Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: cOIbvpH0ghPpkuBQL1SW3EBYypUWWQkHanadlbljrnU=
Subject key identifier: B9:13:80:3C:53:F8:81:50:BA:B0:79:80:73:59:35:AA:75:B6:E5:DA
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 0197707560934A8DDFD302FAC52607E9747C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 09DB
Signing time: Sat 14 Jun 2025 22:00:29 +0000
Manifest this update: Sat 14 Jun 2025 22:00:29 +0000
Manifest next update: Sun 15 Jun 2025 22:00:29 +0000
Files and hashes: 1: HlpYPKfUTSJ7pDq2oQziu1OJN70.roa (hash: 2/lnsP1apTOPlsNH0YhFprUwFbQM2G9j3yZLF5vZFt4=)
2: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: bt1FjlK87uwzV+VOF+heDYkWlKFdDjWnADyM5let5xU=)
3: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (hash: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:75:60:93:4a:8d:df:d3:02:fa:c5:26:07:e9:74:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Jun 14 22:00:29 2025 GMT
Not After : Jun 15 22:00:29 2025 GMT
Subject: CN=b913803c53f88150bab07980735935aa75b6e5da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:13:37:68:85:b4:36:04:c3:d2:2e:57:7e:8f:
64:6c:6a:a7:13:65:f9:b4:a4:c1:4d:6f:5b:96:93:
09:64:47:7f:38:df:b5:19:00:a5:c3:d6:2f:0e:6f:
31:96:db:05:d5:39:8f:ac:e9:10:34:ba:3f:5f:c6:
82:1c:f2:71:14:80:aa:22:8b:87:5d:e2:d1:db:69:
a7:fe:68:ae:18:92:86:55:f6:90:83:c9:7f:08:0d:
54:8c:50:93:9d:1a:1e:fe:0d:57:ea:23:96:f7:d1:
f1:78:fc:14:6c:01:da:47:c8:a3:25:c7:b8:70:44:
c8:e5:37:76:27:c5:95:83:6c:17:94:0a:a4:d4:4c:
8e:c9:13:4c:3b:c2:af:b6:eb:a9:4b:22:c0:ee:bf:
98:0e:b7:fb:f6:b5:63:37:4f:86:bb:a7:9e:28:de:
43:4e:7a:34:66:7d:23:b2:98:7f:aa:d0:32:13:9f:
c8:c4:01:46:6f:17:43:e4:f7:20:e9:e4:d7:ed:83:
22:90:a9:91:23:cb:ed:fe:ab:e2:b5:43:31:b3:04:
c7:81:3f:70:3b:9f:97:67:6c:38:ff:80:4c:a4:27:
21:27:16:c3:0d:3a:45:1e:93:f8:9b:b1:98:e0:f5:
7c:55:27:7a:05:e7:4b:91:04:ad:6e:ca:6a:bf:b8:
3f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:13:80:3C:53:F8:81:50:BA:B0:79:80:73:59:35:AA:75:B6:E5:DA
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:e1:66:5e:2a:f1:95:8f:c9:06:5c:0c:1f:a7:24:d8:9f:51:
ed:0a:4e:93:c8:3c:91:02:44:13:04:88:ba:74:6c:df:e3:d5:
e1:95:64:a1:f5:f1:81:b7:2d:20:dd:bb:b2:18:40:5a:7e:c4:
42:2e:85:65:9f:44:b9:23:a6:36:3e:6b:7c:68:e9:5c:31:fb:
e9:aa:21:33:ec:0e:44:7c:35:5a:de:9d:50:7a:d8:95:d1:df:
80:04:84:85:b0:18:9d:74:b8:74:9f:09:9a:34:0c:c0:d5:2b:
fe:ce:3e:73:83:af:86:c6:15:99:68:e1:da:c3:d4:d1:34:a1:
47:3a:c6:a4:51:c0:93:10:25:3e:6f:37:20:ad:5d:9c:f1:77:
8c:2d:d8:c8:a7:f9:56:c0:e6:eb:27:bf:7f:a9:d0:4a:af:2e:
04:9d:6b:eb:30:b5:a8:d2:f6:97:f0:cc:37:c9:9f:16:06:c0:
e1:0c:dc:1a:d1:d3:70:47:32:27:09:6d:08:7f:06:1c:51:dd:
71:61:93:b0:a6:5d:2f:70:2b:74:3b:ef:be:7c:48:c0:5d:03:
3b:67:c8:9f:5f:f7:b8:95:5f:5c:8d:02:be:ca:09:9b:9f:7c:
4a:a5:36:a1:be:40:26:2c:fb:f0:76:b2:c0:59:4f:70:b4:6a:
b8:cb:65:cd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwdWCTSo3f0wL6xSYH6XR8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4N2UxYzk3ZjcxZjM1NTg2N2UzZmI4NzdmMjFhYTUxMzBi
NmNmNWQwHhcNMjUwNjE0MjIwMDI5WhcNMjUwNjE1MjIwMDI5WjAzMTEwLwYDVQQD
EyhiOTEzODAzYzUzZjg4MTUwYmFiMDc5ODA3MzU5MzVhYTc1YjZlNWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRM3aIW0NgTD0i5Xfo9kbGqnE2X5
tKTBTW9blpMJZEd/ON+1GQClw9YvDm8xltsF1TmPrOkQNLo/X8aCHPJxFICqIouH
XeLR22mn/miuGJKGVfaQg8l/CA1UjFCTnRoe/g1X6iOW99HxePwUbAHaR8ijJce4
cETI5Td2J8WVg2wXlAqk1EyOyRNMO8KvtuupSyLA7r+YDrf79rVjN0+Gu6eeKN5D
Tno0Zn0jsph/qtAyE5/IxAFGbxdD5Pcg6eTX7YMikKmRI8vt/qvitUMxswTHgT9w
O5+XZ2w4/4BMpCchJxbDDTpFHpP4m7GY4PV8VSd6BedLkQStbspqv7g/OQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLkTgDxT+IFQurB5gHNZNap1tuXaMB8GA1UdIwQY
MBaAFCh+HJf3HzVYZ+P7h38hqlEwts9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEt
OWViM2M2ODJiMDA5LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEtOWViM2M2ODJiMDA5
LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcOFmXirx
lY/JBlwMH6ck2J9R7QpOk8g8kQJEEwSIunRs3+PV4ZVkofXxgbctIN27shhAWn7E
Qi6FZZ9EuSOmNj5rfGjpXDH76aohM+wORHw1Wt6dUHrYldHfgASEhbAYnXS4dJ8J
mjQMwNUr/s4+c4OvhsYVmWjh2sPU0TShRzrGpFHAkxAlPm83IK1dnPF3jC3YyKf5
VsDm6ye/f6nQSq8uBJ1r6zC1qNL2l/DMN8mfFgbA4QzcGtHTcEcyJwltCH8GHFHd
cWGTsKZdL3ArdDvvvnxIwF0DO2fIn1/3uJVfXI0CvsoJm598SqU2ob5AJiz78Hay
wFlPcLRquMtlzQ==
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:37:01 2025 by rpki-client