Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
File: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft (raw, json)
Hash identifier: 2K+LO94X0U1VI58nrksx0ncJmGL1jrvE3KLgvPeY89o=
Subject key identifier: AE:31:60:EE:4F:5B:F6:D2:09:A5:A1:78:07:7F:A6:79:B3:27:54:1E
Authority key identifier: 91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
Certificate issuer: /CN=91362d3c0953e8c933f0092a589b75494904f962
Certificate serial: 019A51503F633F7E3D86E7EEDB513F2DAD17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
Manifest number: 15BF
Signing time: Wed 05 Nov 2025 00:00:04 +0000
Manifest this update: Wed 05 Nov 2025 00:00:04 +0000
Manifest next update: Thu 06 Nov 2025 00:00:04 +0000
Files and hashes: 1: gF4h3hPUiQwbrFzucTsw-cGzGHQ.roa (hash: EmUyYOWtfES7R4OmRJxOMl7sM7cF9x8yLjgV5Oo/MqY=)
2: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl (hash: Gb82V+zURQOSgd1b3vMUBBL9u23kCDIzSke1rPdC+WE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:50:3f:63:3f:7e:3d:86:e7:ee:db:51:3f:2d:ad:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91362d3c0953e8c933f0092a589b75494904f962
Validity
Not Before: Nov 5 00:00:04 2025 GMT
Not After : Nov 6 00:00:04 2025 GMT
Subject: CN=ae3160ee4f5bf6d209a5a178077fa679b327541e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:21:e7:fc:41:52:5a:2d:aa:53:a0:8e:3b:e8:
a6:44:47:b9:08:a7:fb:9e:1a:1e:27:46:90:90:e9:
4c:4c:39:e5:92:93:1a:3d:ae:24:90:df:dd:f9:e3:
3e:43:bd:f9:80:74:c8:9a:77:77:bc:96:ba:8c:d3:
8e:b8:b1:90:db:e2:f6:d7:8a:f9:93:b1:26:99:39:
17:0d:51:ab:3d:ff:1b:c8:f5:37:b1:20:48:55:6e:
c6:cc:81:2b:a5:a5:ab:18:b2:1a:6c:24:11:b6:23:
6d:55:6f:b3:92:ca:8e:3e:b7:8c:e4:86:10:5f:d0:
98:a2:4a:c9:1f:d7:0b:12:92:6f:20:22:39:54:8a:
7e:ff:19:87:53:36:17:56:47:8e:7e:97:5c:de:66:
22:45:1d:8e:46:4e:50:18:1a:74:ff:08:3a:5a:c1:
d9:c1:0d:1f:a2:2d:0c:7f:cb:60:64:3f:72:30:60:
e3:fa:f4:0b:4b:d0:81:f5:04:5f:02:fc:e7:ea:88:
25:67:5a:7b:98:09:d4:62:16:8f:32:2e:ea:83:65:
62:0b:d4:6a:e4:ad:b6:01:1b:5f:a2:cd:ca:e7:47:
e1:e1:53:fb:b4:06:2d:15:48:2f:a0:eb:41:0a:b3:
b4:aa:18:0a:db:45:7c:c4:60:0b:d5:5b:45:63:f7:
e2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:31:60:EE:4F:5B:F6:D2:09:A5:A1:78:07:7F:A6:79:B3:27:54:1E
X509v3 Authority Key Identifier:
keyid:91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:0c:20:a6:03:4a:48:9a:c5:9c:d0:af:dd:a8:7c:6a:6e:be:
3b:88:35:77:fd:ed:20:b4:63:e7:f6:0a:5b:6c:91:ea:7a:13:
a4:57:9c:15:68:d0:e6:9e:d1:cf:30:87:93:04:75:c9:b6:2f:
7b:24:1f:6f:09:a5:ee:3b:17:44:29:e0:99:a4:b0:9e:12:2e:
9c:7a:05:74:70:fd:5b:d5:24:f1:15:52:62:f2:26:66:d0:95:
f1:b7:b1:75:97:1f:7e:82:73:bd:4b:43:98:87:d2:ba:b9:6b:
87:3c:ab:9f:e6:7b:5f:89:86:20:10:1c:33:ed:80:dc:d5:9c:
33:70:09:7f:d9:f6:8f:fe:a9:d0:88:43:fa:31:85:bb:f1:b0:
03:91:29:17:9e:f1:27:bc:93:20:9f:c0:51:0c:97:a2:5d:a7:
81:9d:13:5e:a0:3a:c6:23:85:aa:f7:7d:d5:5d:d9:94:64:a9:
b4:d9:cb:15:d1:a2:47:17:4e:6e:03:92:4f:87:de:b7:85:dc:
a1:9c:38:ed:fa:86:8d:22:b7:a5:e0:4d:65:98:a7:9b:10:92:
d9:3a:6a:ef:20:78:b2:5a:0e:9c:9b:fb:c4:a6:63:8b:42:3c:
60:5f:31:5a:72:ee:ec:c3:f1:37:25:33:8b:c4:ac:fd:a0:56:
05:ca:a6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:58:19 2025 by rpki-client