Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: oCSELtxdAW2WwrYZI+eQWFp3dkPaJnTf88WWgBA5OiE=
Subject key identifier: F9:56:2D:4F:35:A4:43:5C:CB:DC:46:7C:75:8A:53:CD:2D:D7:A5:F6
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 0198D5BB952745C05F6C00B0D2B483F22533
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 07:01:37 +0000
Manifest this update: Sat 23 Aug 2025 07:01:37 +0000
Manifest next update: Sun 24 Aug 2025 07:01:37 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: vmpBk82FlDWlfAn3RQuVPj8TTQYuoQG9xfo0MTXbgJE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:95:27:45:c0:5f:6c:00:b0:d2:b4:83:f2:25:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Aug 23 07:01:37 2025 GMT
Not After : Aug 24 07:01:37 2025 GMT
Subject: CN=f9562d4f35a4435ccbdc467c758a53cd2dd7a5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f7:60:1c:5a:62:d6:ac:bc:e3:91:65:da:a8:
20:d1:0b:9d:dd:d5:ed:19:d3:72:2d:bd:4d:8f:86:
11:dd:42:6e:3e:1b:46:e3:49:94:2d:ce:1b:97:60:
11:41:a8:97:1a:fe:38:fd:e2:50:77:1a:d2:f0:02:
46:ce:f5:e3:cf:f2:ff:23:71:84:0d:26:3b:40:3f:
84:0c:f6:c9:f5:0f:6d:ca:a0:c7:08:45:eb:73:18:
fa:16:ad:6f:7d:f2:c9:97:40:b9:d3:c0:e5:23:b3:
9d:30:a6:13:41:ba:85:7d:d4:28:f9:6b:ce:7d:14:
7c:c4:42:22:1c:a9:c9:fb:9e:4a:0b:95:77:d4:d0:
9b:50:f7:4a:20:ca:66:3f:5a:33:7e:2b:cc:de:05:
5f:08:fb:6d:36:c8:a6:0e:0a:6f:81:8e:05:1f:c8:
cc:d7:62:83:b1:eb:95:0d:25:88:1a:0e:d2:97:6c:
39:25:df:c1:a3:46:f0:53:10:c4:2b:58:61:c5:91:
21:70:9d:87:4b:12:6e:0e:42:5c:6f:05:84:f4:e4:
8d:73:b8:4a:a6:72:f9:6e:31:e6:db:18:af:82:e1:
f0:83:ca:44:e3:90:2c:ee:65:12:54:ee:df:72:65:
27:9a:d2:9f:0d:7e:a2:42:db:1d:1c:ce:ae:19:06:
4c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:56:2D:4F:35:A4:43:5C:CB:DC:46:7C:75:8A:53:CD:2D:D7:A5:F6
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:06:e8:48:30:bd:38:6c:04:e5:f2:58:6b:b2:e0:b7:a3:06:
c6:af:da:f0:84:22:1d:6c:44:b5:36:7d:2d:98:29:d5:69:fd:
28:f6:f2:40:1c:0d:06:4b:de:86:c4:e5:81:c0:ae:b1:6a:28:
03:d4:d9:2d:1f:99:97:9e:98:cf:aa:12:cc:fd:70:85:4b:98:
1e:3b:a5:84:89:1d:c4:41:1e:f9:68:f6:81:bc:e5:88:19:2b:
bd:a8:49:ac:28:08:60:e7:80:24:37:da:1e:49:e5:54:38:21:
97:03:81:5d:f3:2d:1b:cc:eb:9a:35:f4:ef:44:27:f8:e4:3a:
ea:d5:c5:bf:16:88:f9:e3:b6:b3:46:cf:29:00:73:b5:fa:ad:
4e:f5:a1:5f:1a:6b:40:25:77:5f:c7:df:65:1b:f3:cb:51:0a:
8e:c2:da:78:cf:ef:a7:1e:82:c1:07:7a:9d:d1:c0:b0:43:f1:
fc:42:6b:ca:9e:27:00:f5:4b:17:ff:97:0d:80:30:4a:46:dc:
ad:f1:a5:dc:f2:e8:be:0d:97:72:c4:43:7c:4b:d2:c6:aa:a3:
78:aa:d1:65:10:71:7c:67:10:c5:ad:8f:5f:64:2a:0d:4c:62:
c4:ce:cd:a0:ed:66:f5:1e:ba:25:7a:0e:d9:99:38:f8:6e:fe:
d2:7d:36:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu5UnRcBfbACw0rSD8iUzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODQzZGI5NmU0ZjQ1OWI4N2RmOGMyNzkwNTdlZWQ2OWJi
OWI4NjIwHhcNMjUwODIzMDcwMTM3WhcNMjUwODI0MDcwMTM3WjAzMTEwLwYDVQQD
EyhmOTU2MmQ0ZjM1YTQ0MzVjY2JkYzQ2N2M3NThhNTNjZDJkZDdhNWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0vdgHFpi1qy845Fl2qgg0Qud3dXt
GdNyLb1Nj4YR3UJuPhtG40mULc4bl2ARQaiXGv44/eJQdxrS8AJGzvXjz/L/I3GE
DSY7QD+EDPbJ9Q9tyqDHCEXrcxj6Fq1vffLJl0C508DlI7OdMKYTQbqFfdQo+WvO
fRR8xEIiHKnJ+55KC5V31NCbUPdKIMpmP1ozfivM3gVfCPttNsimDgpvgY4FH8jM
12KDseuVDSWIGg7Sl2w5Jd/Bo0bwUxDEK1hhxZEhcJ2HSxJuDkJcbwWE9OSNc7hK
pnL5bjHm2xivguHwg8pE45As7mUSVO7fcmUnmtKfDX6iQtsdHM6uGQZMFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPlWLU81pENcy9xGfHWKU80t16X2MB8GA1UdIwQY
MBaAFCiEPbluT0Wbh9+MJ5BX7tabubhiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9kM2E1NWMtMWY2Mi00Nzc5LTg2Yjkt
NjFiNTBmNmE2YzAyLzEvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9kM2E1NWMtMWY2Mi00Nzc5LTg2YjktNjFiNTBmNmE2YzAy
LzEvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASAboSDC9
OGwE5fJYa7Lgt6MGxq/a8IQiHWxEtTZ9LZgp1Wn9KPbyQBwNBkvehsTlgcCusWoo
A9TZLR+Zl56Yz6oSzP1whUuYHjulhIkdxEEe+Wj2gbzliBkrvahJrCgIYOeAJDfa
HknlVDghlwOBXfMtG8zrmjX070Qn+OQ66tXFvxaI+eO2s0bPKQBztfqtTvWhXxpr
QCV3X8ffZRvzy1EKjsLaeM/vpx6CwQd6ndHAsEPx/EJryp4nAPVLF/+XDYAwSkbc
rfGl3PLovg2XcsRDfEvSxqqjeKrRZRBxfGcQxa2PX2QqDUxixM7NoO1m9R66JXoO
2Zk4+G7+0n02vg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:08:32 2025 by rpki-client