Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
File: KeRudYZejUoIHktd2kbTyUADZ5s.mft (raw, json)
Hash identifier: tqeij6uHGyNZQUQUI1fdMthjNnU2ydx4MwxU7FFZrbU=
Subject key identifier: 86:60:6F:7C:66:E7:48:71:07:17:B8:8B:AA:67:11:76:03:72:2D:6B
Authority key identifier: 29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
Certificate issuer: /CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Certificate serial: 019A4FD049A3A0674734E9CD3FC8AA9F59B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
Manifest number: 15EC
Signing time: Tue 04 Nov 2025 17:00:41 +0000
Manifest this update: Tue 04 Nov 2025 17:00:41 +0000
Manifest next update: Wed 05 Nov 2025 17:00:41 +0000
Files and hashes: 1: KeRudYZejUoIHktd2kbTyUADZ5s.crl (hash: 2D41HRMfIBW0O2xKwCRDLTPEuLYgF9LkucHljG0Y5vM=)
2: sYwqpJAH6xt25FV658_Z0b8PqQ4.roa (hash: nTc7YSWaucHsViUALBoDYtryVR1AkC4pCCvnaDdeVwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 17:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:d0:49:a3:a0:67:47:34:e9:cd:3f:c8:aa:9f:59:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Validity
Not Before: Nov 4 17:00:41 2025 GMT
Not After : Nov 5 17:00:41 2025 GMT
Subject: CN=86606f7c66e748710717b88baa67117603722d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b7:22:c6:f0:82:9a:ae:f4:c7:a9:29:bc:d1:
a6:66:6f:9d:75:a4:8d:6e:0f:43:5c:48:84:27:b9:
68:12:cf:6e:80:28:28:56:e1:27:cc:8a:56:29:10:
d2:db:28:9d:24:e2:ec:49:cd:69:ca:0c:0d:8f:2a:
c8:61:4a:45:bc:43:89:f7:07:32:6d:db:49:ef:61:
ec:e2:68:4c:8b:33:99:19:ec:cc:3e:87:87:6c:9f:
f8:5b:9e:97:35:a8:e8:d2:19:0a:8c:2f:af:c7:3f:
23:be:d0:64:8d:12:8e:26:a0:e2:ba:ac:2f:07:3e:
2e:04:43:6e:a1:3b:54:ed:b4:68:be:0b:80:07:c3:
c8:81:8c:d7:c8:39:08:7f:52:fa:9b:4f:05:13:d6:
b8:68:e7:dd:12:cd:4c:d7:26:52:4f:36:8d:15:47:
2d:98:76:d2:85:a0:d7:a6:05:c7:16:80:77:a6:d0:
db:88:bf:d5:cf:c5:03:73:a8:11:2c:5b:ca:a6:ed:
33:bf:60:a4:78:4f:5b:f8:f6:ab:29:09:5f:36:dd:
7b:5f:54:75:be:75:28:a7:29:16:04:00:fd:b5:87:
46:98:12:a4:77:4b:e2:e0:14:5d:8c:6a:6d:18:93:
1d:98:54:fe:c6:97:6f:8e:f9:15:dc:c7:c7:fa:28:
14:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:60:6F:7C:66:E7:48:71:07:17:B8:8B:AA:67:11:76:03:72:2D:6B
X509v3 Authority Key Identifier:
keyid:29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:07:d7:8c:09:26:b7:a8:91:8f:49:63:05:a2:f9:b8:02:18:
46:ed:db:fe:c2:59:5d:4e:c1:ee:eb:66:41:bd:a8:46:d8:08:
17:4f:dd:6b:60:c0:fd:63:93:d6:29:b7:15:4f:bd:bb:94:56:
97:62:40:90:ec:76:54:fb:25:35:5e:02:37:13:fb:00:41:71:
95:51:d3:d3:aa:92:73:27:e3:1c:67:de:b4:ba:88:b8:9b:a2:
24:6e:a1:0f:35:e5:b7:44:e2:0a:79:ea:14:70:24:6d:13:3b:
60:75:f2:77:fd:93:e0:f9:1c:0a:42:da:48:c6:4b:42:f2:01:
bf:44:a2:49:95:6d:7c:fb:eb:52:3f:06:8a:41:2d:1a:e3:0f:
62:a9:5b:9d:cd:65:e1:61:01:9f:be:cd:20:c6:43:12:f7:cd:
bc:6a:7e:ea:14:a0:09:35:e3:7a:3e:08:a8:79:52:40:2d:02:
27:66:bb:20:4e:70:88:77:14:db:22:b6:4c:1d:b8:a9:3f:88:
49:12:41:4f:88:e7:e7:0a:bc:c0:0b:5e:f7:d0:13:51:e4:3e:
a4:2f:ad:f7:99:2e:99:9a:b4:c7:55:5b:5d:0b:b8:8c:80:30:
77:ca:42:c9:45:65:dd:41:87:d7:d9:b1:a4:41:69:03:ea:ba:
f4:a5:16:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpP0EmjoGdHNOnNP8iqn1myMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZTQ2ZTc1ODY1ZThkNGEwODFlNGI1ZGRhNDZkM2M5NDAw
MzY3OWIwHhcNMjUxMTA0MTcwMDQxWhcNMjUxMTA1MTcwMDQxWjAzMTEwLwYDVQQD
Eyg4NjYwNmY3YzY2ZTc0ODcxMDcxN2I4OGJhYTY3MTE3NjAzNzIyZDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLcixvCCmq70x6kpvNGmZm+ddaSN
bg9DXEiEJ7loEs9ugCgoVuEnzIpWKRDS2yidJOLsSc1pygwNjyrIYUpFvEOJ9wcy
bdtJ72Hs4mhMizOZGezMPoeHbJ/4W56XNajo0hkKjC+vxz8jvtBkjRKOJqDiuqwv
Bz4uBENuoTtU7bRovguAB8PIgYzXyDkIf1L6m08FE9a4aOfdEs1M1yZSTzaNFUct
mHbShaDXpgXHFoB3ptDbiL/Vz8UDc6gRLFvKpu0zv2CkeE9b+ParKQlfNt17X1R1
vnUopykWBAD9tYdGmBKkd0vi4BRdjGptGJMdmFT+xpdvjvkV3MfH+igU2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZgb3xm50hxBxe4i6pnEXYDci1rMB8GA1UdIwQY
MBaAFCnkbnWGXo1KCB5LXdpG08lAA2ebMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2VSdWRZWmVqVW9JSGt0ZDJrYlR5VUFEWjVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9kMjM1NGEtZjNjMi00MWQ1LWIyOTIt
YTlkMjY3YWNmNjY0LzEvS2VSdWRZWmVqVW9JSGt0ZDJrYlR5VUFEWjVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi9kMjM1NGEtZjNjMi00MWQ1LWIyOTItYTlkMjY3YWNmNjY0
LzEvS2VSdWRZWmVqVW9JSGt0ZDJrYlR5VUFEWjVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYAfXjAkm
t6iRj0ljBaL5uAIYRu3b/sJZXU7B7utmQb2oRtgIF0/da2DA/WOT1im3FU+9u5RW
l2JAkOx2VPslNV4CNxP7AEFxlVHT06qScyfjHGfetLqIuJuiJG6hDzXlt0TiCnnq
FHAkbRM7YHXyd/2T4PkcCkLaSMZLQvIBv0SiSZVtfPvrUj8GikEtGuMPYqlbnc1l
4WEBn77NIMZDEvfNvGp+6hSgCTXjej4IqHlSQC0CJ2a7IE5wiHcU2yK2TB24qT+I
SRJBT4jn5wq8wAte99ATUeQ+pC+t95kumZq0x1VbXQu4jIAwd8pCyUVl3UGH19mx
pEFpA+q69KUW2Q==
-----END CERTIFICATE-----
Generated at Wed Nov 5 00:47:52 2025 by rpki-client