Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
File: kNzOkQAEUUlMQ8FdFy2i651beVY.mft (raw, json)
Hash identifier: 8DVxx7TYNcDF6Ablo27xohmyLPqeBd91jmQRIR6VAu0=
Subject key identifier: 71:F9:3F:6C:A6:C0:86:96:07:1F:6A:8D:24:A1:27:87:DB:97:F4:E3
Authority key identifier: 90:DC:CE:91:00:04:51:49:4C:43:C1:5D:17:2D:A2:EB:9D:5B:79:56
Certificate issuer: /CN=90dcce91000451494c43c15d172da2eb9d5b7956
Certificate serial: 01976C61DF88402BF4590DD7182C88C4FE80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 03:00:42 +0000
Manifest this update: Sat 14 Jun 2025 03:00:42 +0000
Manifest next update: Sun 15 Jun 2025 03:00:42 +0000
Files and hashes: 1: 4COA7EoK---RVhokcyyZ55j8IXE.roa (hash: 7qjze9UZTxm2x0zZOdskcsGbC7b8KEyBHHGZAVSSicA=)
2: kNzOkQAEUUlMQ8FdFy2i651beVY.crl (hash: njdwNwTiOCWdOn6wqSmARplK6Eo2Ep1yS9+0B/tSITw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:df:88:40:2b:f4:59:0d:d7:18:2c:88:c4:fe:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dcce91000451494c43c15d172da2eb9d5b7956
Validity
Not Before: Jun 14 03:00:42 2025 GMT
Not After : Jun 15 03:00:42 2025 GMT
Subject: CN=71f93f6ca6c08696071f6a8d24a12787db97f4e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3c:32:61:d6:97:ea:dd:65:c4:77:16:62:2f:
0b:46:28:86:f4:3f:ba:01:88:23:4b:8f:13:db:f4:
d7:e6:ab:cf:d0:16:5a:22:12:30:e4:1c:49:b8:22:
95:65:a7:e8:b9:aa:4f:9b:ce:7a:d9:8b:90:b0:c3:
cb:e2:64:24:83:37:19:c8:8c:42:dc:78:2d:57:db:
24:a6:be:30:b5:5a:f2:3f:74:51:2f:89:6e:da:7a:
47:c5:81:6f:0c:68:77:5c:7a:f7:53:e3:91:c4:ce:
39:15:12:cc:56:1c:fb:c4:74:b8:c0:00:27:7b:89:
10:ab:2e:43:13:9d:c8:ea:1d:c1:2e:6a:16:de:ac:
15:91:1a:33:c2:29:f3:49:99:f0:b8:78:8b:5d:ae:
73:25:a9:82:e4:27:d7:c4:4f:a8:6f:54:3f:cd:e6:
01:7f:4f:0c:23:e4:3e:cb:d8:d6:ff:56:9f:ad:81:
81:f1:7c:6f:1d:2e:af:5b:7d:ee:10:bd:b4:66:55:
8f:20:36:f8:e0:67:14:b5:c0:ac:1a:84:82:b1:b1:
ea:bd:a6:b1:a6:92:75:ce:f5:22:5a:3f:12:c2:6e:
a4:c6:09:8b:8f:47:e7:0c:41:73:4d:ec:17:44:6c:
d7:8e:b3:37:c0:52:a5:8f:de:cd:f4:80:d7:60:ae:
dc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F9:3F:6C:A6:C0:86:96:07:1F:6A:8D:24:A1:27:87:DB:97:F4:E3
X509v3 Authority Key Identifier:
keyid:90:DC:CE:91:00:04:51:49:4C:43:C1:5D:17:2D:A2:EB:9D:5B:79:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:8c:99:36:14:c0:85:97:29:32:dd:be:35:f9:25:86:3a:71:
c4:69:52:dd:e5:78:0e:05:18:0c:49:3f:b3:57:41:d9:55:1e:
d8:9a:28:fe:39:10:cb:fa:36:0e:47:44:52:f7:a7:10:66:f1:
92:02:4a:f2:fa:e9:5b:a2:aa:5c:2e:35:a6:24:87:5b:f2:19:
76:5b:04:a9:a3:df:03:29:8c:02:79:a1:cc:7b:d5:91:54:68:
fc:3f:b6:47:ed:0e:35:82:6d:4e:51:e2:b8:a3:fe:b9:82:24:
5d:fa:56:57:cf:02:76:79:43:f4:90:f0:36:5e:fe:35:8d:69:
e1:45:1f:ea:53:ee:f0:e4:63:af:f5:28:90:56:67:c9:79:ae:
38:16:d2:ba:a3:f7:60:16:ed:e8:bf:3a:7e:24:0e:69:bb:ee:
f0:7f:71:0c:51:a2:62:0f:72:b5:3b:94:78:95:d0:59:14:c5:
4d:53:0a:b9:3f:35:2c:f8:9f:1e:32:3e:e0:63:92:76:aa:81:
cb:63:d2:88:a2:3e:e7:ea:f6:f5:ef:cb:7b:bd:3f:8d:fe:c5:
1f:9e:d1:29:b7:41:46:eb:51:fb:1f:e8:86:86:a3:f8:cc:a2:
4f:57:e0:fe:eb:90:7d:6f:47:bc:0f:2a:6e:06:4a:9a:9e:98:
70:e7:9b:30
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsYd+IQCv0WQ3XGCyIxP6AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwZGNjZTkxMDAwNDUxNDk0YzQzYzE1ZDE3MmRhMmViOWQ1
Yjc5NTYwHhcNMjUwNjE0MDMwMDQyWhcNMjUwNjE1MDMwMDQyWjAzMTEwLwYDVQQD
Eyg3MWY5M2Y2Y2E2YzA4Njk2MDcxZjZhOGQyNGExMjc4N2RiOTdmNGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojwyYdaX6t1lxHcWYi8LRiiG9D+6
AYgjS48T2/TX5qvP0BZaIhIw5BxJuCKVZafouapPm8562YuQsMPL4mQkgzcZyIxC
3HgtV9skpr4wtVryP3RRL4lu2npHxYFvDGh3XHr3U+ORxM45FRLMVhz7xHS4wAAn
e4kQqy5DE53I6h3BLmoW3qwVkRozwinzSZnwuHiLXa5zJamC5CfXxE+ob1Q/zeYB
f08MI+Q+y9jW/1afrYGB8XxvHS6vW33uEL20ZlWPIDb44GcUtcCsGoSCsbHqvaax
ppJ1zvUiWj8Swm6kxgmLj0fnDEFzTewXRGzXjrM3wFKlj97N9IDXYK7cJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHH5P2ymwIaWBx9qjSShJ4fbl/TjMB8GA1UdIwQY
MBaAFJDczpEABFFJTEPBXRctouudW3lWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva056T2tRQUVVVWxNUThGZEZ5Mmk2NTFiZVZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi81MWZkYmItOGJhMi00YjdlLTk4MGYt
ZWU2MGIwZGRiZGFhLzEva056T2tRQUVVVWxNUThGZEZ5Mmk2NTFiZVZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi81MWZkYmItOGJhMi00YjdlLTk4MGYtZWU2MGIwZGRiZGFh
LzEva056T2tRQUVVVWxNUThGZEZ5Mmk2NTFiZVZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANIyZNhTA
hZcpMt2+NfklhjpxxGlS3eV4DgUYDEk/s1dB2VUe2Joo/jkQy/o2DkdEUvenEGbx
kgJK8vrpW6KqXC41piSHW/IZdlsEqaPfAymMAnmhzHvVkVRo/D+2R+0ONYJtTlHi
uKP+uYIkXfpWV88CdnlD9JDwNl7+NY1p4UUf6lPu8ORjr/UokFZnyXmuOBbSuqP3
YBbt6L86fiQOabvu8H9xDFGiYg9ytTuUeJXQWRTFTVMKuT81LPifHjI+4GOSdqqB
y2PSiKI+5+r29e/Le70/jf7FH57RKbdBRutR+x/ohoaj+MyiT1fg/uuQfW9HvA8q
bgZKmp6YcOebMA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:48:46 2025 by rpki-client