Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft
File: MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft (raw, json)
Hash identifier: a30i8479yVnOv4Ybhb7ai89JN4H67bUr2pcI9mzNTms=
Subject key identifier: C8:4C:BB:6C:F7:7C:C7:58:6A:E9:A2:08:87:D2:67:31:44:C5:C4:11
Authority key identifier: 30:AA:B0:2B:65:4E:91:5C:AD:CA:33:92:92:E2:8C:15:C4:7D:F8:58
Certificate issuer: /CN=30aab02b654e915cadca339292e28c15c47df858
Certificate serial: 019872987A2A3412218054DF804F1B91B82D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKqwK2VOkVytyjOSkuKMFcR9-Fg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft
Manifest number: 0478
Signing time: Mon 04 Aug 2025 01:00:51 +0000
Manifest this update: Mon 04 Aug 2025 01:00:51 +0000
Manifest next update: Tue 05 Aug 2025 01:00:51 +0000
Files and hashes: 1: MKqwK2VOkVytyjOSkuKMFcR9-Fg.crl (hash: 1NcAI8vnLFbMNvcgpD8o0O6D6XQslgKxZmO9LEeMCnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKqwK2VOkVytyjOSkuKMFcR9-Fg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:98:7a:2a:34:12:21:80:54:df:80:4f:1b:91:b8:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30aab02b654e915cadca339292e28c15c47df858
Validity
Not Before: Aug 4 01:00:51 2025 GMT
Not After : Aug 5 01:00:51 2025 GMT
Subject: CN=c84cbb6cf77cc7586ae9a20887d2673144c5c411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:45:86:66:d9:e5:30:66:20:f4:d1:cd:d5:34:
d6:aa:e0:61:09:27:7b:70:41:5f:02:a8:54:84:40:
94:c0:ec:4d:c2:7b:d0:90:17:7d:3c:f3:26:eb:39:
b8:61:74:58:b8:52:d0:a3:39:35:2f:cf:10:c4:b7:
89:7b:b6:6e:cb:78:77:5a:af:1e:a5:2c:2c:e0:f8:
76:00:06:64:5e:b7:6b:16:9e:98:9e:36:84:cb:e6:
9d:7a:ae:34:da:20:e3:42:a7:cf:69:c2:b0:a4:17:
4d:6a:6d:9c:d7:ee:bc:0f:01:84:59:14:b3:10:7c:
0a:50:59:88:0e:f5:90:6d:c0:e4:89:c8:25:f5:88:
06:06:5c:92:06:c5:55:ab:fe:d6:a2:41:05:bc:a8:
89:46:05:49:25:c0:aa:a2:07:56:aa:cf:4e:48:15:
9f:0f:ca:48:e6:75:59:e9:4c:bf:f3:91:df:3b:dd:
2c:b9:b4:4f:dd:15:fa:8e:d6:df:18:90:a2:c9:2c:
84:9e:a0:ac:2c:a1:ee:e0:d5:b8:d0:af:94:e9:c5:
04:85:f9:a3:1e:4b:18:59:af:15:3c:35:2e:ca:0a:
9b:cc:ff:cd:aa:2d:74:a9:9c:7d:64:32:42:90:1f:
0c:0e:7c:5f:54:08:4b:1f:f7:3f:ed:78:8f:f0:ae:
3e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:4C:BB:6C:F7:7C:C7:58:6A:E9:A2:08:87:D2:67:31:44:C5:C4:11
X509v3 Authority Key Identifier:
keyid:30:AA:B0:2B:65:4E:91:5C:AD:CA:33:92:92:E2:8C:15:C4:7D:F8:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKqwK2VOkVytyjOSkuKMFcR9-Fg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9aff54-5971-402f-ab69-a419670d17e1/1/MKqwK2VOkVytyjOSkuKMFcR9-Fg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:19:cd:db:9b:04:43:9a:d5:5c:b3:dc:b4:9f:1b:a7:ba:3f:
1f:3b:6c:99:83:64:8c:47:7d:f7:ff:01:25:25:49:4e:78:f0:
52:2e:8c:80:46:e7:d8:8e:8a:8e:a9:b6:be:8f:6e:6c:ec:34:
69:14:71:09:bb:21:3d:ef:2c:a9:7f:b7:87:4d:f2:ca:f2:7d:
f9:f1:0a:dd:d1:93:ad:07:40:04:77:22:8b:80:aa:3d:9d:6f:
12:2f:00:2b:dc:0e:10:44:ae:5c:70:74:db:d6:8e:7b:b8:66:
25:64:58:e7:9c:da:63:07:cb:0e:72:71:e0:0d:93:06:b0:60:
6f:09:6a:69:d3:85:41:d4:b9:4b:c9:be:fa:d7:6b:1d:ef:37:
12:d9:c0:cb:b8:d5:ff:3b:03:67:21:75:ac:2e:77:a0:9d:2b:
ab:5e:fc:d6:ef:fa:05:e5:34:51:e7:50:52:f5:a5:74:68:12:
99:b2:d5:b8:66:4c:04:d3:3b:31:a4:4b:11:94:b2:ba:c7:84:
93:76:55:90:b0:c5:b7:30:11:5d:20:dd:58:35:da:f6:32:0d:
1a:a4:42:55:f6:f5:de:bd:15:fd:2d:8c:c9:48:3e:68:7f:e5:
c2:8a:21:0b:03:4d:9d:c1:67:38:fa:06:e0:42:23:d3:70:35:
7d:07:3f:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhymHoqNBIhgFTfgE8bkbgtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYWFiMDJiNjU0ZTkxNWNhZGNhMzM5MjkyZTI4YzE1YzQ3
ZGY4NTgwHhcNMjUwODA0MDEwMDUxWhcNMjUwODA1MDEwMDUxWjAzMTEwLwYDVQQD
EyhjODRjYmI2Y2Y3N2NjNzU4NmFlOWEyMDg4N2QyNjczMTQ0YzVjNDExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzkWGZtnlMGYg9NHN1TTWquBhCSd7
cEFfAqhUhECUwOxNwnvQkBd9PPMm6zm4YXRYuFLQozk1L88QxLeJe7Zuy3h3Wq8e
pSws4Ph2AAZkXrdrFp6YnjaEy+adeq402iDjQqfPacKwpBdNam2c1+68DwGEWRSz
EHwKUFmIDvWQbcDkicgl9YgGBlySBsVVq/7WokEFvKiJRgVJJcCqogdWqs9OSBWf
D8pI5nVZ6Uy/85HfO90subRP3RX6jtbfGJCiySyEnqCsLKHu4NW40K+U6cUEhfmj
HksYWa8VPDUuygqbzP/Nqi10qZx9ZDJCkB8MDnxfVAhLH/c/7XiP8K4+FQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMhMu2z3fMdYaumiCIfSZzFExcQRMB8GA1UdIwQY
MBaAFDCqsCtlTpFcrcozkpLijBXEffhYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUtxd0syVk9rVnl0eWpPU2t1S01GY1I5LUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS85YWZmNTQtNTk3MS00MDJmLWFiNjkt
YTQxOTY3MGQxN2UxLzEvTUtxd0syVk9rVnl0eWpPU2t1S01GY1I5LUZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS85YWZmNTQtNTk3MS00MDJmLWFiNjktYTQxOTY3MGQxN2Ux
LzEvTUtxd0syVk9rVnl0eWpPU2t1S01GY1I5LUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAARnN25sE
Q5rVXLPctJ8bp7o/HztsmYNkjEd99/8BJSVJTnjwUi6MgEbn2I6Kjqm2vo9ubOw0
aRRxCbshPe8sqX+3h03yyvJ9+fEK3dGTrQdABHcii4CqPZ1vEi8AK9wOEESuXHB0
29aOe7hmJWRY55zaYwfLDnJx4A2TBrBgbwlqadOFQdS5S8m++tdrHe83EtnAy7jV
/zsDZyF1rC53oJ0rq1781u/6BeU0UedQUvWldGgSmbLVuGZMBNM7MaRLEZSyuseE
k3ZVkLDFtzARXSDdWDXa9jINGqRCVfb13r0V/S2MyUg+aH/lwoohCwNNncFnOPoG
4EIj03A1fQc/tg==
-----END CERTIFICATE-----
Generated at Mon Aug 4 11:27:33 2025 by rpki-client