Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
File: KXNk9QJTTodxoMYll5TCbibUvKQ.mft (raw, json)
Hash identifier: cSVldv+WJ30OV0RT0/AUNup6218tPuzYWDLklUhfdtQ=
Subject key identifier: 64:65:92:95:45:94:CD:DB:AE:C1:50:52:6F:12:8A:73:3C:B5:E1:C7
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 0197B88ED53C1BB2B3CC37BCC2A2E19B6577
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
Manifest number: 1421
Signing time: Sat 28 Jun 2025 22:00:57 +0000
Manifest this update: Sat 28 Jun 2025 22:00:57 +0000
Manifest next update: Sun 29 Jun 2025 22:00:57 +0000
Files and hashes: 1: 2Cp_JC-1gSdENPjM_UWn9lNVG7o.roa (hash: +35xjqek9Nhlc/Z0+VDCYx/DAJw10REdvRuvu6t5M3s=)
2: 30p15OIB4xzHle9tD78XYhbRDYI.roa (hash: 9HVb43mRInURyExw74+VWFanW5TCiRHL7zKkRNQfWwc=)
3: 46l3zcDNK_2V63AreaLMsQrAgaE.roa (hash: yY63fb353nPGfB15WkNs5SfqIg+XAt04c2yklxwzqUk=)
4: DrQJgIgCadGbo__38qvLm4f2buQ.roa (hash: Wx23py7fw++y8qecqXEe1C97qUaOVg6INU3OjKvg+YE=)
5: KXNk9QJTTodxoMYll5TCbibUvKQ.crl (hash: jDNe0pk0bSKb40VmQ1gsk3ZFydP8nEyZ8ZMESwBSBHc=)
6: Kc-1Z4R9k1b9QbprK1lrnIRFuzo.roa (hash: mIf5b4mKVeZgEr7VsdotpcNIdYch/DFkBdwgO8kit9A=)
7: lTAav4yQpZ87qw_zIchzIsq-5gM.roa (hash: 3b9+qDTSwpfJP/SrqHspJoxR/TN3seQEWvBLhEVGMW0=)
8: x8RX4rKBNmZcMpsvt4Nm7APSjAM.roa (hash: zc30VoGi96Z1iHoOnbaFFXszAPpJE3UJpyJWRy15Byo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8e:d5:3c:1b:b2:b3:cc:37:bc:c2:a2:e1:9b:65:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Jun 28 22:00:57 2025 GMT
Not After : Jun 29 22:00:57 2025 GMT
Subject: CN=646592954594cddbaec150526f128a733cb5e1c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f8:de:1f:d6:fb:e3:cc:01:bc:14:cb:b0:de:
4f:b2:95:c4:33:7d:21:75:d2:8e:b6:e4:90:93:4e:
d0:91:19:fd:67:6d:d5:0c:a8:3d:ba:4f:49:cf:1e:
fd:74:9f:5c:06:2a:9d:85:05:58:ec:2b:9b:77:77:
01:a4:b7:80:2d:68:35:35:21:d1:64:88:03:ac:ae:
8d:51:be:88:c5:c8:0e:c0:d4:3e:ea:56:c8:b9:0c:
ab:ad:12:8b:93:51:7f:f3:a2:e3:b7:3c:20:05:11:
2f:27:4d:bd:9b:85:d3:fc:ef:8c:a2:19:82:df:0a:
1f:8b:8f:ee:fa:c5:d9:ff:18:bb:81:12:0d:ed:c6:
29:21:46:ef:3f:a2:4d:42:23:c6:c9:53:54:3c:76:
fb:64:64:86:09:34:23:8f:73:11:e9:a5:df:ab:3c:
f9:82:ea:0d:22:a9:f1:4b:0e:c5:5c:8e:f2:e7:7a:
70:74:50:81:1c:d1:be:e6:2d:5d:32:d7:92:ee:6e:
26:bd:db:fe:23:70:95:23:c2:4a:03:82:9f:a0:41:
e9:09:fa:47:4f:cb:8d:a9:11:fb:e9:7b:f1:6f:51:
36:cb:3c:e9:26:93:18:af:5a:62:f3:39:7d:1f:5e:
5e:ed:71:3a:43:cf:65:75:35:d7:73:d7:c9:c6:75:
eb:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:65:92:95:45:94:CD:DB:AE:C1:50:52:6F:12:8A:73:3C:B5:E1:C7
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:77:d8:ae:b0:23:89:8f:25:0a:d3:85:63:bd:80:f1:c5:36:
69:5e:5d:8b:e6:3e:d1:50:f5:b3:c7:f2:fa:c1:45:76:0a:32:
53:b0:51:86:7c:38:3d:86:b8:21:e7:f4:f7:b4:fe:89:d1:d1:
b2:31:bd:00:6b:2f:8d:ee:bd:1a:b8:48:0d:18:8f:9f:9d:2b:
92:3e:a0:ed:26:d0:87:e3:ba:71:e1:a2:a8:94:8d:13:76:2d:
cb:e0:30:4c:fc:46:ce:e4:a4:f0:7b:d4:7b:c9:0d:ca:a0:ae:
1f:7e:45:ff:0f:3a:8f:3c:c7:96:cf:7b:8a:0b:14:7a:76:90:
05:2b:11:c6:f0:8d:aa:59:dc:21:07:28:41:2c:ab:1f:56:cc:
23:ab:19:67:80:6e:7e:b9:bf:72:7b:7c:a1:62:01:ca:27:7d:
97:08:29:f6:f7:d9:a0:3c:8f:ab:92:6a:b6:ff:96:90:40:aa:
d9:ef:0e:9e:13:44:32:3a:c3:9a:b8:8b:cc:e1:52:3f:3d:a5:
39:35:8f:52:5f:3d:73:45:38:79:5b:76:a7:49:42:3d:a2:74:
c9:ef:77:73:9f:08:5b:4a:3c:b4:3e:28:e4:9d:22:6f:cc:14:
1a:2f:de:e8:d7:54:9b:36:43:b7:bb:e4:ae:e3:3e:54:ca:ed:
bc:2d:78:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4jtU8G7KzzDe8wqLhm2V3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NzM2NGY1MDI1MzRlODc3MWEwYzYyNTk3OTRjMjZlMjZk
NGJjYTQwHhcNMjUwNjI4MjIwMDU3WhcNMjUwNjI5MjIwMDU3WjAzMTEwLwYDVQQD
Eyg2NDY1OTI5NTQ1OTRjZGRiYWVjMTUwNTI2ZjEyOGE3MzNjYjVlMWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPjeH9b748wBvBTLsN5PspXEM30h
ddKOtuSQk07QkRn9Z23VDKg9uk9Jzx79dJ9cBiqdhQVY7Cubd3cBpLeALWg1NSHR
ZIgDrK6NUb6IxcgOwNQ+6lbIuQyrrRKLk1F/86LjtzwgBREvJ029m4XT/O+MohmC
3wofi4/u+sXZ/xi7gRIN7cYpIUbvP6JNQiPGyVNUPHb7ZGSGCTQjj3MR6aXfqzz5
guoNIqnxSw7FXI7y53pwdFCBHNG+5i1dMteS7m4mvdv+I3CVI8JKA4KfoEHpCfpH
T8uNqRH76Xvxb1E2yzzpJpMYr1pi8zl9H15e7XE6Q89ldTXXc9fJxnXrTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGRlkpVFlM3brsFQUm8SinM8teHHMB8GA1UdIwQY
MBaAFClzZPUCU06HcaDGJZeUwm4m1LykMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNDU4MjAtMzU0Ni00MDdjLTgzYTUt
MGEwZjNlNzhhNDkzLzEvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8wNDU4MjAtMzU0Ni00MDdjLTgzYTUtMGEwZjNlNzhhNDkz
LzEvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkHfYrrAj
iY8lCtOFY72A8cU2aV5di+Y+0VD1s8fy+sFFdgoyU7BRhnw4PYa4Ief097T+idHR
sjG9AGsvje69GrhIDRiPn50rkj6g7SbQh+O6ceGiqJSNE3Yty+AwTPxGzuSk8HvU
e8kNyqCuH35F/w86jzzHls97igsUenaQBSsRxvCNqlncIQcoQSyrH1bMI6sZZ4Bu
frm/cnt8oWIByid9lwgp9vfZoDyPq5Jqtv+WkECq2e8OnhNEMjrDmriLzOFSPz2l
OTWPUl89c0U4eVt2p0lCPaJ0ye93c58IW0o8tD4o5J0ib8wUGi/e6NdUmzZDt7vk
ruM+VMrtvC147Q==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:22:28 2025 by rpki-client