Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: biubvDfe9P4YdhHpabud+LhpXt0eQCFXwq7Eq52H6kk=
Subject key identifier: 95:02:81:30:97:1F:B5:48:49:DD:FE:BA:32:23:10:F0:7F:90:0B:22
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 019A4E8645E726E6A5F73C73B9BEE5B8712D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 0B58
Signing time: Tue 04 Nov 2025 11:00:13 +0000
Manifest this update: Tue 04 Nov 2025 11:00:13 +0000
Manifest next update: Wed 05 Nov 2025 11:00:13 +0000
Files and hashes: 1: 1gJl5QGcLnfhKR4ZX5vkhukZyTU.roa (hash: NMFFqW5s2zQQWT6VrzvJinnOwTRcu4h6yTFNCCxpjXA=)
2: HlpYPKfUTSJ7pDq2oQziu1OJN70.roa (hash: 2/lnsP1apTOPlsNH0YhFprUwFbQM2G9j3yZLF5vZFt4=)
3: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: 6kofARfgQSYqkRZzwZNHqtkuXngCREgaXQFaQ0FWy/M=)
4: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (hash: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:86:45:e7:26:e6:a5:f7:3c:73:b9:be:e5:b8:71:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Nov 4 11:00:13 2025 GMT
Not After : Nov 5 11:00:13 2025 GMT
Subject: CN=95028130971fb54849ddfeba322310f07f900b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:35:10:a4:1c:1f:3d:da:be:e7:b0:b6:42:12:
51:1d:d0:e2:b8:9e:75:c2:f7:7d:90:dc:b6:82:d9:
be:65:de:b5:1d:90:35:85:8d:ff:92:74:4d:b2:0e:
e2:17:cf:8c:bb:ff:62:eb:48:fc:36:1e:a4:b5:cb:
06:3f:c3:24:3b:11:d0:f3:c5:40:c8:f6:9c:98:ec:
4a:2a:98:03:bf:8a:02:58:d2:22:19:1c:9c:38:1a:
80:ab:6b:45:ce:b6:93:51:74:5b:8b:bc:c6:1b:f5:
16:ce:af:46:d5:d7:4b:56:24:24:b6:2b:df:dd:86:
68:9d:7e:97:4d:c4:c0:99:4f:32:fd:cf:e4:da:08:
ac:92:53:14:1c:31:5a:94:4e:82:d5:91:b4:7d:54:
91:7f:ea:c9:84:e2:f7:f3:46:f1:66:dd:f2:65:6e:
20:f6:b8:3b:f7:fa:f1:e6:51:7e:8a:16:2b:24:97:
64:8a:c4:41:31:2d:58:61:47:fc:b4:5a:b2:67:2f:
2d:fc:b6:e6:33:21:6c:83:26:d8:51:44:61:af:f0:
e4:9a:b6:ef:dc:00:ef:18:df:ce:41:5d:c0:c3:12:
ca:1b:99:36:7f:02:fd:42:f2:da:69:ca:51:d4:f9:
ca:1f:b6:9a:0e:72:23:35:a5:f4:f5:7b:64:a7:da:
6e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:02:81:30:97:1F:B5:48:49:DD:FE:BA:32:23:10:F0:7F:90:0B:22
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:15:97:5a:01:be:55:5b:e2:bb:15:4a:e6:f8:5b:e2:ea:dd:
fe:94:9e:d6:8b:a2:c0:79:3a:7d:1f:2c:df:0b:bf:77:3f:39:
83:4e:5f:64:6a:10:07:de:a6:6f:d0:c6:26:73:6c:c4:86:bd:
1d:6d:ec:50:4b:af:bd:65:c9:ff:0f:53:a4:b2:09:aa:65:3e:
02:71:fd:1d:f8:4a:84:f5:41:6e:6c:45:1e:51:31:c1:18:5a:
62:98:73:c4:8c:c1:a3:28:7c:7e:81:1e:ed:6d:b1:b8:1b:56:
13:5c:2d:f8:e2:cd:78:18:de:cc:92:25:bd:96:40:91:06:26:
ff:38:22:38:f4:01:12:c5:ae:9e:68:d9:a6:90:9c:a3:c7:46:
13:b1:cb:80:36:f9:1e:55:42:0c:32:ec:42:49:44:39:79:6c:
1c:c8:fe:e6:89:a9:c1:2d:b3:53:e1:c1:ff:14:62:df:5d:50:
bd:27:8d:13:84:6b:11:0e:49:f9:fc:22:6c:da:f3:c7:5b:6a:
db:40:ac:a3:ac:b9:c8:30:65:8f:29:02:29:84:c8:10:e8:75:
c4:2e:81:a5:bb:5e:9f:41:e0:b4:0e:1b:34:e8:ce:a2:74:18:
45:3a:c4:eb:e6:54:90:eb:97:fe:ca:3c:45:ba:cb:7c:66:d9:
da:a9:ef:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOhkXnJual9zxzub7luHEtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4N2UxYzk3ZjcxZjM1NTg2N2UzZmI4NzdmMjFhYTUxMzBi
NmNmNWQwHhcNMjUxMTA0MTEwMDEzWhcNMjUxMTA1MTEwMDEzWjAzMTEwLwYDVQQD
Eyg5NTAyODEzMDk3MWZiNTQ4NDlkZGZlYmEzMjIzMTBmMDdmOTAwYjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2DUQpBwfPdq+57C2QhJRHdDiuJ51
wvd9kNy2gtm+Zd61HZA1hY3/knRNsg7iF8+Mu/9i60j8Nh6ktcsGP8MkOxHQ88VA
yPacmOxKKpgDv4oCWNIiGRycOBqAq2tFzraTUXRbi7zGG/UWzq9G1ddLViQktivf
3YZonX6XTcTAmU8y/c/k2gisklMUHDFalE6C1ZG0fVSRf+rJhOL380bxZt3yZW4g
9rg79/rx5lF+ihYrJJdkisRBMS1YYUf8tFqyZy8t/LbmMyFsgybYUURhr/Dkmrbv
3ADvGN/OQV3AwxLKG5k2fwL9QvLaacpR1PnKH7aaDnIjNaX09Xtkp9puFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJUCgTCXH7VISd3+ujIjEPB/kAsiMB8GA1UdIwQY
MBaAFCh+HJf3HzVYZ+P7h38hqlEwts9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEt
OWViM2M2ODJiMDA5LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEtOWViM2M2ODJiMDA5
LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABhWXWgG+
VVviuxVK5vhb4urd/pSe1ouiwHk6fR8s3wu/dz85g05fZGoQB96mb9DGJnNsxIa9
HW3sUEuvvWXJ/w9TpLIJqmU+AnH9HfhKhPVBbmxFHlExwRhaYphzxIzBoyh8foEe
7W2xuBtWE1wt+OLNeBjezJIlvZZAkQYm/zgiOPQBEsWunmjZppCco8dGE7HLgDb5
HlVCDDLsQklEOXlsHMj+5ompwS2zU+HB/xRi311QvSeNE4RrEQ5J+fwibNrzx1tq
20Cso6y5yDBljykCKYTIEOh1xC6Bpbten0HgtA4bNOjOonQYRTrE6+ZUkOuX/so8
RbrLfGbZ2qnv/A==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:55:42 2025 by rpki-client