Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
File: 00KrFW1a4VOtFlKOh9nIR53ApKU.mft (raw, json)
Hash identifier: JFow2FlOO9kB2x16OO8BHer/9PeIn985PIxPrtoZk44=
Subject key identifier: BA:60:AC:71:F2:6B:9D:FE:5A:DF:5F:80:93:94:1F:DF:06:69:16:DE
Authority key identifier: D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
Certificate issuer: /CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Certificate serial: 01987BD2EC3ABFA6A960B9BA7E0FBAC738B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
Manifest number: 161C
Signing time: Tue 05 Aug 2025 20:01:17 +0000
Manifest this update: Tue 05 Aug 2025 20:01:17 +0000
Manifest next update: Wed 06 Aug 2025 20:01:17 +0000
Files and hashes: 1: 00KrFW1a4VOtFlKOh9nIR53ApKU.crl (hash: Khln8hGYqBvBiR3IB8fzVrCcxUqbUlZFykqRHmFjrvE=)
2: YzWazfZkDmpS6lnGJouGiR4vMgw.roa (hash: g+4T1wjwDSXCQUkHT41UwModEGJm2ijdNXqnxLEPkqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 20:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:d2:ec:3a:bf:a6:a9:60:b9:ba:7e:0f:ba:c7:38:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Validity
Not Before: Aug 5 20:01:17 2025 GMT
Not After : Aug 6 20:01:17 2025 GMT
Subject: CN=ba60ac71f26b9dfe5adf5f8093941fdf066916de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3d:07:c9:37:e1:e5:1b:8b:52:d1:d4:02:dd:
b4:47:b1:b7:95:71:dc:dc:9c:af:d9:d0:77:c3:ad:
d3:29:e2:90:fa:aa:06:f2:61:6b:94:b0:d1:a2:a7:
aa:0a:7d:f5:a9:33:51:37:25:7c:91:59:1f:2a:83:
16:4d:75:7e:ad:4b:f6:f1:2f:1d:88:cd:43:26:dc:
e7:49:83:24:76:a1:bc:95:e0:33:23:3c:e2:b5:f9:
f7:de:64:a6:4f:e4:38:72:fb:51:6e:18:ff:d1:22:
bc:66:60:ab:03:0e:9e:33:2b:40:09:6c:cd:b3:02:
a9:24:5f:42:9a:f9:87:8c:78:c8:20:85:6f:0e:e7:
d9:45:b9:e5:e4:7e:47:a9:07:a4:a7:ac:13:7b:d5:
26:d1:45:65:ab:af:ea:35:8b:28:62:cf:5d:60:3a:
3c:d4:73:bc:2c:67:70:ad:a1:c2:0e:48:1e:d2:fa:
1d:43:b2:f0:05:24:15:09:7f:94:75:ee:aa:4a:b9:
12:1e:80:68:f0:ab:77:eb:c2:cb:bf:cc:d9:39:73:
eb:d2:92:66:f3:5b:7b:e7:ff:37:33:50:14:c0:69:
9b:0d:1f:1c:94:9c:7b:2e:26:a2:ab:13:37:40:3d:
c3:a5:5a:7d:ea:a2:cd:b5:fd:ef:de:6a:15:62:75:
7a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:60:AC:71:F2:6B:9D:FE:5A:DF:5F:80:93:94:1F:DF:06:69:16:DE
X509v3 Authority Key Identifier:
keyid:D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:8a:8c:84:a6:72:4d:69:68:80:38:40:66:f9:83:8a:51:c3:
a2:8a:ae:b2:e0:f4:b8:78:19:10:b8:39:9e:61:db:a8:e0:ed:
f2:83:01:d8:73:2f:9e:d8:73:df:95:7a:9b:d6:09:5a:cc:f5:
b5:8b:54:34:92:dd:d4:e8:b1:1b:e9:da:46:51:49:00:48:c8:
29:88:66:ca:4a:be:ba:ea:7f:06:c4:8f:9e:eb:02:40:38:28:
99:a7:c7:6b:41:17:2b:7c:cf:fa:0c:f9:d6:be:69:c9:89:cc:
28:b9:6d:1c:7e:82:b7:f9:92:b5:35:6e:e0:12:e5:79:e0:8c:
42:9a:15:55:0b:8e:25:d4:6e:3f:8f:b5:78:7b:9e:b9:5c:14:
03:71:6e:72:29:d3:d6:ad:7f:3a:63:ad:a6:bb:12:24:bd:d1:
ae:53:dc:51:8f:92:10:af:56:ed:44:f5:81:29:6f:2f:93:e0:
f5:28:d1:c9:d8:d8:25:78:d5:20:c8:b6:60:0e:f0:57:63:f7:
64:2e:69:43:ea:39:26:72:43:4e:be:f6:2a:44:60:5b:cd:61:
c1:f0:a8:9e:bd:2d:66:c5:70:78:e1:3c:f4:d1:ba:d1:b6:67:
db:87:0f:a0:72:0f:a7:7a:26:53:d0:59:ff:73:04:43:8a:a6:
be:12:af:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh70uw6v6apYLm6fg+6xzi5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNDJhYjE1NmQ1YWUxNTNhZDE2NTI4ZTg3ZDljODQ3OWRj
MGE0YTUwHhcNMjUwODA1MjAwMTE3WhcNMjUwODA2MjAwMTE3WjAzMTEwLwYDVQQD
EyhiYTYwYWM3MWYyNmI5ZGZlNWFkZjVmODA5Mzk0MWZkZjA2NjkxNmRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzD0HyTfh5RuLUtHUAt20R7G3lXHc
3Jyv2dB3w63TKeKQ+qoG8mFrlLDRoqeqCn31qTNRNyV8kVkfKoMWTXV+rUv28S8d
iM1DJtznSYMkdqG8leAzIzzitfn33mSmT+Q4cvtRbhj/0SK8ZmCrAw6eMytACWzN
swKpJF9CmvmHjHjIIIVvDufZRbnl5H5HqQekp6wTe9Um0UVlq6/qNYsoYs9dYDo8
1HO8LGdwraHCDkge0vodQ7LwBSQVCX+Ude6qSrkSHoBo8Kt368LLv8zZOXPr0pJm
81t75/83M1AUwGmbDR8clJx7LiaiqxM3QD3DpVp96qLNtf3v3moVYnV6bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLpgrHHya53+Wt9fgJOUH98GaRbeMB8GA1UdIwQY
MBaAFNNCqxVtWuFTrRZSjofZyEedwKSlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8yNjM0NDctMGM4MC00Y2RhLWI5MTUt
MDgxYTYzN2Y3MDNlLzEvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy8yNjM0NDctMGM4MC00Y2RhLWI5MTUtMDgxYTYzN2Y3MDNl
LzEvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApYqMhKZy
TWlogDhAZvmDilHDooqusuD0uHgZELg5nmHbqODt8oMB2HMvnthz35V6m9YJWsz1
tYtUNJLd1OixG+naRlFJAEjIKYhmykq+uup/BsSPnusCQDgomafHa0EXK3zP+gz5
1r5pyYnMKLltHH6Ct/mStTVu4BLleeCMQpoVVQuOJdRuP4+1eHueuVwUA3FucinT
1q1/OmOtprsSJL3RrlPcUY+SEK9W7UT1gSlvL5Pg9SjRydjYJXjVIMi2YA7wV2P3
ZC5pQ+o5JnJDTr72KkRgW81hwfConr0tZsVweOE89NG60bZn24cPoHIPp3omU9BZ
/3MEQ4qmvhKvsQ==
-----END CERTIFICATE-----
Generated at Wed Aug 6 04:17:53 2025 by rpki-client