Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
File: kmyYtRBh80DM5OC0zjYc40q8L84.mft (raw, json)
Hash identifier: 50i3wiKucZD8O4LkelUjcGc5s8eYNpe7bD6j0awe6ks=
Subject key identifier: D4:91:97:34:F2:DB:36:DF:C5:CC:DE:75:56:08:DB:DD:8B:15:7B:75
Authority key identifier: 92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
Certificate issuer: /CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Certificate serial: 019A21AD8331434061884AA342129933102C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
Manifest number: 0742
Signing time: Sun 26 Oct 2025 18:00:10 +0000
Manifest this update: Sun 26 Oct 2025 18:00:10 +0000
Manifest next update: Mon 27 Oct 2025 18:00:10 +0000
Files and hashes: 1: NSppdy32pK0kuht35Ks5xIRdV5s.roa (hash: e3lqo49PNkPXZsVtpcSw5P8QfGbIbaYvIeXnhh1mWBY=)
2: kmyYtRBh80DM5OC0zjYc40q8L84.crl (hash: DY0PS9phYWUJtrjK5SasB6jrDoSrs8rvcrsGKtxkd38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:ad:83:31:43:40:61:88:4a:a3:42:12:99:33:10:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Validity
Not Before: Oct 26 18:00:10 2025 GMT
Not After : Oct 27 18:00:10 2025 GMT
Subject: CN=d4919734f2db36dfc5ccde755608dbdd8b157b75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:50:64:91:53:97:e0:a7:18:c7:52:3e:23:71:
54:8e:af:04:a8:a9:75:b3:ec:eb:40:88:10:67:f3:
c5:17:6e:ee:2e:d4:a3:2b:9e:22:ac:28:2f:38:b3:
51:9d:ca:0b:57:84:a4:d8:57:12:bf:39:90:e7:ad:
42:27:d5:4d:16:79:a6:a7:ec:72:bf:e6:d0:1b:45:
bd:ce:ca:7e:02:e6:06:f3:f5:e3:da:24:59:3f:69:
a7:7b:7e:0e:2f:d2:da:41:30:5a:ab:c6:3c:8d:a0:
62:02:bf:4c:19:c0:97:d2:96:75:5b:ff:89:ed:c5:
4d:be:b5:e3:0d:96:24:34:c5:4e:1c:12:9f:0b:d4:
c7:cc:ba:56:4f:08:09:13:99:1f:ae:fc:a4:43:58:
2a:d1:58:62:78:f2:d3:3d:4b:83:0e:5d:87:11:89:
2a:64:e4:76:fe:28:31:7e:10:80:f9:fc:82:61:1b:
f4:44:34:7f:ea:b6:e2:87:15:27:e0:fb:5c:c1:ef:
a7:ae:42:85:81:da:71:5d:0d:ef:4e:98:b5:31:12:
32:c2:8a:0e:83:e0:65:b0:c3:ab:c9:3b:50:90:9a:
66:f0:d8:7e:59:a0:65:5b:76:cd:15:ca:8a:95:52:
dd:0b:4f:20:b8:b4:a3:84:dc:80:b3:a3:31:a0:51:
ae:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:91:97:34:F2:DB:36:DF:C5:CC:DE:75:56:08:DB:DD:8B:15:7B:75
X509v3 Authority Key Identifier:
keyid:92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:c8:9c:3c:a5:9f:29:ca:46:b8:f0:88:40:68:c4:fe:d3:d3:
2f:2f:6e:66:a2:d1:40:88:3e:da:17:a6:86:b1:8b:89:2d:ff:
68:4c:ed:e5:85:a5:de:d5:a9:d5:e6:04:d2:d0:40:2f:cb:3b:
24:0d:c2:1d:93:bc:5b:75:83:67:6a:82:a8:ab:5f:10:40:65:
ac:c8:f7:93:99:de:2c:5b:45:b0:3b:58:c2:05:30:40:28:dc:
37:62:da:8e:5e:c9:e8:69:f7:5c:cf:35:64:25:ec:0f:95:2d:
ff:6f:49:6b:42:70:38:75:3d:5c:a8:ce:79:c4:6e:b8:9b:63:
0f:02:2b:6d:28:d5:2d:57:13:d7:d7:99:d6:1a:13:7f:3e:4d:
82:05:76:b0:72:cd:bd:fd:c7:1a:f7:15:9e:0c:03:df:a2:3e:
2a:63:7f:8f:a6:30:fa:a2:9f:92:3e:63:cc:17:36:6f:34:fb:
13:4b:7e:2e:9d:c1:56:02:14:c8:b4:33:72:d9:e5:a7:3b:2b:
a6:67:5c:c1:d3:2d:f2:c1:49:34:35:0c:07:2b:4d:5a:07:b5:
ea:d1:97:f6:cf:6b:b9:93:1b:27:63:f1:0d:2a:9e:21:70:ab:
31:0a:f3:d7:2d:e1:6f:48:74:eb:63:dd:72:16:45:8f:eb:16:
f9:35:94:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZohrYMxQ0BhiEqjQhKZMxAsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNmM5OGI1MTA2MWYzNDBjY2U0ZTBiNGNlMzYxY2UzNGFi
YzJmY2UwHhcNMjUxMDI2MTgwMDEwWhcNMjUxMDI3MTgwMDEwWjAzMTEwLwYDVQQD
EyhkNDkxOTczNGYyZGIzNmRmYzVjY2RlNzU1NjA4ZGJkZDhiMTU3Yjc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0VBkkVOX4KcYx1I+I3FUjq8EqKl1
s+zrQIgQZ/PFF27uLtSjK54irCgvOLNRncoLV4Sk2FcSvzmQ561CJ9VNFnmmp+xy
v+bQG0W9zsp+AuYG8/Xj2iRZP2mne34OL9LaQTBaq8Y8jaBiAr9MGcCX0pZ1W/+J
7cVNvrXjDZYkNMVOHBKfC9THzLpWTwgJE5kfrvykQ1gq0VhiePLTPUuDDl2HEYkq
ZOR2/igxfhCA+fyCYRv0RDR/6rbihxUn4Ptcwe+nrkKFgdpxXQ3vTpi1MRIywooO
g+BlsMOryTtQkJpm8Nh+WaBlW3bNFcqKlVLdC08guLSjhNyAs6MxoFGuHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNSRlzTy2zbfxczedVYI292LFXt1MB8GA1UdIwQY
MBaAFJJsmLUQYfNAzOTgtM42HONKvC/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wNTE1OWEtNDUyOS00OGZhLTk1ZTkt
ZGM3NmZlY2E5NGJmLzEva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8wNTE1OWEtNDUyOS00OGZhLTk1ZTktZGM3NmZlY2E5NGJm
LzEva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACsicPKWf
KcpGuPCIQGjE/tPTLy9uZqLRQIg+2hemhrGLiS3/aEzt5YWl3tWp1eYE0tBAL8s7
JA3CHZO8W3WDZ2qCqKtfEEBlrMj3k5neLFtFsDtYwgUwQCjcN2Lajl7J6Gn3XM81
ZCXsD5Ut/29Ja0JwOHU9XKjOecRuuJtjDwIrbSjVLVcT19eZ1hoTfz5NggV2sHLN
vf3HGvcVngwD36I+KmN/j6Yw+qKfkj5jzBc2bzT7E0t+Lp3BVgIUyLQzctnlpzsr
pmdcwdMt8sFJNDUMBytNWge16tGX9s9ruZMbJ2PxDSqeIXCrMQrz1y3hb0h062Pd
chZFj+sW+TWUsQ==
-----END CERTIFICATE-----
Generated at Mon Oct 27 04:04:04 2025 by rpki-client