Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
File: kaEXOnDkH0WTVHZpraIvDX9o81Q.mft (raw, json)
Hash identifier: C1oyEoJyVY5HKV4OcRWoxmmXRCcAatIPqGLwLiQLdFE=
Subject key identifier: 8C:EA:6F:CC:F3:26:07:4E:C0:30:43:33:9A:D9:7A:BF:D3:20:73:72
Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354
Certificate serial: 0197B77C2CF673B8E806ED77B0D7A3E115B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
Manifest number: 15B7
Signing time: Sat 28 Jun 2025 17:00:57 +0000
Manifest this update: Sat 28 Jun 2025 17:00:57 +0000
Manifest next update: Sun 29 Jun 2025 17:00:57 +0000
Files and hashes: 1: kaEXOnDkH0WTVHZpraIvDX9o81Q.crl (hash: BTyE6JXLuyQ+DHS22PUIThLOOZFDFma+OpgMqnDhP/o=)
2: xREpLh3GVdj1ODzVkMBccz2oKXk.roa (hash: xbsUY7nQRM1AibU2b9y10o7TiQNt9Xvh0b0IzmFT71c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:2c:f6:73:b8:e8:06:ed:77:b0:d7:a3:e1:15:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354
Validity
Not Before: Jun 28 17:00:57 2025 GMT
Not After : Jun 29 17:00:57 2025 GMT
Subject: CN=8cea6fccf326074ec03043339ad97abfd3207372
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3c:a1:0a:ae:56:c4:43:f6:c7:96:4c:81:c2:
27:cc:26:3f:ea:bc:42:fd:bf:d1:69:3d:b9:c9:df:
32:8b:3e:a0:5e:bf:38:86:dd:5c:7f:15:ba:df:44:
a5:13:d7:19:d7:c6:20:89:c8:ed:b7:33:f2:c1:3c:
30:11:f1:27:58:65:30:98:6d:92:cb:9d:51:4b:45:
73:e3:ae:e1:0b:d1:ea:8f:7b:37:1c:a4:bd:b3:48:
bb:25:ea:83:bd:2a:6d:c5:b8:20:a5:09:0b:e0:c3:
e3:9a:e4:4c:ce:bf:a5:d8:7d:ef:60:ee:8f:cb:74:
d4:c5:07:18:5c:39:62:7f:cd:ac:2b:de:0e:51:d6:
a9:82:f2:35:16:ef:4f:ae:98:60:7b:29:97:c5:68:
e3:1e:ed:81:56:ef:fc:69:3d:ba:ab:b3:9d:78:8f:
fe:4c:14:59:73:22:2c:dd:26:09:09:23:ac:b6:74:
57:5a:b8:75:38:5b:65:a3:06:a0:cf:27:38:e3:6e:
3c:ea:34:43:b1:d7:ab:c4:31:ac:49:69:86:2e:66:
67:6a:79:d8:a9:55:6e:fa:6a:b5:50:0a:18:d1:2e:
aa:29:9c:fd:e8:d8:dd:22:26:04:2b:49:37:bc:61:
bf:39:2d:3b:58:75:80:21:bd:b1:41:55:31:2d:9d:
d9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EA:6F:CC:F3:26:07:4E:C0:30:43:33:9A:D9:7A:BF:D3:20:73:72
X509v3 Authority Key Identifier:
keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ac:0e:9b:ba:f0:81:42:cc:2d:4e:52:96:a7:1d:32:f6:91:
ac:c3:b3:57:b6:eb:57:87:83:df:8e:7a:16:94:e6:5b:bc:6d:
19:8d:23:53:d5:06:a0:75:57:5d:f2:cd:69:0b:71:d0:d9:33:
40:e2:bc:96:bb:b0:90:cc:b5:43:c9:be:47:06:0d:b2:51:bf:
ad:c7:41:8a:40:02:b2:6b:4f:82:56:7e:f6:fb:e9:bd:5a:8a:
2d:40:1b:72:9c:b6:6e:a5:c0:63:6f:e7:a2:3d:97:53:46:97:
69:9a:43:2f:52:67:54:51:59:46:3b:ea:bc:0a:a6:d4:8a:e5:
af:1d:d2:fe:ae:fe:0c:8b:19:07:12:4a:44:93:83:cb:d6:a2:
bd:96:11:12:cd:ae:0e:69:12:40:3d:8e:54:e9:08:0c:55:bd:
de:b4:5c:77:60:bc:a9:26:bc:c8:01:b4:09:77:fa:e0:0d:0e:
65:f9:dd:b4:54:e0:08:e1:a5:87:dd:b0:3e:94:81:03:10:9d:
3b:43:0d:79:68:96:4a:95:70:79:33:dd:df:6a:f9:c9:02:42:
12:c4:6a:71:35:93:ff:32:51:cf:18:60:41:19:12:42:0a:4b:
7c:81:67:a2:60:75:58:e2:aa:00:f2:4d:dd:7c:e9:94:ce:e4:
e4:78:08:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fCz2c7joBu13sNej4RW4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYTExNzNhNzBlNDFmNDU5MzU0NzY2OWFkYTIyZjBkN2Y2
OGYzNTQwHhcNMjUwNjI4MTcwMDU3WhcNMjUwNjI5MTcwMDU3WjAzMTEwLwYDVQQD
Eyg4Y2VhNmZjY2YzMjYwNzRlYzAzMDQzMzM5YWQ5N2FiZmQzMjA3MzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjyhCq5WxEP2x5ZMgcInzCY/6rxC
/b/RaT25yd8yiz6gXr84ht1cfxW630SlE9cZ18YgicjttzPywTwwEfEnWGUwmG2S
y51RS0Vz467hC9Hqj3s3HKS9s0i7JeqDvSptxbggpQkL4MPjmuRMzr+l2H3vYO6P
y3TUxQcYXDlif82sK94OUdapgvI1Fu9PrphgeymXxWjjHu2BVu/8aT26q7OdeI/+
TBRZcyIs3SYJCSOstnRXWrh1OFtlowagzyc442486jRDsderxDGsSWmGLmZnannY
qVVu+mq1UAoY0S6qKZz96NjdIiYEK0k3vGG/OS07WHWAIb2xQVUxLZ3ZFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIzqb8zzJgdOwDBDM5rZer/TIHNyMB8GA1UdIwQY
MBaAFJGhFzpw5B9Fk1R2aa2iLw1/aPNUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zNGU1M2YtNjc1OS00Y2Y1LTk4MDEt
NWQ2MzBlMjAzZmQ1LzEva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8zNGU1M2YtNjc1OS00Y2Y1LTk4MDEtNWQ2MzBlMjAzZmQ1
LzEva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMqwOm7rw
gULMLU5SlqcdMvaRrMOzV7brV4eD3456FpTmW7xtGY0jU9UGoHVXXfLNaQtx0Nkz
QOK8lruwkMy1Q8m+RwYNslG/rcdBikACsmtPglZ+9vvpvVqKLUAbcpy2bqXAY2/n
oj2XU0aXaZpDL1JnVFFZRjvqvAqm1Irlrx3S/q7+DIsZBxJKRJODy9aivZYREs2u
DmkSQD2OVOkIDFW93rRcd2C8qSa8yAG0CXf64A0OZfndtFTgCOGlh92wPpSBAxCd
O0MNeWiWSpVweTPd32r5yQJCEsRqcTWT/zJRzxhgQRkSQgpLfIFnomB1WOKqAPJN
3XzplM7k5HgI8A==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:03:49 2025 by rpki-client