Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
File: kd3H2eAtRMa_jGNcHQcV9uicEBI.mft (raw, json)
Hash identifier: CdkGpu2C7Q5a1rda7ZZbYAf42yhRqP+SVGiZ6gr8vwo=
Subject key identifier: 00:40:58:70:2E:DE:F2:5C:AF:0A:8E:86:50:19:F9:F0:56:6D:08:44
Authority key identifier: 91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
Certificate issuer: /CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Certificate serial: 019A5119DA3A3016CB86B00C13BD0D1B9229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
Manifest number: C9
Signing time: Tue 04 Nov 2025 23:00:40 +0000
Manifest this update: Tue 04 Nov 2025 23:00:40 +0000
Manifest next update: Wed 05 Nov 2025 23:00:40 +0000
Files and hashes: 1: kd3H2eAtRMa_jGNcHQcV9uicEBI.crl (hash: PMZUuGyN/0w5+X4UWsSP3kQifCIEL7rBCoghWJ119m8=)
2: s5q2oTWE63BKKJHezuXxV23_1ao.roa (hash: kxGqoLV/rWB0wj/sYCOZiA+1BQk6TjqEiRvVL8/Fnps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:19:da:3a:30:16:cb:86:b0:0c:13:bd:0d:1b:92:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Validity
Not Before: Nov 4 23:00:40 2025 GMT
Not After : Nov 5 23:00:40 2025 GMT
Subject: CN=004058702edef25caf0a8e865019f9f0566d0844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:82:54:62:6e:46:fe:30:2b:ad:4a:4e:c1:fb:
68:07:09:90:5c:f0:91:72:fa:8b:be:d5:0e:6a:de:
23:f2:6c:3d:70:b5:ed:7d:89:e0:19:e7:91:12:23:
e4:79:39:d0:42:87:81:ce:4e:00:a1:06:c7:eb:29:
3b:56:22:28:d6:48:13:1b:d6:6b:fe:30:d0:ae:78:
59:9b:be:52:1c:fc:07:c7:f3:98:93:e0:19:46:4f:
7f:5c:08:db:e9:ed:c7:d5:d4:1a:c9:c1:48:76:e3:
b7:9e:0c:5c:7c:50:97:94:55:46:0c:86:d6:14:55:
43:11:b9:c5:3e:ed:e3:ad:f7:e8:a8:57:69:90:02:
ab:8d:93:48:01:ba:a8:8b:74:54:03:f6:9f:6a:c5:
b6:a3:84:6c:80:b3:b9:60:81:5f:f8:77:39:cb:d0:
e7:e6:17:64:59:8c:6e:62:87:08:0f:99:4f:fb:a9:
50:16:85:94:c5:f3:70:b8:bd:56:09:21:c4:4a:76:
14:a1:fe:ed:68:f0:9d:b9:db:23:20:7c:54:82:e0:
ce:e1:5f:6f:45:b9:4e:cb:68:8d:0f:73:0a:14:f5:
db:ff:62:f8:84:82:39:a6:d5:5a:a6:77:30:85:11:
6c:a5:e8:fc:a8:10:63:37:4f:88:39:28:90:fc:f5:
f8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:40:58:70:2E:DE:F2:5C:AF:0A:8E:86:50:19:F9:F0:56:6D:08:44
X509v3 Authority Key Identifier:
keyid:91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:b5:3b:0d:3d:c7:af:22:86:e3:d7:0d:1c:e4:0b:5b:1b:40:
fc:93:5d:2f:66:b3:93:38:9f:c5:69:a1:f3:f3:17:54:f2:52:
e3:6f:b2:e4:2c:05:ad:c9:40:2a:eb:4e:88:15:68:d3:d5:9c:
ff:44:a0:42:51:62:85:83:6f:a2:10:43:d9:98:bf:e4:db:13:
2d:e6:4e:2e:a8:71:2d:33:66:be:e8:73:8f:be:76:50:d3:78:
6a:1f:2a:7d:bc:fb:e9:c0:37:5f:ec:1b:9c:09:e1:2a:a8:f6:
d7:b0:63:5d:37:f6:11:ab:2d:8c:a8:7b:ed:f8:8a:41:ae:e4:
c3:92:28:fe:48:59:19:dc:75:68:bd:9f:75:9e:5e:99:df:a5:
39:e3:07:8b:bd:ff:ca:3b:ff:9d:ba:13:5a:2c:cb:b9:bd:79:
32:53:bf:38:44:c5:e1:8c:ef:d7:a9:e1:4e:f9:bf:15:b5:ca:
5d:a7:fd:0c:7f:0e:17:ae:a9:93:6b:60:1a:9d:b2:e1:4b:f7:
e0:e9:34:e2:d0:92:d0:ac:ee:1a:56:e3:74:24:54:db:a1:b4:
24:0a:39:dd:83:73:39:94:25:de:84:87:66:c5:80:4b:cf:b3:
25:18:33:61:46:a6:c6:ef:74:81:3d:17:41:2e:7c:a3:a9:d6:
dd:6e:c8:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRGdo6MBbLhrAME70NG5IpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZGRjN2Q5ZTAyZDQ0YzZiZjhjNjM1YzFkMDcxNWY2ZTg5
YzEwMTIwHhcNMjUxMTA0MjMwMDQwWhcNMjUxMTA1MjMwMDQwWjAzMTEwLwYDVQQD
EygwMDQwNTg3MDJlZGVmMjVjYWYwYThlODY1MDE5ZjlmMDU2NmQwODQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4JUYm5G/jArrUpOwftoBwmQXPCR
cvqLvtUOat4j8mw9cLXtfYngGeeREiPkeTnQQoeBzk4AoQbH6yk7ViIo1kgTG9Zr
/jDQrnhZm75SHPwHx/OYk+AZRk9/XAjb6e3H1dQaycFIduO3ngxcfFCXlFVGDIbW
FFVDEbnFPu3jrffoqFdpkAKrjZNIAbqoi3RUA/afasW2o4RsgLO5YIFf+Hc5y9Dn
5hdkWYxuYocID5lP+6lQFoWUxfNwuL1WCSHESnYUof7taPCdudsjIHxUguDO4V9v
RblOy2iND3MKFPXb/2L4hII5ptVapncwhRFspej8qBBjN0+IOSiQ/PX4MwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFABAWHAu3vJcrwqOhlAZ+fBWbQhEMB8GA1UdIwQY
MBaAFJHdx9ngLUTGv4xjXB0HFfbonBASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9jN2FmYmMtYjg4NS00NzU1LThkMTUt
ODkzYjhkZDJkMmIwLzEva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9jN2FmYmMtYjg4NS00NzU1LThkMTUtODkzYjhkZDJkMmIw
LzEva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFrU7DT3H
ryKG49cNHOQLWxtA/JNdL2azkzifxWmh8/MXVPJS42+y5CwFrclAKutOiBVo09Wc
/0SgQlFihYNvohBD2Zi/5NsTLeZOLqhxLTNmvuhzj752UNN4ah8qfbz76cA3X+wb
nAnhKqj217BjXTf2EastjKh77fiKQa7kw5Io/khZGdx1aL2fdZ5emd+lOeMHi73/
yjv/nboTWizLub15MlO/OETF4Yzv16nhTvm/FbXKXaf9DH8OF66pk2tgGp2y4Uv3
4Ok04tCS0KzuGlbjdCRU26G0JAo53YNzOZQl3oSHZsWAS8+zJRgzYUamxu90gT0X
QS58o6nW3W7ItQ==
-----END CERTIFICATE-----
Generated at Wed Nov 5 06:47:56 2025 by rpki-client