Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: GLk/drm6DkZ+xQ6LUVtSnG+DP4sAMCbJ8qDI8zO+Z3M=
Subject key identifier: B5:E6:11:23:AB:59:48:CB:0E:5C:7F:25:D2:0B:F2:F9:16:BE:9D:90
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 01987C7764ADBA58FC94D853D79DA295CEEB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 030C
Signing time: Tue 05 Aug 2025 23:00:55 +0000
Manifest this update: Tue 05 Aug 2025 23:00:55 +0000
Manifest next update: Wed 06 Aug 2025 23:00:55 +0000
Files and hashes: 1: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: s4IyA6uKMzA2aofIutx7PcpST8UC4VkplWGESpKlFgE=)
2: ffvaic9mo-Ox_7Jsdhd4jhWeyvM.roa (hash: nAU1XWM3o+xHaVb0+VtmU8Q3s90CIRxbMQo+s7S+UMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 23:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:77:64:ad:ba:58:fc:94:d8:53:d7:9d:a2:95:ce:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Aug 5 23:00:55 2025 GMT
Not After : Aug 6 23:00:55 2025 GMT
Subject: CN=b5e61123ab5948cb0e5c7f25d20bf2f916be9d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:26:35:16:98:eb:6a:11:0b:4e:76:01:c2:4a:
3e:c8:87:86:37:e0:70:07:62:b3:b5:6f:06:22:08:
fd:f0:31:42:5f:69:b6:d8:c7:ee:5b:8d:ea:17:7f:
b0:7e:88:36:96:82:0e:c3:f5:04:f6:b0:d9:55:90:
36:3e:04:86:16:d1:6a:ae:57:d9:41:8c:72:0f:60:
5c:6f:5e:f0:1a:ae:d7:49:3d:fe:38:7e:68:70:7d:
d1:b7:ce:42:a7:29:ca:32:42:36:51:52:ee:06:f7:
31:23:8d:4e:ad:3c:f9:e7:5f:2d:e4:40:fa:50:0c:
dd:09:dc:25:a4:e5:ef:79:0c:e1:30:80:b8:79:24:
1f:14:96:fa:d3:11:b5:72:f0:31:c5:32:8a:f6:10:
4f:bd:e4:f7:90:e3:99:d2:3a:e8:12:d0:7c:2b:43:
b9:9c:97:73:33:35:cc:65:26:31:d0:8f:1a:9c:cb:
0c:4a:f6:c9:1c:ad:ac:97:48:54:06:80:06:8e:41:
a1:d8:70:83:04:24:e4:e1:91:93:68:89:69:3d:32:
a6:a5:ad:bf:0b:3a:06:ee:26:7f:b5:47:a6:2e:39:
18:6c:52:e5:80:e0:a1:08:06:10:9e:d1:39:7f:38:
99:1d:93:93:70:0a:74:7b:c2:14:a7:64:c2:90:c3:
61:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E6:11:23:AB:59:48:CB:0E:5C:7F:25:D2:0B:F2:F9:16:BE:9D:90
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:8f:6c:55:ef:a5:f5:5d:75:df:31:6d:f0:da:3c:e7:0c:81:
9a:e7:af:15:9e:13:8e:38:fb:97:ec:87:ea:10:34:cd:7c:87:
a3:63:4d:5e:32:49:f9:91:3f:ce:b4:3a:eb:25:a7:e2:77:8f:
ec:09:ed:35:47:5c:af:d0:a9:c1:c3:1b:63:c3:14:b9:ba:49:
1b:f4:a3:4b:b8:eb:37:a4:93:ab:87:b3:82:24:70:08:87:01:
d3:28:2b:60:c2:66:23:7a:38:d6:98:7e:b5:63:d9:f2:26:8b:
11:fc:7d:e4:27:60:82:ec:e6:33:82:f9:c1:c4:ee:9b:fd:55:
17:e0:4e:d3:66:c1:58:81:de:a4:2e:38:89:79:bc:4d:d9:a0:
8e:72:01:fc:c1:f4:a2:e9:ae:d2:9a:45:1e:34:ee:f4:b2:7d:
d3:b0:f5:c5:c2:f5:71:47:7b:e2:64:e4:97:d3:5c:53:e3:62:
db:83:8a:0a:77:0d:1e:e7:a8:93:95:e4:46:8c:1e:42:65:8c:
c4:1d:02:b4:e3:69:1d:94:31:37:65:35:62:ab:58:a5:2b:de:
3c:84:27:b8:e0:50:90:51:9c:e2:a0:53:4f:46:c6:04:f3:c2:
70:ee:89:08:4c:4a:a2:cf:1a:15:9c:83:d8:04:15:10:42:ff:
e5:86:c7:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh8d2Stulj8lNhT152ilc7rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZjUyNDAyMzhiODI4ZjE2ZTYwMjI5ZTI2MzM1MDNmMDQ4
NDY1OTkwHhcNMjUwODA1MjMwMDU1WhcNMjUwODA2MjMwMDU1WjAzMTEwLwYDVQQD
EyhiNWU2MTEyM2FiNTk0OGNiMGU1YzdmMjVkMjBiZjJmOTE2YmU5ZDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CY1FpjrahELTnYBwko+yIeGN+Bw
B2KztW8GIgj98DFCX2m22MfuW43qF3+wfog2loIOw/UE9rDZVZA2PgSGFtFqrlfZ
QYxyD2Bcb17wGq7XST3+OH5ocH3Rt85CpynKMkI2UVLuBvcxI41OrTz5518t5ED6
UAzdCdwlpOXveQzhMIC4eSQfFJb60xG1cvAxxTKK9hBPveT3kOOZ0jroEtB8K0O5
nJdzMzXMZSYx0I8anMsMSvbJHK2sl0hUBoAGjkGh2HCDBCTk4ZGTaIlpPTKmpa2/
CzoG7iZ/tUemLjkYbFLlgOChCAYQntE5fziZHZOTcAp0e8IUp2TCkMNhfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLXmESOrWUjLDlx/JdIL8vkWvp2QMB8GA1UdIwQY
MBaAFCn1JAI4uCjxbmAiniYzUD8EhGWZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8wNjE0YTYtZDAxYy00ZmYyLWE5OTMt
NzI0NjQ1N2ZkMmIzLzEvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8wNjE0YTYtZDAxYy00ZmYyLWE5OTMtNzI0NjQ1N2ZkMmIz
LzEvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANY9sVe+l
9V113zFt8No85wyBmuevFZ4Tjjj7l+yH6hA0zXyHo2NNXjJJ+ZE/zrQ66yWn4neP
7AntNUdcr9CpwcMbY8MUubpJG/SjS7jrN6STq4ezgiRwCIcB0ygrYMJmI3o41ph+
tWPZ8iaLEfx95CdgguzmM4L5wcTum/1VF+BO02bBWIHepC44iXm8TdmgjnIB/MH0
oumu0ppFHjTu9LJ907D1xcL1cUd74mTkl9NcU+Ni24OKCncNHueok5XkRoweQmWM
xB0CtONpHZQxN2U1YqtYpSvePIQnuOBQkFGc4qBTT0bGBPPCcO6JCExKos8aFZyD
2AQVEEL/5YbHHw==
-----END CERTIFICATE-----
Generated at Wed Aug 6 07:53:28 2025 by rpki-client