Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
File: kaEXOnDkH0WTVHZpraIvDX9o81Q.mft (raw, json)
Hash identifier: NZbBNm4WBYQ2+rQ3N5Djah16Kl2diDvbM4P81bUPNcc=
Subject key identifier: F1:73:B2:EC:78:CC:D7:6B:8F:7D:0C:C6:22:78:2D:94:7A:A9:EC:24
Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354
Certificate serial: 0198D54DC6727EF6FDF3ED11593D28BDD934
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
Manifest number: 164B
Signing time: Sat 23 Aug 2025 05:01:40 +0000
Manifest this update: Sat 23 Aug 2025 05:01:40 +0000
Manifest next update: Sun 24 Aug 2025 05:01:40 +0000
Files and hashes: 1: kaEXOnDkH0WTVHZpraIvDX9o81Q.crl (hash: SwUGLuYqa/Z08tNxwZH3wEjBCB17aCPRw0i8CFcULGk=)
2: xREpLh3GVdj1ODzVkMBccz2oKXk.roa (hash: xbsUY7nQRM1AibU2b9y10o7TiQNt9Xvh0b0IzmFT71c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4d:c6:72:7e:f6:fd:f3:ed:11:59:3d:28:bd:d9:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354
Validity
Not Before: Aug 23 05:01:40 2025 GMT
Not After : Aug 24 05:01:40 2025 GMT
Subject: CN=f173b2ec78ccd76b8f7d0cc622782d947aa9ec24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:92:f7:bc:d0:6f:d8:97:a3:4f:b8:74:49:f5:
e6:ed:71:92:c9:0f:d7:17:57:52:df:54:25:bb:c2:
73:ff:1b:e3:ce:28:fc:37:f1:d8:8f:a6:fe:d0:ab:
9b:f5:d6:b4:2e:a7:a2:41:ae:11:82:8e:cf:d8:e1:
a0:78:53:76:17:b9:2a:d1:e5:e5:8c:19:ce:2a:02:
a7:4a:48:f9:36:b0:08:cb:69:cf:b4:b1:94:93:a4:
57:07:e1:b8:e6:e5:69:2d:84:43:1d:03:d5:c7:c6:
39:ed:a1:18:cc:19:e7:18:1c:4d:9a:20:30:e1:57:
e5:5d:fc:d3:ac:11:f7:f4:5f:22:e3:d3:72:89:d9:
5b:ac:d4:7d:dd:27:cb:2e:07:d7:3a:bc:97:7c:4f:
8b:16:8d:87:22:59:f2:51:80:34:7d:d6:d8:af:da:
91:d2:dc:33:1e:7d:dc:96:df:94:41:10:34:cf:a4:
15:ca:f0:21:f2:97:57:99:2d:74:92:8c:dd:49:98:
7d:03:b7:bf:a9:2d:41:83:e8:99:d7:ed:97:c2:98:
6b:a8:b1:57:b4:d0:04:2d:fe:fe:82:46:84:aa:97:
fd:12:05:20:cc:f2:f0:b0:5c:fb:a1:c0:7b:2b:ec:
c4:80:ef:2f:e9:75:fb:1c:26:0d:85:b5:36:0a:b4:
12:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:73:B2:EC:78:CC:D7:6B:8F:7D:0C:C6:22:78:2D:94:7A:A9:EC:24
X509v3 Authority Key Identifier:
keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:cd:f9:d8:4a:bb:a7:c6:0e:f1:99:00:d0:b6:72:77:f1:38:
67:5b:f2:c6:ff:c1:a7:48:b6:fe:f1:6e:fa:28:44:3e:d0:2c:
61:59:de:99:9c:d2:ba:a7:c0:dd:61:c6:fe:d7:85:e2:f5:cf:
2c:e1:96:7a:f3:25:36:92:04:e2:0b:0b:56:d9:db:82:af:fb:
35:5d:18:bf:7f:f0:b4:af:f2:08:f5:36:4d:71:da:71:68:81:
cb:34:a5:16:1a:a2:bc:d4:a7:52:9a:70:8a:ee:6a:42:cf:cf:
e0:07:47:fa:88:67:3b:60:4e:63:51:90:b3:10:f7:24:ca:a0:
25:86:88:ba:51:86:1e:ce:ba:c1:0e:f8:af:8c:c0:35:95:cc:
f2:4c:2a:22:2d:c6:78:e3:59:ab:79:54:2f:cc:93:46:29:87:
1f:3b:e3:2a:12:65:62:f5:d8:bb:96:14:60:c3:b8:ef:62:5c:
80:4d:02:46:7e:d5:60:a3:04:60:ca:5b:cc:76:01:74:fe:85:
6b:aa:15:28:cd:bd:00:9f:c7:de:75:b1:4b:7a:89:92:dc:c3:
c5:c8:41:3b:aa:78:e0:fe:de:57:a0:2d:f6:93:82:23:d0:b0:
99:39:50:ad:73:22:22:fd:0f:a8:52:a6:83:ca:1f:ce:cb:78:
27:1a:41:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTcZyfvb98+0RWT0ovdk0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYTExNzNhNzBlNDFmNDU5MzU0NzY2OWFkYTIyZjBkN2Y2
OGYzNTQwHhcNMjUwODIzMDUwMTQwWhcNMjUwODI0MDUwMTQwWjAzMTEwLwYDVQQD
EyhmMTczYjJlYzc4Y2NkNzZiOGY3ZDBjYzYyMjc4MmQ5NDdhYTllYzI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZL3vNBv2JejT7h0SfXm7XGSyQ/X
F1dS31Qlu8Jz/xvjzij8N/HYj6b+0Kub9da0LqeiQa4Rgo7P2OGgeFN2F7kq0eXl
jBnOKgKnSkj5NrAIy2nPtLGUk6RXB+G45uVpLYRDHQPVx8Y57aEYzBnnGBxNmiAw
4VflXfzTrBH39F8i49NyidlbrNR93SfLLgfXOryXfE+LFo2HIlnyUYA0fdbYr9qR
0twzHn3clt+UQRA0z6QVyvAh8pdXmS10kozdSZh9A7e/qS1Bg+iZ1+2XwphrqLFX
tNAELf7+gkaEqpf9EgUgzPLwsFz7ocB7K+zEgO8v6XX7HCYNhbU2CrQS+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPFzsux4zNdrj30MxiJ4LZR6qewkMB8GA1UdIwQY
MBaAFJGhFzpw5B9Fk1R2aa2iLw1/aPNUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zNGU1M2YtNjc1OS00Y2Y1LTk4MDEt
NWQ2MzBlMjAzZmQ1LzEva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi8zNGU1M2YtNjc1OS00Y2Y1LTk4MDEtNWQ2MzBlMjAzZmQ1
LzEva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfM352Eq7
p8YO8ZkA0LZyd/E4Z1vyxv/Bp0i2/vFu+ihEPtAsYVnemZzSuqfA3WHG/teF4vXP
LOGWevMlNpIE4gsLVtnbgq/7NV0Yv3/wtK/yCPU2TXHacWiByzSlFhqivNSnUppw
iu5qQs/P4AdH+ohnO2BOY1GQsxD3JMqgJYaIulGGHs66wQ74r4zANZXM8kwqIi3G
eONZq3lUL8yTRimHHzvjKhJlYvXYu5YUYMO472JcgE0CRn7VYKMEYMpbzHYBdP6F
a6oVKM29AJ/H3nWxS3qJktzDxchBO6p44P7eV6At9pOCI9CwmTlQrXMiIv0PqFKm
g8ofzst4JxpB7Q==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:37:10 2025 by rpki-client