Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
File: KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft (raw, json)
Hash identifier: 4ZBXK5i2QFJK5zy96yJWICIZlHyXsHCs0tGIH959r5E=
Subject key identifier: 9B:3F:4B:AF:73:9F:F8:26:11:5C:19:D1:F4:B2:9E:89:72:8E:DF:AA
Authority key identifier: 2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
Certificate issuer: /CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Certificate serial: 019873E30A8E467E07F0FE824C49938D11CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
Manifest number: 0B32
Signing time: Mon 04 Aug 2025 07:01:55 +0000
Manifest this update: Mon 04 Aug 2025 07:01:55 +0000
Manifest next update: Tue 05 Aug 2025 07:01:55 +0000
Files and hashes: 1: HDOhzz0jBa_Gp9AJUMy27D9Cjlg.roa (hash: lm71x5ibbc8ZUL32IG9cJWwnD/vjqa8xr80jq2AaleE=)
2: KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl (hash: N6Z6dZYgKQKGE20FIRPKTFZympySEAu+TfVgVshN3qk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:0a:8e:46:7e:07:f0:fe:82:4c:49:93:8d:11:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Validity
Not Before: Aug 4 07:01:55 2025 GMT
Not After : Aug 5 07:01:55 2025 GMT
Subject: CN=9b3f4baf739ff826115c19d1f4b29e89728edfaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:71:d0:e3:dc:e9:ea:46:ec:73:98:ce:98:bb:
26:fc:71:74:1e:7f:d2:f5:ee:0d:49:aa:c3:29:34:
44:fa:22:12:45:51:5e:91:fa:0a:3e:1d:ac:ef:6f:
24:53:61:c1:96:20:b7:8a:db:2e:fd:92:83:01:de:
4f:9e:4a:1f:11:96:7f:5b:4d:df:7e:26:70:35:15:
fe:95:de:f4:38:9b:a9:89:7a:de:cc:d3:8e:c8:ab:
be:9b:b1:fa:f7:69:2e:7e:95:a8:ba:f7:a2:5e:2a:
29:e5:a8:3a:ec:d6:e1:68:82:f1:5f:6b:aa:23:3e:
c1:8a:92:f1:43:49:f7:fb:c5:b0:97:34:05:8d:ed:
90:a3:cc:8d:48:38:ec:44:2a:81:2a:9a:c8:8c:23:
61:f2:ef:d0:47:a7:41:70:b1:23:0b:11:af:0a:1b:
ab:41:f8:e3:74:f7:4d:50:19:91:7f:09:76:44:10:
01:bc:e1:c2:0d:d0:ef:bc:59:ce:06:87:81:2b:78:
a9:da:30:17:b9:be:e6:01:5e:db:06:95:f6:cc:b0:
08:c4:33:e7:3e:41:c6:78:70:2a:2d:6e:a8:c5:a2:
1b:65:89:4a:4d:c4:25:d1:f4:cf:34:33:dd:15:03:
48:39:ff:d7:e9:c7:a3:8c:25:7b:d8:2a:0b:e6:8c:
f0:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:3F:4B:AF:73:9F:F8:26:11:5C:19:D1:F4:B2:9E:89:72:8E:DF:AA
X509v3 Authority Key Identifier:
keyid:2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:c1:82:ac:e9:9a:2d:6f:f1:0c:c0:4e:5d:dc:81:c8:ed:3b:
e4:88:b0:5f:24:86:c3:fa:59:24:d2:2c:97:c8:1c:d5:05:75:
0e:98:89:a5:dc:79:19:69:0e:14:5c:1f:c4:96:34:85:e3:32:
fc:61:07:78:9f:35:6d:12:da:49:e7:9a:6f:86:ff:da:14:5b:
e3:36:2b:09:b0:cf:54:64:b6:a0:51:dc:46:a3:22:45:cc:ad:
7d:b9:4c:28:42:e6:aa:3e:c9:4a:62:5d:ca:b6:15:c5:76:3d:
57:f6:86:ef:09:1c:ef:81:34:32:78:cd:69:63:e9:1d:32:1d:
c4:d5:df:37:76:f2:73:66:d6:cb:c3:e1:d9:70:d1:24:6e:61:
5d:ef:fb:c9:2a:eb:da:49:df:d8:56:1f:0f:6d:8d:03:17:33:
c2:b5:ce:82:7c:2d:0a:41:3c:c1:09:97:ef:02:d8:8c:cd:1a:
1a:b7:f8:8d:6f:c1:56:46:0b:19:51:a3:db:d6:61:54:de:d0:
42:72:a4:26:15:02:c4:f2:47:12:c0:d9:46:92:9b:a9:69:4c:
ae:b3:2c:e8:d0:9e:a7:b5:05:58:5a:d5:44:6c:89:bf:64:fa:
d9:e6:ef:42:39:63:3a:37:56:db:59:e1:7b:3c:41:c0:16:9f:
e5:8d:8d:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4wqORn4H8P6CTEmTjRHNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMjFiMWFiZTc4N2UyNTQ2NDM5MWZhZDYxZDAwZTNmMzc2
Yjk4Y2YwHhcNMjUwODA0MDcwMTU1WhcNMjUwODA1MDcwMTU1WjAzMTEwLwYDVQQD
Eyg5YjNmNGJhZjczOWZmODI2MTE1YzE5ZDFmNGIyOWU4OTcyOGVkZmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHHQ49zp6kbsc5jOmLsm/HF0Hn/S
9e4NSarDKTRE+iISRVFekfoKPh2s728kU2HBliC3itsu/ZKDAd5PnkofEZZ/W03f
fiZwNRX+ld70OJupiXrezNOOyKu+m7H692kufpWouveiXiop5ag67NbhaILxX2uq
Iz7BipLxQ0n3+8WwlzQFje2Qo8yNSDjsRCqBKprIjCNh8u/QR6dBcLEjCxGvChur
QfjjdPdNUBmRfwl2RBABvOHCDdDvvFnOBoeBK3ip2jAXub7mAV7bBpX2zLAIxDPn
PkHGeHAqLW6oxaIbZYlKTcQl0fTPNDPdFQNIOf/X6cejjCV72CoL5ozw3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJs/S69zn/gmEVwZ0fSynolyjt+qMB8GA1UdIwQY
MBaAFCohsavnh+JUZDkfrWHQDj83a5jPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZDA2NTQtNzI0Yy00ZTkwLTgxZmYt
OTlmNWNiN2EzY2E1LzEvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9lZDA2NTQtNzI0Yy00ZTkwLTgxZmYtOTlmNWNiN2EzY2E1
LzEvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANMGCrOma
LW/xDMBOXdyByO075IiwXySGw/pZJNIsl8gc1QV1DpiJpdx5GWkOFFwfxJY0heMy
/GEHeJ81bRLaSeeab4b/2hRb4zYrCbDPVGS2oFHcRqMiRcytfblMKELmqj7JSmJd
yrYVxXY9V/aG7wkc74E0MnjNaWPpHTIdxNXfN3byc2bWy8Ph2XDRJG5hXe/7ySrr
2knf2FYfD22NAxczwrXOgnwtCkE8wQmX7wLYjM0aGrf4jW/BVkYLGVGj29ZhVN7Q
QnKkJhUCxPJHEsDZRpKbqWlMrrMs6NCep7UFWFrVRGyJv2T62ebvQjljOjdW21nh
ezxBwBaf5Y2Nug==
-----END CERTIFICATE-----
Generated at Mon Aug 4 10:58:23 2025 by rpki-client