Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
File: KjbWeMS7ysJK5r6pokyZXEjVk_A.mft (raw, json)
Hash identifier: wh9D7kN5l+u/Z+iFzBh4cUOKJF3bxfv90WNSqghXL1c=
Subject key identifier: D5:59:2A:55:F0:16:B4:28:A3:4E:62:E3:8F:DA:F8:FB:BF:AC:48:C4
Authority key identifier: 2A:36:D6:78:C4:BB:CA:C2:4A:E6:BE:A9:A2:4C:99:5C:48:D5:93:F0
Certificate issuer: /CN=2a36d678c4bbcac24ae6bea9a24c995c48d593f0
Certificate serial: 019873743691113E48A60ACA073D326FA7E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
Manifest number: 1619
Signing time: Mon 04 Aug 2025 05:00:52 +0000
Manifest this update: Mon 04 Aug 2025 05:00:52 +0000
Manifest next update: Tue 05 Aug 2025 05:00:52 +0000
Files and hashes: 1: KjbWeMS7ysJK5r6pokyZXEjVk_A.crl (hash: HVExg10U3Mjf3/qbgYumyxcHrTVgs+Ux3ho9zV8WLAs=)
2: zK1LIZGeSSnaNXNW0qcn6w1MLCU.roa (hash: e8RwpvlrpxWqEOoeavX1Cyz9aTwhsZ8GdJGcHGa5+Eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:74:36:91:11:3e:48:a6:0a:ca:07:3d:32:6f:a7:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a36d678c4bbcac24ae6bea9a24c995c48d593f0
Validity
Not Before: Aug 4 05:00:52 2025 GMT
Not After : Aug 5 05:00:52 2025 GMT
Subject: CN=d5592a55f016b428a34e62e38fdaf8fbbfac48c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:96:93:4a:bc:d3:26:9d:bc:b9:95:22:ff:14:
0b:5e:90:2a:b6:76:7f:d4:82:42:62:a0:3b:40:90:
31:20:95:0a:3a:d9:14:10:2f:1f:39:08:d9:d7:9d:
6b:6b:a3:db:b3:0b:0c:cc:2a:c7:a6:1f:79:9e:8d:
0d:f2:0a:81:05:c2:4e:c9:20:1f:19:68:14:d2:e7:
8e:98:1a:95:5f:a1:47:d5:6c:fd:b5:0d:9b:b6:37:
d7:5a:5f:66:08:d8:f8:4c:fb:f4:71:d8:a5:98:10:
01:4c:98:9d:5e:03:d8:46:34:b1:dd:9d:ce:4c:b6:
18:4d:bf:b5:20:cc:a7:6f:1b:0b:c2:b9:12:61:15:
58:92:0a:a5:2f:9a:b2:2f:bc:de:79:8d:5c:68:12:
6b:92:d8:a5:47:97:1b:2c:7e:80:7c:9f:0f:62:10:
33:6f:d3:f2:7a:d1:b5:a1:60:21:f8:56:ee:8f:3b:
f5:8a:12:0c:db:36:c5:6c:58:41:62:fe:e1:80:cd:
c3:63:e0:dc:9d:fe:79:2d:e6:ca:73:93:62:0f:7c:
b4:4c:26:af:95:ee:e6:8c:65:62:10:d6:e2:de:ca:
3f:85:89:6a:ea:ee:47:83:60:e1:a4:e3:13:01:88:
9b:d5:d7:9b:ef:95:b9:7c:13:22:3f:6a:94:ba:0a:
e5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:59:2A:55:F0:16:B4:28:A3:4E:62:E3:8F:DA:F8:FB:BF:AC:48:C4
X509v3 Authority Key Identifier:
keyid:2A:36:D6:78:C4:BB:CA:C2:4A:E6:BE:A9:A2:4C:99:5C:48:D5:93:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:35:ef:b9:33:79:ce:13:e7:aa:74:a5:15:c5:f1:0f:13:57:
35:5d:83:7c:5c:54:3b:e3:0a:fe:a9:e3:b6:43:0b:ea:f3:f3:
86:63:0f:42:54:4d:a1:2e:ac:ad:33:86:ef:f2:b2:ad:d4:ff:
fb:85:19:2f:42:38:08:bb:31:e2:81:22:09:35:33:fe:49:8d:
52:d3:90:4c:15:4c:7e:98:4e:d0:ab:b9:5b:8f:61:46:1f:57:
4f:4b:44:5f:43:f6:1b:ca:00:06:73:26:dc:24:75:1b:57:70:
10:d8:f1:45:13:2e:0e:8e:c2:f9:50:ef:7a:20:19:ad:83:43:
23:23:df:10:e8:6f:96:46:35:6c:34:9a:ab:ff:e5:13:2b:48:
2d:e9:cb:37:c0:e2:30:07:c5:51:14:e8:21:64:44:e5:82:c1:
d3:38:fe:08:b1:03:ea:71:07:ae:67:af:4c:52:54:f9:34:f2:
7a:84:5a:e2:36:80:7d:13:da:73:70:5a:95:65:39:4c:43:af:
6d:ad:c7:70:db:9d:56:68:24:3c:e8:9e:36:61:34:63:ca:d1:
2f:4b:88:31:5c:f0:50:e2:ed:9c:b5:d3:28:72:9a:15:66:89:
90:8e:5f:5a:1d:c2:71:bd:f0:59:ad:66:ba:aa:36:2f:e4:9a:
95:de:a7:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhzdDaRET5IpgrKBz0yb6fkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMzZkNjc4YzRiYmNhYzI0YWU2YmVhOWEyNGM5OTVjNDhk
NTkzZjAwHhcNMjUwODA0MDUwMDUyWhcNMjUwODA1MDUwMDUyWjAzMTEwLwYDVQQD
EyhkNTU5MmE1NWYwMTZiNDI4YTM0ZTYyZTM4ZmRhZjhmYmJmYWM0OGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZaTSrzTJp28uZUi/xQLXpAqtnZ/
1IJCYqA7QJAxIJUKOtkUEC8fOQjZ151ra6PbswsMzCrHph95no0N8gqBBcJOySAf
GWgU0ueOmBqVX6FH1Wz9tQ2btjfXWl9mCNj4TPv0cdilmBABTJidXgPYRjSx3Z3O
TLYYTb+1IMynbxsLwrkSYRVYkgqlL5qyL7zeeY1caBJrktilR5cbLH6AfJ8PYhAz
b9PyetG1oWAh+Fbujzv1ihIM2zbFbFhBYv7hgM3DY+Dcnf55LebKc5NiD3y0TCav
le7mjGViENbi3so/hYlq6u5Hg2DhpOMTAYib1deb75W5fBMiP2qUugrljQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNVZKlXwFrQoo05i44/a+Pu/rEjEMB8GA1UdIwQY
MBaAFCo21njEu8rCSua+qaJMmVxI1ZPwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2piV2VNUzd5c0pLNXI2cG9reVpYRWpWa19BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9hMDFmZDMtYTg2Ny00MmM2LTlhMGUt
ZGY2NTFiOTY2YjJiLzEvS2piV2VNUzd5c0pLNXI2cG9reVpYRWpWa19BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9hMDFmZDMtYTg2Ny00MmM2LTlhMGUtZGY2NTFiOTY2YjJi
LzEvS2piV2VNUzd5c0pLNXI2cG9reVpYRWpWa19BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgDXvuTN5
zhPnqnSlFcXxDxNXNV2DfFxUO+MK/qnjtkML6vPzhmMPQlRNoS6srTOG7/KyrdT/
+4UZL0I4CLsx4oEiCTUz/kmNUtOQTBVMfphO0Ku5W49hRh9XT0tEX0P2G8oABnMm
3CR1G1dwENjxRRMuDo7C+VDveiAZrYNDIyPfEOhvlkY1bDSaq//lEytILenLN8Di
MAfFURToIWRE5YLB0zj+CLED6nEHrmevTFJU+TTyeoRa4jaAfRPac3BalWU5TEOv
ba3HcNudVmgkPOieNmE0Y8rRL0uIMVzwUOLtnLXTKHKaFWaJkI5fWh3Ccb3wWa1m
uqo2L+Sald6nbA==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:00:55 2025 by rpki-client