Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
File: KRl7xzMOqZkA9PyRAzozF-VvdeI.mft (raw, json)
Hash identifier: /5WAy2VygrT/BszKrtSIDk301Y/u+d+6h4LA5QTaIRM=
Subject key identifier: 41:0A:B3:16:BF:86:E3:B4:B3:51:C7:E6:86:52:74:3C:92:63:37:40
Authority key identifier: 29:19:7B:C7:33:0E:A9:99:00:F4:FC:91:03:3A:33:17:E5:6F:75:E2
Certificate issuer: /CN=29197bc7330ea99900f4fc91033a3317e56f75e2
Certificate serial: 0198729885160274BC9C6C66A64C9A5A7194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
Manifest number: 0438
Signing time: Mon 04 Aug 2025 01:00:54 +0000
Manifest this update: Mon 04 Aug 2025 01:00:54 +0000
Manifest next update: Tue 05 Aug 2025 01:00:54 +0000
Files and hashes: 1: KRl7xzMOqZkA9PyRAzozF-VvdeI.crl (hash: DxpATdxZwMMmozGjJi87ENrGUCP6ELkP2Pxl+LajlVE=)
2: lzjPjehPcPKbzhp_BORqJSFXL5w.roa (hash: o7m8VbYXK8WyV5y7PTGt6HIYSCCP18Dfj928jAcIW9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:85:16:02:74:bc:9c:6c:66:a6:4c:9a:5a:71:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29197bc7330ea99900f4fc91033a3317e56f75e2
Validity
Not Before: Aug 4 01:00:54 2025 GMT
Not After : Aug 5 01:00:54 2025 GMT
Subject: CN=410ab316bf86e3b4b351c7e68652743c92633740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:35:5f:eb:1b:39:20:dd:96:01:f0:a7:6d:b8:
6f:d0:01:8d:5e:6e:c3:6f:f7:21:c5:3f:b9:04:f5:
63:31:a1:a4:2c:fc:80:fb:bd:d1:24:48:09:5a:bf:
19:44:d0:e1:d4:4b:0c:6a:b3:55:a1:6a:bf:cd:ee:
29:9a:2e:5b:fb:0e:5c:52:e7:9d:eb:30:34:74:5b:
c5:b1:d6:81:f8:67:05:67:7a:f6:73:73:8c:9a:37:
7c:52:f3:0d:20:f1:54:27:30:2a:92:36:44:99:7f:
a8:e7:06:2f:10:50:b6:72:02:83:c0:7c:6a:2e:55:
13:4e:85:87:2a:b9:24:25:e5:fb:6f:b0:29:7a:a6:
a7:2e:00:90:5b:a9:68:4a:06:e2:2a:4c:66:7e:68:
ce:7e:3e:28:af:4a:81:87:dd:17:fd:3a:a3:0b:f0:
ab:81:8f:2f:10:15:a0:7d:97:83:86:2f:4e:ce:3f:
02:14:27:85:6e:dd:b1:51:cc:b4:cd:66:b5:8d:fa:
c4:a0:96:2a:e9:44:53:47:68:69:b8:c5:e1:48:08:
58:e1:5a:0d:98:3b:5d:ca:31:2f:92:a3:d3:7e:e6:
1d:cc:91:ba:dd:0c:33:47:e3:84:d9:6b:41:5e:c5:
c9:01:c9:c6:00:1f:16:db:2c:e8:a9:08:84:cf:36:
bd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0A:B3:16:BF:86:E3:B4:B3:51:C7:E6:86:52:74:3C:92:63:37:40
X509v3 Authority Key Identifier:
keyid:29:19:7B:C7:33:0E:A9:99:00:F4:FC:91:03:3A:33:17:E5:6F:75:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRl7xzMOqZkA9PyRAzozF-VvdeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1043a7-b276-40dc-9f67-35004af5c935/1/KRl7xzMOqZkA9PyRAzozF-VvdeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:2f:ac:95:a1:04:6a:12:4b:5f:de:54:39:d4:a6:00:91:a4:
75:b2:dc:f6:50:45:4e:92:7b:e3:0c:85:7b:69:5a:1c:e8:ac:
28:18:86:a1:2e:02:fa:67:b3:9e:b9:9d:20:a1:55:3d:bb:75:
69:da:99:5d:6b:76:cb:40:35:e1:7c:b9:62:9f:49:0f:60:9e:
1b:0b:a1:d3:83:f2:d4:f6:df:31:bd:dc:38:0d:48:db:3c:c0:
ae:65:3b:7d:66:c7:82:23:a6:6b:ef:c6:85:46:04:ec:8b:bb:
b8:97:10:84:58:dd:e1:94:e0:b9:b0:62:01:3f:93:cb:eb:2e:
80:a8:88:46:9d:d3:5c:30:78:d9:36:69:42:0e:6f:72:37:d0:
e2:f2:da:b3:0b:9c:1a:0f:69:98:ae:f2:fb:2b:5e:7a:6d:55:
00:dd:c7:1e:e7:48:f7:ac:7f:01:72:31:e6:d2:72:8c:60:f4:
98:6f:4c:77:ba:eb:c2:3e:f2:11:ed:d0:95:da:d0:13:e5:84:
72:c5:01:af:2d:25:c2:5d:1b:90:02:a2:b5:3c:4e:65:3e:cc:
00:f2:ad:77:26:ad:d6:52:c4:0e:04:36:e6:98:ca:53:db:2c:
59:8a:f7:37:91:f5:ec:79:99:fc:44:c1:14:81:90:5d:71:e4:
22:2d:bd:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhymIUWAnS8nGxmpkyaWnGUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MTk3YmM3MzMwZWE5OTkwMGY0ZmM5MTAzM2EzMzE3ZTU2
Zjc1ZTIwHhcNMjUwODA0MDEwMDU0WhcNMjUwODA1MDEwMDU0WjAzMTEwLwYDVQQD
Eyg0MTBhYjMxNmJmODZlM2I0YjM1MWM3ZTY4NjUyNzQzYzkyNjMzNzQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDVf6xs5IN2WAfCnbbhv0AGNXm7D
b/chxT+5BPVjMaGkLPyA+73RJEgJWr8ZRNDh1EsMarNVoWq/ze4pmi5b+w5cUued
6zA0dFvFsdaB+GcFZ3r2c3OMmjd8UvMNIPFUJzAqkjZEmX+o5wYvEFC2cgKDwHxq
LlUTToWHKrkkJeX7b7ApeqanLgCQW6loSgbiKkxmfmjOfj4or0qBh90X/TqjC/Cr
gY8vEBWgfZeDhi9Ozj8CFCeFbt2xUcy0zWa1jfrEoJYq6URTR2hpuMXhSAhY4VoN
mDtdyjEvkqPTfuYdzJG63QwzR+OE2WtBXsXJAcnGAB8W2yzoqQiEzza9PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEEKsxa/huO0s1HH5oZSdDySYzdAMB8GA1UdIwQY
MBaAFCkZe8czDqmZAPT8kQM6Mxflb3XiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1JsN3h6TU9xWmtBOVB5UkF6b3pGLVZ2ZGVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8xMDQzYTctYjI3Ni00MGRjLTlmNjct
MzUwMDRhZjVjOTM1LzEvS1JsN3h6TU9xWmtBOVB5UkF6b3pGLVZ2ZGVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8xMDQzYTctYjI3Ni00MGRjLTlmNjctMzUwMDRhZjVjOTM1
LzEvS1JsN3h6TU9xWmtBOVB5UkF6b3pGLVZ2ZGVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuy+slaEE
ahJLX95UOdSmAJGkdbLc9lBFTpJ74wyFe2laHOisKBiGoS4C+meznrmdIKFVPbt1
adqZXWt2y0A14Xy5Yp9JD2CeGwuh04Py1PbfMb3cOA1I2zzArmU7fWbHgiOma+/G
hUYE7Iu7uJcQhFjd4ZTgubBiAT+Ty+sugKiIRp3TXDB42TZpQg5vcjfQ4vLaswuc
Gg9pmK7y+yteem1VAN3HHudI96x/AXIx5tJyjGD0mG9Md7rrwj7yEe3QldrQE+WE
csUBry0lwl0bkAKitTxOZT7MAPKtdyat1lLEDgQ25pjKU9ssWYr3N5H17HmZ/ETB
FIGQXXHkIi29iQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:15 2025 by rpki-client