Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
File: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft (raw, json)
Hash identifier: VZGLEkuqsRrM+ZXHkCHUlKyzCV02P33XTv2agDx2zKM=
Subject key identifier: 31:65:9F:36:C5:F4:9E:09:43:B1:D7:3A:0D:94:E7:D1:F3:71:04:21
Authority key identifier: 91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
Certificate issuer: /CN=91362d3c0953e8c933f0092a589b75494904f962
Certificate serial: 01989336D30CF3D2CF9E7642DA19FA7446BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
Manifest number: 14D8
Signing time: Sun 10 Aug 2025 09:01:40 +0000
Manifest this update: Sun 10 Aug 2025 09:01:40 +0000
Manifest next update: Mon 11 Aug 2025 09:01:40 +0000
Files and hashes: 1: gF4h3hPUiQwbrFzucTsw-cGzGHQ.roa (hash: EmUyYOWtfES7R4OmRJxOMl7sM7cF9x8yLjgV5Oo/MqY=)
2: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl (hash: tDgbT2anvo+mizEmcWj5zUN63o2RFKlZKHhsVsQ0T2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:93:36:d3:0c:f3:d2:cf:9e:76:42:da:19:fa:74:46:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91362d3c0953e8c933f0092a589b75494904f962
Validity
Not Before: Aug 10 09:01:40 2025 GMT
Not After : Aug 11 09:01:40 2025 GMT
Subject: CN=31659f36c5f49e0943b1d73a0d94e7d1f3710421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:56:2b:4a:15:2a:25:f7:f5:44:9f:b2:a5:dc:
b2:5e:eb:de:1e:66:aa:2b:f4:4b:b5:d3:2d:23:cc:
c9:ed:44:5e:1f:5a:fe:77:87:2c:bf:24:68:30:c3:
0e:a1:f5:9d:53:eb:e9:ac:b8:df:8a:48:f7:aa:53:
9c:27:d2:13:71:e0:5c:4e:31:1e:e9:e2:62:ff:49:
a3:65:88:17:9a:94:2f:45:be:31:85:5c:00:cd:6b:
b8:1c:d7:ed:dc:c7:7d:4d:c9:82:a2:1d:fb:96:7e:
e9:03:7c:40:10:21:30:5d:0b:db:34:9a:f3:d8:ec:
a0:94:ad:f4:f7:a3:26:84:73:68:b1:a3:1f:20:e8:
94:46:b4:58:e8:dd:7f:37:5f:fc:bd:bb:83:02:37:
e8:0c:31:dc:6a:f2:e8:7b:1a:d7:d0:45:05:dc:94:
61:88:14:42:aa:02:54:54:17:ac:96:c7:cd:aa:7c:
a3:cb:cb:ab:15:6e:84:9a:b0:4f:36:11:bb:f4:0d:
b0:35:b0:7d:c2:97:af:52:f8:41:3b:95:4d:99:65:
92:d2:31:81:fe:e3:2a:db:98:0b:03:6c:79:b1:69:
59:50:44:50:4e:17:55:6d:43:c0:a2:6c:55:77:e3:
6f:23:e4:77:b5:57:55:81:9b:31:7d:62:4e:eb:ee:
3b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:65:9F:36:C5:F4:9E:09:43:B1:D7:3A:0D:94:E7:D1:F3:71:04:21
X509v3 Authority Key Identifier:
keyid:91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:79:b9:c0:4f:d0:54:5f:d7:c8:45:cd:c3:6d:ab:fb:2e:e4:
e4:7c:08:f8:d2:56:c2:ac:19:d0:c6:26:a2:9d:c1:fd:e7:56:
9d:b4:e8:16:61:14:11:4a:ea:1f:3e:2e:eb:44:e8:f5:23:8b:
5b:15:9c:87:6e:83:2c:64:4d:04:6d:47:8a:e0:44:91:8d:f8:
64:39:46:83:89:ac:1b:e8:ac:91:d8:4c:a3:4a:03:58:13:e3:
69:ea:29:22:e4:c4:1d:15:0a:35:e1:cd:f1:35:b7:94:47:39:
70:71:ae:33:d2:a9:b6:c5:e4:bd:59:85:80:b4:52:92:6b:37:
9b:9c:96:6f:90:ad:9c:44:b4:e2:be:18:f9:9c:5d:88:f2:38:
bb:56:1b:14:50:20:74:3c:b8:07:53:6d:b3:15:5f:46:d5:eb:
c7:97:da:a0:63:4b:43:48:40:7d:a9:f7:13:50:7c:79:c1:b6:
88:b5:3e:bb:ee:12:3d:f8:9e:e7:19:ff:6c:87:22:74:c2:af:
ee:70:9a:31:bd:55:d4:79:88:04:38:76:01:ae:11:0e:b5:41:
67:95:9a:db:83:fd:b9:b8:e2:59:cb:d1:f5:a5:e9:95:f8:91:
b0:61:9b:9f:23:f3:ae:b5:89:c2:28:cb:8c:27:0f:91:21:9c:
b9:0f:ff:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiTNtMM89LPnnZC2hn6dEa7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMzYyZDNjMDk1M2U4YzkzM2YwMDkyYTU4OWI3NTQ5NDkw
NGY5NjIwHhcNMjUwODEwMDkwMTQwWhcNMjUwODExMDkwMTQwWjAzMTEwLwYDVQQD
EygzMTY1OWYzNmM1ZjQ5ZTA5NDNiMWQ3M2EwZDk0ZTdkMWYzNzEwNDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1YrShUqJff1RJ+ypdyyXuveHmaq
K/RLtdMtI8zJ7UReH1r+d4csvyRoMMMOofWdU+vprLjfikj3qlOcJ9ITceBcTjEe
6eJi/0mjZYgXmpQvRb4xhVwAzWu4HNft3Md9TcmCoh37ln7pA3xAECEwXQvbNJrz
2OyglK3096MmhHNosaMfIOiURrRY6N1/N1/8vbuDAjfoDDHcavLoexrX0EUF3JRh
iBRCqgJUVBeslsfNqnyjy8urFW6EmrBPNhG79A2wNbB9wpevUvhBO5VNmWWS0jGB
/uMq25gLA2x5sWlZUERQThdVbUPAomxVd+NvI+R3tVdVgZsxfWJO6+477QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDFlnzbF9J4JQ7HXOg2U59HzcQQhMB8GA1UdIwQY
MBaAFJE2LTwJU+jJM/AJKlibdUlJBPliMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1RZdFBBbFQ2TWt6OEFrcVdKdDFTVWtFLVdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wMjJlZTQtNDRkZS00MDA0LTk4Mzkt
YTQ0OWNlNDZhOWIxLzEva1RZdFBBbFQ2TWt6OEFrcVdKdDFTVWtFLVdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS8wMjJlZTQtNDRkZS00MDA0LTk4MzktYTQ0OWNlNDZhOWIx
LzEva1RZdFBBbFQ2TWt6OEFrcVdKdDFTVWtFLVdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASnm5wE/Q
VF/XyEXNw22r+y7k5HwI+NJWwqwZ0MYmop3B/edWnbToFmEUEUrqHz4u60To9SOL
WxWch26DLGRNBG1HiuBEkY34ZDlGg4msG+iskdhMo0oDWBPjaeopIuTEHRUKNeHN
8TW3lEc5cHGuM9KptsXkvVmFgLRSkms3m5yWb5CtnES04r4Y+ZxdiPI4u1YbFFAg
dDy4B1NtsxVfRtXrx5faoGNLQ0hAfan3E1B8ecG2iLU+u+4SPfie5xn/bIcidMKv
7nCaMb1V1HmIBDh2Aa4RDrVBZ5Wa24P9ubjiWcvR9aXplfiRsGGbnyPzrrWJwijL
jCcPkSGcuQ//Mg==
-----END CERTIFICATE-----
Generated at Sun Aug 10 15:59:43 2025 by rpki-client