Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: 9mE/AVxHsSM2UetUaiYJ36C+EA4vn3JwfEa8rIs2bOk=
Subject key identifier: 65:5E:E2:81:3B:B6:88:AD:5B:9F:EE:1E:5B:4D:73:EA:97:06:82:B2
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 019880C28A0693262DDC676B8CA8656C41D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 161B
Signing time: Wed 06 Aug 2025 19:01:29 +0000
Manifest this update: Wed 06 Aug 2025 19:01:29 +0000
Manifest next update: Thu 07 Aug 2025 19:01:29 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: F6gQeFeyxxmqN1T3KN+8Vv1ePqtOypVWGO7WkzJ9ki4=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 19:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:c2:8a:06:93:26:2d:dc:67:6b:8c:a8:65:6c:41:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Aug 6 19:01:29 2025 GMT
Not After : Aug 7 19:01:29 2025 GMT
Subject: CN=655ee2813bb688ad5b9fee1e5b4d73ea970682b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:93:c7:35:f7:aa:04:42:72:24:c6:01:57:9c:
82:a4:ff:89:f4:8c:5c:45:1a:5c:11:c9:01:b3:da:
32:57:00:0d:aa:2d:44:27:7a:28:fc:c9:2a:70:a6:
b0:6b:58:24:af:42:78:bb:4d:9b:aa:c3:d4:17:0a:
d5:38:7e:ed:0d:b9:c7:ae:6f:c5:1f:63:57:d6:4b:
4e:0b:66:15:2d:f6:0d:1e:81:20:bd:8a:ec:2f:84:
b6:67:8d:ff:4a:d9:60:91:be:bf:2f:80:63:30:1d:
6a:cf:fb:a4:7a:8d:66:d8:e0:19:20:c6:88:42:19:
3b:e4:05:c7:0b:3e:d3:5a:a9:d0:18:75:e4:44:76:
b1:73:50:5d:ca:97:69:f3:32:19:74:c2:61:a2:a5:
f7:c5:91:79:c1:9b:62:2b:21:fd:8f:66:5a:61:7a:
66:4b:e2:b0:d0:12:f7:2d:60:09:f7:fb:7a:42:ca:
79:b4:91:51:28:c2:39:68:73:de:2b:dd:2d:d3:8f:
19:46:b2:31:48:13:d2:f5:83:29:d9:25:cd:cd:21:
d7:fc:23:99:e3:9b:f0:a4:a0:a6:b9:a8:0b:f3:98:
7f:c1:36:ed:43:f5:a9:b7:56:40:4a:6b:4c:dd:67:
cd:28:22:cf:c7:d1:0c:e2:45:68:08:56:54:99:55:
15:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:5E:E2:81:3B:B6:88:AD:5B:9F:EE:1E:5B:4D:73:EA:97:06:82:B2
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:96:06:22:2e:bc:b3:e4:7d:41:4f:00:4d:db:73:5f:8e:ec:
03:6b:29:d7:15:48:94:f3:39:04:9a:97:38:39:21:d0:1c:cc:
f1:dd:74:5f:5f:e4:6d:48:7c:fc:5e:0d:22:88:5c:3a:bd:0f:
13:b7:1f:c0:4a:92:71:9b:4b:25:3d:71:e6:6d:5c:49:55:7e:
af:67:46:99:f7:84:d8:64:f2:68:67:25:21:2f:95:93:42:c2:
a2:24:d0:45:57:2a:17:0d:b4:72:7c:10:2b:51:26:9b:4d:38:
aa:eb:49:a4:00:12:d5:0f:bc:4e:4f:b5:c3:ef:c1:70:b4:9f:
95:c8:e3:5a:49:5d:28:ed:a6:bf:1a:52:d0:9c:37:3b:1e:33:
40:db:65:71:57:b7:9b:0d:8f:93:2e:16:82:ec:43:e4:ae:cd:
08:d3:bc:9f:29:55:62:8b:eb:b8:5c:9f:f3:a0:6b:13:ec:9b:
2a:f9:81:03:fe:c4:1c:7f:3f:26:be:e1:48:25:dc:6e:0d:7f:
15:a1:71:e2:d3:a5:d6:9e:3a:01:80:20:1f:e8:5b:bb:18:33:
90:52:55:bb:15:3e:dd:7d:d7:eb:71:1c:56:19:b7:62:a1:b2:
cb:27:23:e6:dd:d2:96:66:67:8d:1f:5e:e4:03:80:b5:f1:39:
90:ab:5f:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAwooGkyYt3GdrjKhlbEHRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ODliNTg5MTIwZDM5ZWExNGZmNTM5NjNiZjIzMTU3ZDMy
NDk1ZWEwHhcNMjUwODA2MTkwMTI5WhcNMjUwODA3MTkwMTI5WjAzMTEwLwYDVQQD
Eyg2NTVlZTI4MTNiYjY4OGFkNWI5ZmVlMWU1YjRkNzNlYTk3MDY4MmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAipPHNfeqBEJyJMYBV5yCpP+J9Ixc
RRpcEckBs9oyVwANqi1EJ3oo/MkqcKawa1gkr0J4u02bqsPUFwrVOH7tDbnHrm/F
H2NX1ktOC2YVLfYNHoEgvYrsL4S2Z43/Stlgkb6/L4BjMB1qz/ukeo1m2OAZIMaI
Qhk75AXHCz7TWqnQGHXkRHaxc1Bdypdp8zIZdMJhoqX3xZF5wZtiKyH9j2ZaYXpm
S+Kw0BL3LWAJ9/t6Qsp5tJFRKMI5aHPeK90t048ZRrIxSBPS9YMp2SXNzSHX/COZ
45vwpKCmuagL85h/wTbtQ/Wpt1ZASmtM3WfNKCLPx9EM4kVoCFZUmVUV4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGVe4oE7toitW5/uHltNc+qXBoKyMB8GA1UdIwQY
MBaAFCmJtYkSDTnqFP9TljvyMVfTJJXqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9mMDgxNzAtOGQ5Mi00Y2ZhLWI3MzMt
ZmJkYmU1MTRkZjVhLzEvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9mMDgxNzAtOGQ5Mi00Y2ZhLWI3MzMtZmJkYmU1MTRkZjVh
LzEvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfJYGIi68
s+R9QU8ATdtzX47sA2sp1xVIlPM5BJqXODkh0BzM8d10X1/kbUh8/F4NIohcOr0P
E7cfwEqScZtLJT1x5m1cSVV+r2dGmfeE2GTyaGclIS+Vk0LCoiTQRVcqFw20cnwQ
K1Emm004qutJpAAS1Q+8Tk+1w+/BcLSflcjjWkldKO2mvxpS0Jw3Ox4zQNtlcVe3
mw2Pky4WguxD5K7NCNO8nylVYovruFyf86BrE+ybKvmBA/7EHH8/Jr7hSCXcbg1/
FaFx4tOl1p46AYAgH+hbuxgzkFJVuxU+3X3X63EcVhm3YqGyyycj5t3SlmZnjR9e
5AOAtfE5kKtfAg==
-----END CERTIFICATE-----
Generated at Thu Aug 7 03:20:01 2025 by rpki-client