Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft
File: KseP1RenX3fz9P0imsXmcyVgxuE.mft (raw, json)
Hash identifier: c6jwrSomqrYYN/BiH0P54oGwiqrVBKonUyI2wev8T3c=
Subject key identifier: 42:1F:BB:B8:1C:77:DE:D2:5D:9D:78:44:36:55:BC:94:0F:FA:17:3C
Authority key identifier: 2A:C7:8F:D5:17:A7:5F:77:F3:F4:FD:22:9A:C5:E6:73:25:60:C6:E1
Certificate issuer: /CN=2ac78fd517a75f77f3f4fd229ac5e6732560c6e1
Certificate serial: 019A4F98E3775C801610F5BC9BE1348FF41B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft
Manifest number: 170E
Signing time: Tue 04 Nov 2025 16:00:10 +0000
Manifest this update: Tue 04 Nov 2025 16:00:10 +0000
Manifest next update: Wed 05 Nov 2025 16:00:10 +0000
Files and hashes: 1: IgyiZQsGF35ZpqMjFvvmpe-Uiy0.roa (hash: pAyIL1yLWM74WtAtlIRzPUKtL/NRSv2opfBvsE4P7Hg=)
2: KseP1RenX3fz9P0imsXmcyVgxuE.crl (hash: r8JL6miPC3SihMjgefkayU0rizX5D65v+bQwZDmOG3k=)
3: LQeosQtAPfSnVgSVDz2OO819_2c.roa (hash: Tkr19vAUAWlnJvYoR9UT3slqIpIAZEXQA2P0LTiz6vk=)
4: RCGJFAFAV6aiMpIUxmySWlcVGcg.roa (hash: QvC8yM0b6tNvgcZ8K0setdROoeG+A+pCENVWYJBxdUY=)
5: TG0C9piKaVRjDBAoOKXP984iuIo.roa (hash: EaPKdJGvcjOx3gx7VBDHr9Ib+3e6fswqULU49tGRtHE=)
6: W8cH_RfNNK2PVtZ4dkQnNuqrxnc.roa (hash: 7tsNb5ZcCAlwiASwz40Hk6RbBRk52zjaoiAuvE/+RQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:98:e3:77:5c:80:16:10:f5:bc:9b:e1:34:8f:f4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac78fd517a75f77f3f4fd229ac5e6732560c6e1
Validity
Not Before: Nov 4 16:00:10 2025 GMT
Not After : Nov 5 16:00:10 2025 GMT
Subject: CN=421fbbb81c77ded25d9d78443655bc940ffa173c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c0:a2:6e:cb:fa:5a:35:87:1d:a5:98:f2:2d:
9d:bc:39:2f:c7:60:b7:d9:9e:22:2c:02:b0:f3:4d:
67:50:fd:c5:f9:a0:d4:3e:b0:f3:20:11:df:f6:fa:
8f:61:28:4c:69:84:f1:92:80:1d:b2:08:8c:18:ca:
29:9b:a8:e0:a3:61:47:8e:7c:ef:9c:78:53:07:f6:
4a:84:e5:67:8e:1b:4d:65:06:ce:3b:f9:86:b0:21:
fe:a5:ed:4a:89:d1:be:9f:8b:4c:e3:ef:ad:60:1d:
f0:26:99:af:af:49:31:db:ed:2c:2c:50:30:8f:3b:
3d:16:7c:89:4b:4f:c4:9e:e5:da:e0:bc:dc:c4:14:
de:f6:ab:a2:f8:ca:05:09:f7:2a:87:7c:dc:a2:cd:
ef:19:45:cb:cd:0c:43:41:5f:96:8d:fb:9e:34:2a:
83:69:d5:fb:b3:77:20:7e:a6:df:c5:96:db:26:da:
ef:db:14:4e:c9:20:ab:03:0d:32:44:7b:e9:66:cf:
25:ec:a9:51:55:3a:a1:5f:48:ce:34:e3:69:eb:c1:
f9:a9:db:cf:22:bd:ed:e9:17:fe:7f:9f:ee:16:d4:
54:ed:89:25:59:32:3b:8a:14:50:21:7e:92:57:c8:
7a:c4:9c:64:91:d8:84:d2:e7:30:ea:92:29:3a:b2:
e5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1F:BB:B8:1C:77:DE:D2:5D:9D:78:44:36:55:BC:94:0F:FA:17:3C
X509v3 Authority Key Identifier:
keyid:2A:C7:8F:D5:17:A7:5F:77:F3:F4:FD:22:9A:C5:E6:73:25:60:C6:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:e6:1c:b0:ce:06:2b:a5:0e:74:e2:e0:39:3b:11:f7:f7:6a:
02:d8:20:7c:2a:b4:a7:36:c2:d5:8d:94:0d:ba:c9:c2:79:09:
37:5d:cd:cf:f6:b5:5a:b9:a5:57:9e:31:c3:74:3e:30:22:5e:
d5:0d:97:58:08:25:34:04:f0:a1:2a:26:8b:1d:51:ed:4b:b9:
9c:5f:0b:06:a0:e1:eb:79:73:98:44:b7:8f:9b:da:6f:9d:34:
78:6d:1a:c0:bf:67:0b:1a:56:8a:51:3f:4a:d2:4e:1d:cf:69:
3f:57:ae:e7:69:a9:81:aa:a6:f2:a7:11:3b:b4:46:0d:61:c5:
f1:72:91:79:98:83:ad:e9:69:e2:0f:ef:0d:e0:7a:cc:1e:66:
b4:24:c5:f0:a1:c1:37:fd:77:07:20:76:e5:ff:e0:28:b5:ef:
c4:e6:0a:01:50:e1:20:38:c0:ba:31:28:0a:29:cc:1f:d5:83:
a0:89:26:78:37:30:61:44:59:f6:0d:b9:48:70:88:ab:8e:14:
5f:da:ce:16:fa:e9:81:14:63:a4:70:a3:f6:af:45:19:76:de:
12:1f:83:92:99:e9:c7:33:52:22:0a:52:40:1b:58:b7:34:c3:
87:49:ab:16:cd:5d:f0:76:e0:bc:d2:c8:8a:2f:4d:bb:bb:ad:
67:a3:0b:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPmON3XIAWEPW8m+E0j/QbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzc4ZmQ1MTdhNzVmNzdmM2Y0ZmQyMjlhYzVlNjczMjU2
MGM2ZTEwHhcNMjUxMTA0MTYwMDEwWhcNMjUxMTA1MTYwMDEwWjAzMTEwLwYDVQQD
Eyg0MjFmYmJiODFjNzdkZWQyNWQ5ZDc4NDQzNjU1YmM5NDBmZmExNzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosCibsv6WjWHHaWY8i2dvDkvx2C3
2Z4iLAKw801nUP3F+aDUPrDzIBHf9vqPYShMaYTxkoAdsgiMGMopm6jgo2FHjnzv
nHhTB/ZKhOVnjhtNZQbOO/mGsCH+pe1KidG+n4tM4++tYB3wJpmvr0kx2+0sLFAw
jzs9FnyJS0/EnuXa4LzcxBTe9qui+MoFCfcqh3zcos3vGUXLzQxDQV+WjfueNCqD
adX7s3cgfqbfxZbbJtrv2xROySCrAw0yRHvpZs8l7KlRVTqhX0jONONp68H5qdvP
Ir3t6Rf+f5/uFtRU7YklWTI7ihRQIX6SV8h6xJxkkdiE0ucw6pIpOrLlFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIfu7gcd97SXZ14RDZVvJQP+hc8MB8GA1UdIwQY
MBaAFCrHj9UXp1938/T9IprF5nMlYMbhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NlUDFSZW5YM2Z6OVAwaW1zWG1jeVZneHVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9jOGYwMmItMGFiYy00MWZlLWJjNTQt
YWM4MDBjNmQ5NzZmLzEvS3NlUDFSZW5YM2Z6OVAwaW1zWG1jeVZneHVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9jOGYwMmItMGFiYy00MWZlLWJjNTQtYWM4MDBjNmQ5NzZm
LzEvS3NlUDFSZW5YM2Z6OVAwaW1zWG1jeVZneHVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApOYcsM4G
K6UOdOLgOTsR9/dqAtggfCq0pzbC1Y2UDbrJwnkJN13Nz/a1WrmlV54xw3Q+MCJe
1Q2XWAglNATwoSomix1R7Uu5nF8LBqDh63lzmES3j5vab500eG0awL9nCxpWilE/
StJOHc9pP1eu52mpgaqm8qcRO7RGDWHF8XKReZiDrelp4g/vDeB6zB5mtCTF8KHB
N/13ByB25f/gKLXvxOYKAVDhIDjAujEoCinMH9WDoIkmeDcwYURZ9g25SHCIq44U
X9rOFvrpgRRjpHCj9q9FGXbeEh+DkpnpxzNSIgpSQBtYtzTDh0mrFs1d8HbgvNLI
ii9Nu7utZ6MLGA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:18:18 2025 by rpki-client