Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
File: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft (raw, json)
Hash identifier: EPx9ZOKAnvSBZqOB+h9dRCT2OEc/uFpyjD7/J9xDNxg=
Subject key identifier: 2B:87:B3:EB:50:C8:86:5D:F5:F0:0C:F4:46:D2:F8:30:91:D1:8A:F8
Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Certificate serial: 019A4FD04634FC088505C6EB610BD616F5F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
Manifest number: 1157
Signing time: Tue 04 Nov 2025 17:00:40 +0000
Manifest this update: Tue 04 Nov 2025 17:00:40 +0000
Manifest next update: Wed 05 Nov 2025 17:00:40 +0000
Files and hashes: 1: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl (hash: R4N3THP68epRscOuJEN9W9Prv+u6Nngix7G0eK3QZLY=)
2: rYNJq30hG9TfQKEAUAnbb-JlarU.roa (hash: bobhiWtsSX2sPVTtreNAJF6ae9i50YxHtcGAHPsK84U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:46:34:fc:08:85:05:c6:eb:61:0b:d6:16:f5:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Validity
Not Before: Nov 4 17:00:40 2025 GMT
Not After : Nov 5 17:00:40 2025 GMT
Subject: CN=2b87b3eb50c8865df5f00cf446d2f83091d18af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:26:7f:a7:36:c3:5c:db:50:15:25:69:6d:89:
a4:c6:14:7c:a5:b4:76:34:4d:e1:19:ff:e0:60:d2:
af:5e:b1:87:60:5a:cd:d5:71:73:35:24:b1:40:63:
24:eb:22:1e:3c:16:4a:93:a3:3c:3c:35:bf:40:ee:
06:98:b7:0f:6a:0f:bd:55:26:f1:c0:52:99:14:4b:
84:b7:cd:55:fe:7e:92:a4:40:e8:3b:c1:fc:9e:9d:
80:b3:d5:ea:58:13:54:eb:84:69:aa:d0:f7:99:1b:
92:d6:44:88:0e:a8:9d:f2:86:f8:47:8d:99:4e:5a:
ae:9d:0e:59:3d:d8:6e:28:20:e2:0a:fe:ea:68:92:
63:44:aa:e9:d2:47:1d:fb:92:28:51:ea:80:24:3a:
b8:75:e6:74:c9:60:97:b0:81:81:02:4a:9a:28:68:
7b:d1:99:2c:96:83:8e:0b:c9:45:8a:79:8a:68:5a:
73:24:8f:39:aa:6f:7f:70:d5:16:52:10:c7:39:63:
46:55:c3:24:d8:9b:46:8e:67:27:88:8a:21:4e:2f:
45:68:be:fb:14:42:51:fc:6c:d4:24:30:f3:1b:f5:
c5:cf:df:dd:ec:ca:85:e0:74:c2:ca:35:8e:da:ce:
06:89:35:4f:1b:ba:b8:e7:54:d2:fc:48:be:0d:37:
c8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:87:B3:EB:50:C8:86:5D:F5:F0:0C:F4:46:D2:F8:30:91:D1:8A:F8
X509v3 Authority Key Identifier:
keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:a7:79:85:31:85:00:6d:fb:a0:6e:b0:31:83:ae:0f:d8:46:
f4:81:54:1a:b2:dc:00:83:0e:10:ec:14:ff:47:91:eb:95:76:
1d:f4:6f:d0:c8:83:ee:f8:93:8f:64:be:1f:f3:dd:d9:15:35:
83:1e:e3:f5:c5:6e:ee:9e:55:d9:09:da:9f:c0:c8:b6:c8:5c:
72:32:e1:08:eb:6f:7c:f2:87:ec:82:e4:51:7a:e5:eb:59:24:
70:d8:b3:19:4a:13:1c:e8:57:6f:cd:27:f8:2b:55:e8:98:45:
ae:6e:a4:dd:f7:4f:cb:d0:2d:55:e7:a4:60:33:04:98:c0:1e:
d1:04:fe:56:b7:c6:69:2f:dd:fa:e9:5c:fa:fa:5e:43:9c:ed:
f9:6d:05:df:f0:eb:37:80:dc:b7:b9:e2:3e:87:08:c9:ae:84:
96:ae:e5:0c:06:74:5d:cc:cd:7b:15:c9:a5:59:8f:8c:c5:a9:
09:64:27:07:b5:e2:47:16:ed:01:a7:49:f5:50:36:ed:b2:f4:
7c:0a:f3:c4:71:19:0b:78:08:e9:9c:de:72:d1:76:80:25:24:
b9:e7:f4:0d:d0:10:f3:fc:f2:e6:28:d0:34:af:a8:77:eb:9b:
28:e2:f3:91:bb:57:c0:99:05:fc:7f:8e:b6:bd:93:03:a5:48:
25:dd:cd:46
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpP0EY0/AiFBcbrYQvWFvXxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4Zjk4MWMyMGFhNjUyYWE4NWUwMDhiZDI2MmY3YmMxZjg1
NmMzNTgwHhcNMjUxMTA0MTcwMDQwWhcNMjUxMTA1MTcwMDQwWjAzMTEwLwYDVQQD
EygyYjg3YjNlYjUwYzg4NjVkZjVmMDBjZjQ0NmQyZjgzMDkxZDE4YWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5SZ/pzbDXNtQFSVpbYmkxhR8pbR2
NE3hGf/gYNKvXrGHYFrN1XFzNSSxQGMk6yIePBZKk6M8PDW/QO4GmLcPag+9VSbx
wFKZFEuEt81V/n6SpEDoO8H8np2As9XqWBNU64RpqtD3mRuS1kSIDqid8ob4R42Z
TlqunQ5ZPdhuKCDiCv7qaJJjRKrp0kcd+5IoUeqAJDq4deZ0yWCXsIGBAkqaKGh7
0ZksloOOC8lFinmKaFpzJI85qm9/cNUWUhDHOWNGVcMk2JtGjmcniIohTi9FaL77
FEJR/GzUJDDzG/XFz9/d7MqF4HTCyjWO2s4GiTVPG7q451TS/Ei+DTfIjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCuHs+tQyIZd9fAM9EbS+DCR0Yr4MB8GA1UdIwQY
MBaAFCj5gcIKplKqheAIvSYve8H4VsNYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8zNTJmOWEtNGZkZS00ODRhLWI5MjMt
Yzg3ZmJiZDAzZTg2LzEvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS8zNTJmOWEtNGZkZS00ODRhLWI5MjMtYzg3ZmJiZDAzZTg2
LzEvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKqd5hTGF
AG37oG6wMYOuD9hG9IFUGrLcAIMOEOwU/0eR65V2HfRv0MiD7viTj2S+H/Pd2RU1
gx7j9cVu7p5V2Qnan8DItshccjLhCOtvfPKH7ILkUXrl61kkcNizGUoTHOhXb80n
+CtV6JhFrm6k3fdPy9AtVeekYDMEmMAe0QT+VrfGaS/d+ulc+vpeQ5zt+W0F3/Dr
N4Dct7niPocIya6Elq7lDAZ0XczNexXJpVmPjMWpCWQnB7XiRxbtAadJ9VA27bL0
fArzxHEZC3gI6ZzectF2gCUkuef0DdAQ8/zy5ijQNK+od+ubKOLzkbtXwJkF/H+O
tr2TA6VIJd3NRg==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:19:38 2025 by rpki-client