Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: 1JbrnFLVI5nDr9aAEeoEmQAUlezHBra9/sIqZ1gLFlY=
Subject key identifier: 9B:8B:A5:C8:67:AE:96:8A:BC:C8:95:DA:35:3F:F9:03:80:40:F7:0B
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019A5187C1B89DD7B6D90168AB3F9B5C9DD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 02CC
Signing time: Wed 05 Nov 2025 01:00:42 +0000
Manifest this update: Wed 05 Nov 2025 01:00:42 +0000
Manifest next update: Thu 06 Nov 2025 01:00:42 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: qLRhkUCjNblQ2ARmRH+vtaZHXcdG3ZQibmvVQ7+7QRI=)
2: q2_sbJziOr7rwxyhvKWnkNjMans.roa (hash: 0BH7DATsPfSUKJPP/TZdwOG931UfHO+OV4ftBhPZrwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 01:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:87:c1:b8:9d:d7:b6:d9:01:68:ab:3f:9b:5c:9d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Nov 5 01:00:42 2025 GMT
Not After : Nov 6 01:00:42 2025 GMT
Subject: CN=9b8ba5c867ae968abcc895da353ff9038040f70b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:27:32:e4:43:4b:cc:85:d2:a1:2a:72:77:d9:
0e:6b:6b:da:6d:4f:d4:a3:1b:56:68:70:26:ac:c1:
39:c9:a3:73:c8:e3:cb:46:85:06:10:8b:20:79:a9:
33:9b:63:5b:7d:5d:97:f1:93:15:4f:d2:27:3f:6e:
d9:22:cf:e2:b3:b6:13:c9:da:60:0d:18:8c:72:ba:
db:50:c9:3e:ac:3d:c1:38:64:26:76:53:83:00:a2:
fd:73:e5:42:30:e4:c7:18:cc:4d:fa:32:ca:c8:46:
90:1f:c5:5c:e0:ff:cc:f0:fd:d0:f0:b1:33:f2:c7:
af:d6:8f:10:cc:5d:a4:cb:7d:88:a7:2a:6e:8d:55:
48:0e:d6:1e:4f:c2:c9:e7:4e:ed:a2:92:0a:16:15:
31:3b:06:5d:a3:70:8e:94:87:fd:03:24:66:3f:66:
d1:c0:4a:ad:e6:72:78:4d:0a:57:fe:ed:61:ee:fc:
ba:97:fa:bd:4f:ee:03:49:ac:22:d7:4c:fe:df:87:
d8:51:a5:a5:b8:1f:36:73:69:77:0e:1a:31:e9:f3:
88:29:6d:07:22:43:89:b0:96:27:31:be:0c:d4:72:
94:71:e3:74:05:d1:b1:4d:26:60:ef:a9:57:f8:3e:
04:a3:64:02:3d:13:86:ed:eb:60:c3:5c:ad:ae:27:
cc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8B:A5:C8:67:AE:96:8A:BC:C8:95:DA:35:3F:F9:03:80:40:F7:0B
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:07:23:5c:ad:b8:55:9c:3e:00:36:3f:55:9e:41:22:fb:fb:
7d:a1:f4:c7:f2:c6:52:f7:e0:47:b4:94:4b:ad:89:21:11:12:
15:db:04:dc:af:ff:2b:ad:d8:84:20:1d:3a:b8:3b:6c:df:77:
65:3d:4b:6b:9d:c6:0d:4b:4a:1c:11:dc:dd:01:1b:03:67:1a:
f1:b1:2e:94:ad:30:e3:4d:2e:b8:8a:65:78:3d:01:b9:67:d6:
5a:de:6d:6a:66:37:fd:80:f4:0c:f8:15:00:70:a1:48:00:9c:
64:9d:95:84:00:bb:df:eb:33:c4:fa:d9:ff:e5:58:cb:2c:2d:
d5:06:a8:e9:a9:b7:ba:ef:a0:94:0e:82:a1:c9:a8:35:9c:29:
c6:26:dd:19:7e:9d:29:0f:84:73:bf:e0:ac:08:eb:f3:fa:47:
75:b2:b0:ec:be:9f:7a:87:21:fe:a8:95:05:97:13:93:85:0b:
69:e0:76:a1:89:52:af:ed:ed:06:da:8f:03:63:02:a8:06:18:
41:00:79:72:f9:82:53:b2:b1:ac:f5:3c:91:82:bd:c3:59:b9:
ca:e1:5f:bd:41:00:31:9a:b7:03:a3:41:14:09:9b:84:32:be:
7b:33:ae:88:29:e0:1b:86:f6:ca:86:af:be:8d:bb:83:1f:f8:
7c:ff:cd:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpRh8G4nde22QFoqz+bXJ3SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODA0NzRhOTYxNjFkZGUyOTQyY2ZiOWYxODU2YzJmZmM4
ODA5MDQwHhcNMjUxMTA1MDEwMDQyWhcNMjUxMTA2MDEwMDQyWjAzMTEwLwYDVQQD
Eyg5YjhiYTVjODY3YWU5NjhhYmNjODk1ZGEzNTNmZjkwMzgwNDBmNzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsScy5ENLzIXSoSpyd9kOa2vabU/U
oxtWaHAmrME5yaNzyOPLRoUGEIsgeakzm2NbfV2X8ZMVT9InP27ZIs/is7YTydpg
DRiMcrrbUMk+rD3BOGQmdlODAKL9c+VCMOTHGMxN+jLKyEaQH8Vc4P/M8P3Q8LEz
8sev1o8QzF2ky32IpypujVVIDtYeT8LJ507topIKFhUxOwZdo3COlIf9AyRmP2bR
wEqt5nJ4TQpX/u1h7vy6l/q9T+4DSawi10z+34fYUaWluB82c2l3Dhox6fOIKW0H
IkOJsJYnMb4M1HKUceN0BdGxTSZg76lX+D4Eo2QCPROG7etgw1ytrifMbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJuLpchnrpaKvMiV2jU/+QOAQPcLMB8GA1UdIwQY
MBaAFCiAR0qWFh3eKULPufGFbC/8iAkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAt
NzQ2MWE1NmNlOTVlLzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAtNzQ2MWE1NmNlOTVl
LzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYgcjXK24
VZw+ADY/VZ5BIvv7faH0x/LGUvfgR7SUS62JIRESFdsE3K//K63YhCAdOrg7bN93
ZT1La53GDUtKHBHc3QEbA2ca8bEulK0w400uuIpleD0BuWfWWt5tamY3/YD0DPgV
AHChSACcZJ2VhAC73+szxPrZ/+VYyywt1Qao6am3uu+glA6CocmoNZwpxibdGX6d
KQ+Ec7/grAjr8/pHdbKw7L6feoch/qiVBZcTk4ULaeB2oYlSr+3tBtqPA2MCqAYY
QQB5cvmCU7KxrPU8kYK9w1m5yuFfvUEAMZq3A6NBFAmbhDK+ezOuiCngG4b2yoav
vo27gx/4fP/NNA==
-----END CERTIFICATE-----
Generated at Wed Nov 5 09:31:57 2025 by rpki-client