Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: 7BnvwWOOpvR0Sd7SQNWh8v8LrwThNhvW6ow78zKOs/o=
Subject key identifier: 96:A5:43:73:B5:1C:60:2C:74:2D:CF:B2:71:69:7E:65:9A:1B:3B:93
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 0198963754447A7B1CE383C5F513A71227E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 162A
Signing time: Sun 10 Aug 2025 23:01:05 +0000
Manifest this update: Sun 10 Aug 2025 23:01:05 +0000
Manifest next update: Mon 11 Aug 2025 23:01:05 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: erOad6KTg4Ug9JmaP1T9eZhZS2dSyhLoH+DkNHsrI70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 23:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:37:54:44:7a:7b:1c:e3:83:c5:f5:13:a7:12:27:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Aug 10 23:01:05 2025 GMT
Not After : Aug 11 23:01:05 2025 GMT
Subject: CN=96a54373b51c602c742dcfb271697e659a1b3b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:73:28:a5:70:b5:e5:e3:c1:5c:e5:27:f5:d5:
44:1d:d5:c5:1a:30:51:ae:e0:f6:86:b9:ed:67:e4:
1f:4d:c7:92:f5:e5:c6:9e:ae:5a:19:4a:f4:b1:89:
ef:d5:49:ff:62:42:7e:3f:03:67:f7:16:60:ec:4c:
48:65:ca:a4:89:bb:d2:87:c2:b3:67:de:b0:c8:93:
a4:d6:ec:e4:24:2e:4a:34:6f:7e:23:11:7f:d0:b8:
06:43:5b:da:25:f9:44:10:c0:98:21:c5:28:ad:df:
a5:6a:bc:30:c9:b5:c0:c8:a6:8f:c0:37:21:e9:7b:
29:07:67:38:50:e7:fb:8d:b7:45:f9:61:8f:f0:e4:
1f:68:ee:71:ce:80:af:ab:49:0b:02:78:14:75:56:
e0:b9:91:d7:c3:ae:4e:63:9f:4b:6f:3e:8c:7d:c7:
c4:95:09:48:c4:58:10:25:87:58:06:47:61:15:ad:
af:a9:b9:a2:fc:4c:fa:cf:e5:37:11:44:c5:d5:96:
02:9d:42:fa:52:3c:52:6f:36:41:52:c8:0f:99:f8:
57:81:55:28:b0:ae:3b:7a:40:7c:78:5c:19:07:cd:
96:fe:b2:63:ce:24:04:d4:f9:98:d4:bd:49:bf:a7:
21:70:4a:35:fa:be:01:23:fa:26:4b:41:bc:d2:00:
14:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A5:43:73:B5:1C:60:2C:74:2D:CF:B2:71:69:7E:65:9A:1B:3B:93
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:c9:3b:e6:67:e0:a1:d7:a2:68:3e:05:a7:ee:ea:1c:93:35:
97:20:b7:93:ee:06:ed:56:c0:70:72:78:45:67:f9:1f:f4:ce:
b2:97:6f:b2:6f:58:a2:db:07:54:4b:f5:65:41:64:ac:c6:27:
19:99:0a:8b:fd:53:ee:27:4b:95:b9:6a:6c:ac:d4:6f:74:49:
14:46:1f:eb:00:b3:17:6c:81:82:0c:8c:4a:5e:98:6d:f7:6b:
25:64:5c:9f:fb:fa:a0:39:9c:de:0a:e1:84:bc:79:6a:ef:52:
7a:00:80:38:7e:7b:f0:a6:c7:05:32:b2:70:e5:58:0f:d2:6f:
c6:ea:41:8b:9a:e4:d4:cf:d1:56:ac:4d:a2:64:d0:b9:d5:29:
d4:77:50:f3:61:e9:43:1b:50:95:2b:ee:c5:6e:36:b7:9d:f1:
8b:7e:27:5f:38:9b:0f:93:63:31:d2:74:35:c3:21:25:c8:92:
8e:5c:10:98:df:50:21:9e:7f:b4:e4:0d:ab:b8:f3:52:70:11:
ec:f4:78:2c:6e:fc:7a:d6:04:62:81:b5:95:dc:6a:66:22:3f:
5a:ac:93:a3:08:4a:2f:2c:2e:c5:f5:d4:b1:8c:a3:29:4f:9d:
10:20:cf:cf:61:15:c3:69:ef:f5:54:c8:64:1e:ec:b6:c4:78:
2c:9f:0b:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWN1REensc44PF9ROnEifjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNGQ0YTNiNzQ3ZmNhNzAxMDNiMTdmM2RiZGM1MDQ1Y2Fj
ZTMyZGYwHhcNMjUwODEwMjMwMTA1WhcNMjUwODExMjMwMTA1WjAzMTEwLwYDVQQD
Eyg5NmE1NDM3M2I1MWM2MDJjNzQyZGNmYjI3MTY5N2U2NTlhMWIzYjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnMopXC15ePBXOUn9dVEHdXFGjBR
ruD2hrntZ+QfTceS9eXGnq5aGUr0sYnv1Un/YkJ+PwNn9xZg7ExIZcqkibvSh8Kz
Z96wyJOk1uzkJC5KNG9+IxF/0LgGQ1vaJflEEMCYIcUord+larwwybXAyKaPwDch
6XspB2c4UOf7jbdF+WGP8OQfaO5xzoCvq0kLAngUdVbguZHXw65OY59Lbz6MfcfE
lQlIxFgQJYdYBkdhFa2vqbmi/Ez6z+U3EUTF1ZYCnUL6UjxSbzZBUsgPmfhXgVUo
sK47ekB8eFwZB82W/rJjziQE1PmY1L1Jv6chcEo1+r4BI/omS0G80gAUQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJalQ3O1HGAsdC3PsnFpfmWaGzuTMB8GA1UdIwQY
MBaAFNNNSjt0f8pwEDsX89vcUEXKzjLfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDIt
NDM3OTM0YzU4NDUzLzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDItNDM3OTM0YzU4NDUz
LzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADsk75mfg
odeiaD4Fp+7qHJM1lyC3k+4G7VbAcHJ4RWf5H/TOspdvsm9YotsHVEv1ZUFkrMYn
GZkKi/1T7idLlblqbKzUb3RJFEYf6wCzF2yBggyMSl6YbfdrJWRcn/v6oDmc3grh
hLx5au9SegCAOH578KbHBTKycOVYD9JvxupBi5rk1M/RVqxNomTQudUp1HdQ82Hp
QxtQlSvuxW42t53xi34nXzibD5NjMdJ0NcMhJciSjlwQmN9QIZ5/tOQNq7jzUnAR
7PR4LG78etYEYoG1ldxqZiI/WqyTowhKLywuxfXUsYyjKU+dECDPz2EVw2nv9VTI
ZB7stsR4LJ8LdA==
-----END CERTIFICATE-----
Generated at Mon Aug 11 07:30:26 2025 by rpki-client