Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: RM1XsQEl50M/ItXFIhdCFM+Cdvp7eUqc+gaFjefY5OM=
Subject key identifier: B2:1F:43:8F:8A:73:E0:13:93:E1:A6:81:4F:A3:52:D9:A0:28:AD:FB
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 01976E875076AB059B5D4116679D788206CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 13:00:51 +0000
Manifest this update: Sat 14 Jun 2025 13:00:51 +0000
Manifest next update: Sun 15 Jun 2025 13:00:51 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: SzpbZyWhBd7nqnB4Gx86odOGcjIzXgga4XSXfXR23uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 13:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:87:50:76:ab:05:9b:5d:41:16:67:9d:78:82:06:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Jun 14 13:00:51 2025 GMT
Not After : Jun 15 13:00:51 2025 GMT
Subject: CN=b21f438f8a73e01393e1a6814fa352d9a028adfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5f:21:93:14:49:5b:b8:24:50:e5:19:39:21:
75:4a:c1:b5:4a:be:2b:e9:27:e8:dd:60:77:dc:1a:
fd:77:8c:c2:b4:31:a4:d8:8a:8a:05:a6:cd:a1:c5:
92:7e:7c:3e:06:28:39:06:e5:83:d5:c7:cd:c0:0b:
db:fb:36:1f:f5:01:00:85:bf:79:7b:7c:4e:d8:88:
48:0a:96:54:68:11:1c:b8:5b:5a:80:04:55:3c:e4:
a3:12:d9:45:b7:07:bf:79:fb:ed:2d:ee:2c:d1:c6:
a9:bd:30:2c:cc:e7:58:f0:9c:d2:f7:b8:98:6d:0b:
fb:30:20:0e:13:ba:db:ff:5d:21:0e:20:b8:88:6a:
0e:f7:00:eb:43:ae:0c:66:fc:69:bb:70:10:85:a4:
0e:53:ea:c9:10:88:63:9e:1d:91:0d:30:45:bf:41:
09:f3:b1:5e:30:3f:31:8b:12:48:31:f6:ec:82:72:
43:a9:23:8a:74:17:d4:bb:5d:9d:c3:30:5c:2a:91:
0b:89:a1:71:57:79:d9:f8:c4:86:5a:f1:6a:76:ec:
61:dd:13:b6:27:20:0a:82:8b:d5:33:a6:83:3c:78:
18:32:b6:d3:63:c4:57:16:d5:56:9d:9f:56:b9:39:
81:66:d2:f9:6c:78:a7:e5:ba:f9:74:fa:61:96:d8:
ee:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:1F:43:8F:8A:73:E0:13:93:E1:A6:81:4F:A3:52:D9:A0:28:AD:FB
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:4d:2a:f1:e4:e8:9b:21:c6:2f:43:01:82:c0:69:09:6e:81:
ab:8f:c8:17:79:1e:35:f6:f1:1a:66:36:4d:d3:5c:3a:3a:15:
b0:9c:ff:76:ec:1e:bf:a1:43:9f:e7:44:1c:98:cd:7a:46:96:
21:87:10:72:d4:60:36:f4:3d:35:20:b1:cd:42:4d:5f:ac:4d:
ba:ff:ba:2a:44:fe:32:68:51:a2:59:fb:d2:46:97:3c:5b:0c:
cd:af:45:d7:06:65:08:29:d5:52:59:93:a1:18:e6:1b:41:58:
2c:6f:6a:cb:e0:08:cf:a9:cf:ae:f3:22:3e:be:be:0e:a4:e7:
af:32:6b:c8:ed:19:0b:5d:7d:02:70:1c:37:6e:80:bb:9c:f0:
93:1d:4e:5d:e8:cc:29:ac:1d:1b:70:5f:3e:36:ae:93:98:28:
54:e7:e0:58:53:42:91:d3:74:b9:5f:db:9a:62:9d:a3:ff:e7:
19:b6:ae:37:c8:3f:07:31:c7:75:98:5e:e9:e6:4d:5e:c3:10:
df:cb:ca:bc:a0:c2:18:7f:9f:f6:97:30:d6:90:60:db:7d:24:
7d:1c:93:b7:80:4d:19:d2:7e:61:39:58:15:b9:dc:56:7e:47:
2c:15:78:79:fc:b3:50:ac:33:d9:c1:d2:0c:dc:fd:1a:33:3f:
e3:d3:f4:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduh1B2qwWbXUEWZ514ggbKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODQzZGI5NmU0ZjQ1OWI4N2RmOGMyNzkwNTdlZWQ2OWJi
OWI4NjIwHhcNMjUwNjE0MTMwMDUxWhcNMjUwNjE1MTMwMDUxWjAzMTEwLwYDVQQD
EyhiMjFmNDM4ZjhhNzNlMDEzOTNlMWE2ODE0ZmEzNTJkOWEwMjhhZGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvF8hkxRJW7gkUOUZOSF1SsG1Sr4r
6Sfo3WB33Br9d4zCtDGk2IqKBabNocWSfnw+Big5BuWD1cfNwAvb+zYf9QEAhb95
e3xO2IhICpZUaBEcuFtagARVPOSjEtlFtwe/efvtLe4s0capvTAszOdY8JzS97iY
bQv7MCAOE7rb/10hDiC4iGoO9wDrQ64MZvxpu3AQhaQOU+rJEIhjnh2RDTBFv0EJ
87FeMD8xixJIMfbsgnJDqSOKdBfUu12dwzBcKpELiaFxV3nZ+MSGWvFqduxh3RO2
JyAKgovVM6aDPHgYMrbTY8RXFtVWnZ9WuTmBZtL5bHin5br5dPphltjuGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLIfQ4+Kc+ATk+GmgU+jUtmgKK37MB8GA1UdIwQY
MBaAFCiEPbluT0Wbh9+MJ5BX7tabubhiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9kM2E1NWMtMWY2Mi00Nzc5LTg2Yjkt
NjFiNTBmNmE2YzAyLzEvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9kM2E1NWMtMWY2Mi00Nzc5LTg2YjktNjFiNTBmNmE2YzAy
LzEvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIU0q8eTo
myHGL0MBgsBpCW6Bq4/IF3keNfbxGmY2TdNcOjoVsJz/duwev6FDn+dEHJjNekaW
IYcQctRgNvQ9NSCxzUJNX6xNuv+6KkT+MmhRoln70kaXPFsMza9F1wZlCCnVUlmT
oRjmG0FYLG9qy+AIz6nPrvMiPr6+DqTnrzJryO0ZC119AnAcN26Au5zwkx1OXejM
KawdG3BfPjauk5goVOfgWFNCkdN0uV/bmmKdo//nGbauN8g/BzHHdZhe6eZNXsMQ
38vKvKDCGH+f9pcw1pBg230kfRyTt4BNGdJ+YTlYFbncVn5HLBV4efyzUKwz2cHS
DNz9GjM/49P0wQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 00:00:33 2025 by rpki-client