Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
File: KRKNnU8aVulw-HRtaCesESD5Jmc.mft (raw, json)
Hash identifier: slgfV8oIVlKTsYUnT7B2WoZELVdGHJKJ/DfGnJMX1g0=
Subject key identifier: B1:36:29:74:98:76:42:C9:A2:BB:C0:CF:46:94:40:23:34:81:DA:7B
Authority key identifier: 29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
Certificate issuer: /CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Certificate serial: 019880F93A28A1B9D01C7DBAB6195EC1FF50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
Manifest number: 0123
Signing time: Wed 06 Aug 2025 20:01:13 +0000
Manifest this update: Wed 06 Aug 2025 20:01:13 +0000
Manifest next update: Thu 07 Aug 2025 20:01:13 +0000
Files and hashes: 1: F89K3Q0XwdNsBMWEF-9n8HX8seQ.roa (hash: k36l/8lxtcKwAJTjrdDRO46ly7DD3aRm+mH7GwvYLjg=)
2: KRKNnU8aVulw-HRtaCesESD5Jmc.crl (hash: uaR+EcCleOPCpQtD9b9D8cZkAF0a8wsk7LTO9P071L0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:f9:3a:28:a1:b9:d0:1c:7d:ba:b6:19:5e:c1:ff:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Validity
Not Before: Aug 6 20:01:13 2025 GMT
Not After : Aug 7 20:01:13 2025 GMT
Subject: CN=b1362974987642c9a2bbc0cf469440233481da7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:be:ff:51:8a:d2:0e:9b:f8:55:f8:01:ad:be:
a8:f8:6f:da:32:54:a6:ee:b5:b4:a8:d2:60:bf:80:
0e:c2:53:5d:32:b2:0e:2d:ab:c0:cb:eb:92:ec:9b:
ad:61:0d:a5:e8:a8:ed:b0:d3:a4:01:8f:d5:ef:72:
4f:35:d1:72:c4:40:24:20:2d:97:c2:7a:ee:f9:39:
62:d9:a9:fc:28:68:f7:1d:cd:fe:4e:29:e8:5e:39:
60:f0:c7:1a:da:0a:08:f4:a6:03:c8:3d:f4:8b:aa:
34:21:17:24:71:bb:15:2e:0e:30:1c:51:a8:16:22:
45:8e:6a:84:69:c4:c7:76:3f:94:1f:86:ed:9e:5d:
40:9f:82:5e:a6:c0:10:76:bf:f8:fb:d1:fe:33:54:
91:6f:93:84:4b:de:c7:7b:b3:27:1f:30:81:f7:77:
b0:14:0c:a4:ad:70:c5:14:2c:62:59:af:24:73:8f:
e1:18:8f:13:3e:a0:4e:6c:83:78:f7:82:9e:de:cc:
2f:41:72:9f:78:40:96:7b:00:d4:fb:6e:fb:9f:a3:
c9:b7:2f:1d:15:7f:77:a2:6a:66:c5:9f:a7:f4:80:
35:8d:bb:f9:ce:b5:ee:69:fb:42:93:03:23:d8:87:
e6:5c:b7:3c:00:b4:42:4a:5c:f8:7d:8e:f5:1c:76:
a9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:36:29:74:98:76:42:C9:A2:BB:C0:CF:46:94:40:23:34:81:DA:7B
X509v3 Authority Key Identifier:
keyid:29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:cc:e3:cc:84:a5:2c:3d:f6:0a:7e:a7:18:ac:5d:05:81:a0:
6f:2f:45:b8:0d:7b:88:ef:2d:f2:73:ea:36:97:c0:f8:fa:6c:
88:c8:26:bf:df:fc:6f:4e:33:c5:a0:3f:e9:be:52:8e:9b:33:
10:18:ba:ba:91:ff:e1:47:4c:c1:9f:4f:17:12:d0:00:87:1c:
78:19:69:c4:ff:de:d1:46:09:9d:6a:79:c7:53:81:d1:71:98:
75:19:07:63:59:6a:64:69:a2:7a:82:05:b5:20:0f:37:a6:55:
b0:25:3f:a9:c7:88:dd:f7:1d:99:84:cd:2b:59:2a:5c:a6:5b:
68:f1:f0:70:15:ab:80:49:e2:cf:a6:dd:0a:42:b4:8f:35:d5:
45:ec:42:ea:69:ab:7e:2a:7b:7a:7c:c8:94:50:e8:2b:3b:02:
4d:51:d9:8c:a2:59:8e:17:85:fa:29:ad:50:9d:dc:50:06:6b:
94:ad:d4:d4:1a:12:94:b4:bd:c4:42:48:c1:5b:0b:5b:63:e6:
7e:e0:73:b7:56:aa:10:0a:78:4e:b9:3f:48:69:f4:46:f7:f4:
ce:62:dc:12:61:14:c9:52:10:31:34:19:67:c9:24:f2:21:76:
79:71:00:86:e5:a3:3c:a9:f3:a8:5a:5e:e3:c2:c5:db:5e:43:
6e:6e:65:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiA+TooobnQHH26thlewf9QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MTI4ZDlkNGYxYTU2ZTk3MGY4NzQ2ZDY4MjdhYzExMjBm
OTI2NjcwHhcNMjUwODA2MjAwMTEzWhcNMjUwODA3MjAwMTEzWjAzMTEwLwYDVQQD
EyhiMTM2Mjk3NDk4NzY0MmM5YTJiYmMwY2Y0Njk0NDAyMzM0ODFkYTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqL7/UYrSDpv4VfgBrb6o+G/aMlSm
7rW0qNJgv4AOwlNdMrIOLavAy+uS7JutYQ2l6KjtsNOkAY/V73JPNdFyxEAkIC2X
wnru+Tli2an8KGj3Hc3+TinoXjlg8Mca2goI9KYDyD30i6o0IRckcbsVLg4wHFGo
FiJFjmqEacTHdj+UH4btnl1An4JepsAQdr/4+9H+M1SRb5OES97He7MnHzCB93ew
FAykrXDFFCxiWa8kc4/hGI8TPqBObIN494Ke3swvQXKfeECWewDU+277n6PJty8d
FX93ompmxZ+n9IA1jbv5zrXuaftCkwMj2IfmXLc8ALRCSlz4fY71HHapjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLE2KXSYdkLJorvAz0aUQCM0gdp7MB8GA1UdIwQY
MBaAFCkSjZ1PGlbpcPh0bWgnrBEg+SZnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8xMTQ3N2MtODQ1Mi00YWJiLTkxNDct
ZjBiMDljMGM5MGM3LzEvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi8xMTQ3N2MtODQ1Mi00YWJiLTkxNDctZjBiMDljMGM5MGM3
LzEvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS8zjzISl
LD32Cn6nGKxdBYGgby9FuA17iO8t8nPqNpfA+PpsiMgmv9/8b04zxaA/6b5Sjpsz
EBi6upH/4UdMwZ9PFxLQAIcceBlpxP/e0UYJnWp5x1OB0XGYdRkHY1lqZGmieoIF
tSAPN6ZVsCU/qceI3fcdmYTNK1kqXKZbaPHwcBWrgEniz6bdCkK0jzXVRexC6mmr
fip7enzIlFDoKzsCTVHZjKJZjheF+imtUJ3cUAZrlK3U1BoSlLS9xEJIwVsLW2Pm
fuBzt1aqEAp4Trk/SGn0Rvf0zmLcEmEUyVIQMTQZZ8kk8iF2eXEAhuWjPKnzqFpe
48LF215Dbm5l0Q==
-----END CERTIFICATE-----
Generated at Thu Aug 7 03:27:52 2025 by rpki-client