZub2dE
AyCPIyDNRUqsbfO4/hk2sUYvriE4L1AKqAEC5Xjmmt+ITikayYqyT/8vUXOxEY+N
nb5PWVjpt8Hub7nvLgHLBX5XrZC5Q7oOyH/B8WaFSHKgKYpHV6so6eDc9yQOKC6q
hN3yZV38Aim1wngio7ieji3/7cYL3nugy8CzkSyvlrjZ9c00vjxRU0IHo7isWLl2
RG75s7PWhebaNlubnpoTcHb5lIQYks1ZQs5qlp2i9678kkp1wWyqhT10ZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCuJhcvB6mJRndVZH2vwGa4gofq8MB8GA1UdIwQY
MBaAFCi7tU43gmwDkLBDeSefjgbP86I0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mZTcyOTYtZWM4Yy00MTYzLWE1NTQt
NzhjMDE3NzYyZjlmLzEvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9mZTcyOTYtZWM4Yy00MTYzLWE1NTQtNzhjMDE3NzYyZjlm
LzEvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg1HaH2j8
i9I36VpySXnYh+xuYsXPrAeiew3E5tcZpt2+YIItrFHQ0AQFZUMmOrgd9PprrkZh
zJDy9jzGj/ko+eJ06J/ZD0pFeK0jMIL0BCwarG/6KkIHlaK3IBUTO50QTwrTS/LW
tTYzendwp+PCPlcIe5qmGvHJ0ApACJfS3EhWdFkKpQmdScfKewtI72eXEhT8DVp4
0ZTc1Cj6bCoBEDBFQUeYRQd+2X/JIQa9olkjLoO2CL3b24ePsYJwymohhjLke+1w
+zlBauWOuCNp0o+alpVA8cJ2LjvxGVeXfbko51jAOl7yPX6LypsMLFkJbbie+z3+
2X1Q/J/xr2wvIQ==
-----END CERTIFICATE-----
Generated at Tue Nov 11 15:22:20 2025 by rpki-client