Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: tZf87Cbzn5Ii7UKed3KVm7fG3wCq3wHknfAMeJcaqFw=
Subject key identifier: 6F:BF:BF:32:5A:7E:D3:17:E3:EF:64:70:08:06:F0:85:FD:D9:7E:AC
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 019A4D73E0F0916201A586D4B8B4C4433C2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 07C9
Signing time: Tue 04 Nov 2025 06:00:31 +0000
Manifest this update: Tue 04 Nov 2025 06:00:31 +0000
Manifest next update: Wed 05 Nov 2025 06:00:31 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: ZKXeeKfz8RjLwY2ILrYVeHL1GzfL7BouF6WIJlahfbs=)
2: wd_UoJqlC6X8mKMfS7O-YEGVRuo.roa (hash: xFPdoUnkz2JIkzmQ5taq1hUGjTFKvPuKX93R37CXGQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:e0:f0:91:62:01:a5:86:d4:b8:b4:c4:43:3c:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: Nov 4 06:00:31 2025 GMT
Not After : Nov 5 06:00:31 2025 GMT
Subject: CN=6fbfbf325a7ed317e3ef64700806f085fdd97eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:14:3f:b3:b2:34:31:cc:a2:2b:24:c4:96:59:
50:63:6c:20:04:84:78:f7:f0:94:4c:cc:61:39:02:
50:84:2a:63:8d:be:0e:ae:c0:1d:c0:da:b7:a4:2f:
9a:ea:49:f2:97:8e:92:70:f4:51:00:6a:1e:f6:0a:
cc:71:c2:2a:f2:38:59:1b:59:83:99:44:4d:c1:7c:
89:1e:b8:5b:5c:e5:4d:33:66:71:37:ba:98:d2:05:
cb:7a:7d:f9:a2:0a:c6:cb:39:60:18:0d:27:cd:b1:
7d:ab:06:64:37:f0:7f:20:be:81:20:d3:d3:89:c7:
60:32:8c:8c:00:64:d1:97:94:cf:46:56:5d:a9:63:
29:5a:fd:3d:d3:5d:c5:c2:94:7b:d6:9e:a3:f4:2a:
eb:c8:c6:fa:b7:7f:22:1b:4e:78:99:d3:ca:b8:44:
e3:1d:92:af:a7:c0:3a:93:2d:57:fe:7c:0c:26:ea:
74:48:12:a9:a5:cf:5b:43:eb:57:7a:0f:e4:60:89:
9d:95:82:10:44:fc:c8:7e:42:20:d5:b5:df:ae:e9:
ab:36:14:bf:e1:00:3e:7b:8f:22:48:68:1a:6d:82:
f7:ca:29:50:75:e6:98:61:d7:99:b3:d9:c3:37:20:
a6:30:84:7c:78:ce:cd:f6:b6:50:c9:31:9d:57:80:
0d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BF:BF:32:5A:7E:D3:17:E3:EF:64:70:08:06:F0:85:FD:D9:7E:AC
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:eb:ca:46:9c:b1:5c:d4:0b:26:cd:95:cb:94:c6:35:0c:a6:
e0:73:4e:1f:fd:77:cc:f3:c4:90:90:5b:90:4e:4e:7f:71:8c:
f5:44:b4:a3:0a:89:85:11:d5:a6:73:34:06:34:74:56:d9:da:
6a:84:1c:72:f2:8b:41:23:42:45:3e:94:c1:8e:ed:55:b3:e0:
66:fd:4e:90:b4:d1:ed:34:53:9b:23:dc:53:f0:d1:c3:66:e0:
0b:b9:3e:2e:c9:73:2c:87:5a:f8:51:9d:0d:66:c0:a2:6f:02:
72:e5:7c:d8:27:f6:af:64:30:19:a1:8f:da:69:5f:01:db:8c:
36:a6:7a:2c:00:5c:e7:c8:99:41:72:82:4d:d8:a7:5c:bd:f0:
51:20:f8:25:48:c8:e2:7e:39:83:3b:1b:30:98:c2:ae:8c:34:
90:12:ea:56:cf:0b:c2:c2:58:c1:25:23:13:b3:95:28:2e:d9:
d2:27:e2:2d:74:0b:97:1e:9a:b6:60:6c:63:d6:c9:e5:8d:fb:
36:7f:05:9b:5c:a4:05:2e:11:96:de:7f:21:03:0f:db:ef:03:
7f:d4:6e:d6:7a:87:b5:48:84:35:c2:39:a6:4c:7e:00:40:1c:
d4:58:4b:71:c2:05:0e:a2:c6:ba:8f:21:f0:5a:0d:81:8c:ac:
c3:be:06:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpNc+DwkWIBpYbUuLTEQzwvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwZDU4MjJkM2M3YmJmN2FiNTQwNGRkYTg4ZmQ5ZGE5MjEz
OGRlMjEwHhcNMjUxMTA0MDYwMDMxWhcNMjUxMTA1MDYwMDMxWjAzMTEwLwYDVQQD
Eyg2ZmJmYmYzMjVhN2VkMzE3ZTNlZjY0NzAwODA2ZjA4NWZkZDk3ZWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBQ/s7I0McyiKyTElllQY2wgBIR4
9/CUTMxhOQJQhCpjjb4OrsAdwNq3pC+a6knyl46ScPRRAGoe9grMccIq8jhZG1mD
mURNwXyJHrhbXOVNM2ZxN7qY0gXLen35ogrGyzlgGA0nzbF9qwZkN/B/IL6BINPT
icdgMoyMAGTRl5TPRlZdqWMpWv09013FwpR71p6j9CrryMb6t38iG054mdPKuETj
HZKvp8A6ky1X/nwMJup0SBKppc9bQ+tXeg/kYImdlYIQRPzIfkIg1bXfrumrNhS/
4QA+e48iSGgabYL3yilQdeaYYdeZs9nDNyCmMIR8eM7N9rZQyTGdV4ANQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG+/vzJaftMX4+9kcAgG8IX92X6sMB8GA1UdIwQY
MBaAFJDVgi08e796tUBN2oj9nakhON4hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva05XQ0xUeDd2M3ExUUUzYWlQMmRxU0U0M2lFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iMzVjOWEtODQ5NS00MTY5LThjNTAt
MzY5MmY3ODQxNjE5LzEva05XQ0xUeDd2M3ExUUUzYWlQMmRxU0U0M2lFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iMzVjOWEtODQ5NS00MTY5LThjNTAtMzY5MmY3ODQxNjE5
LzEva05XQ0xUeDd2M3ExUUUzYWlQMmRxU0U0M2lFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbevKRpyx
XNQLJs2Vy5TGNQym4HNOH/13zPPEkJBbkE5Of3GM9US0owqJhRHVpnM0BjR0Vtna
aoQccvKLQSNCRT6UwY7tVbPgZv1OkLTR7TRTmyPcU/DRw2bgC7k+LslzLIda+FGd
DWbAom8CcuV82Cf2r2QwGaGP2mlfAduMNqZ6LABc58iZQXKCTdinXL3wUSD4JUjI
4n45gzsbMJjCrow0kBLqVs8LwsJYwSUjE7OVKC7Z0ifiLXQLlx6atmBsY9bJ5Y37
Nn8Fm1ykBS4Rlt5/IQMP2+8Df9Ru1nqHtUiENcI5pkx+AEAc1FhLccIFDqLGuo8h
8FoNgYysw74G0w==
-----END CERTIFICATE-----
Generated at Tue Nov 4 14:54:25 2025 by rpki-client