Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/ff2fd0-624d-47f8-be9f-d1f1803b1812/1/kXgw2UHuCQqOMjSPl7gwj9HOCf0.mft
File: kXgw2UHuCQqOMjSPl7gwj9HOCf0.mft (raw, json)
Hash identifier: pa+ePTjwTW3LZhNx/9a83hxWWnj7jMvGl33j3ogNdBE=
Subject key identifier: EB:09:48:5E:3F:EC:55:FE:BD:68:A7:38:CD:B1:7A:50:97:FC:6E:51
Authority key identifier: 91:78:30:D9:41:EE:09:0A:8E:32:34:8F:97:B8:30:8F:D1:CE:09:FD
Certificate issuer: /CN=917830d941ee090a8e32348f97b8308fd1ce09fd
Certificate serial: 0198D6CDF404FF5900363CF39829947D7EAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXgw2UHuCQqOMjSPl7gwj9HOCf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/ff2fd0-624d-47f8-be9f-d1f1803b1812/1/kXgw2UHuCQqOMjSPl7gwj9HOCf0.mft
Manifest number: 0CC6
Signing time: Sat 23 Aug 2025 12:01:18 +0000
Manifest this update: Sat 23 Aug 2025 12:01:18 +0000
Manifest next update: Sun 24 Aug 2025 12:01:18 +0000
Files and hashes: 1: kXgw2UHuCQqOMjSPl7gwj9HOCf0.crl (hash: PvmrPmzsAG87SRsy409b4qHMFUY7XM2V2hQfIh+rLJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/ff2fd0-624d-47f8-be9f-d1f1803b1812/1/kXgw2UHuCQqOMjSPl7gwj9HOCf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/ff2fd0-624d-47f8-be9f-d1f1803b1812/1/kXgw2UHuCQqOMjSPl7gwj9HOCf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXgw2UHuCQqOMjSPl7gwj9HOCf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:f4:04:ff:59:00:36:3c:f3:98:29:94:7d:7e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917830d941ee090a8e32348f97b8308fd1ce09fd
Validity
Not Before: Aug 23 12:01:18 2025 GMT
Not After : Aug 24 12:01:18 2025 GMT
Subject: CN=eb09485e3fec55febd68a738cdb17a5097fc6e51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f9:45:81:6e:fb:92:b0:4f:cc:7b:49:a3:5e:
c6:94:21:d2:35:03:9d:08:04:8c:3c:6a:f5:74:4a:
45:af:b1:7e:4d:3c:73:5a:fc:24:c5:b3:c3:12:fd:
a9:11:b1:55:fe:dc:2d:2b:12:a8:b0:58:d9:a2:4e:
73:df:92:76:e9:4d:c8:a5:14:f6:39:2d:de:ea:07:
08:0f:f3:99:b4:ae:7d:2d:69:84:5a:d9:0c:58:47:
7d:57:ff:67:8d:86:19:c5:ec:f0:d7:dd:9c:ab:b2:
c9:61:1a:8f:9d:a7:9d:f8:d0:fd:b6:37:e5:d5:6c:
8f:a6:7b:5d:a4:5c:8c:91:5f:30:c0:f5:ee:e2:52:
c8:9e:89:c3:90:a5:26:2a:f5:b8:9a:b5:36:a3:17:
33:e3:73:12:be:bd:1c:5f:72:8b:c5:2f:de:5f:9c:
a3:57:57:8f:67:51:b6:14:c3:30:15:93:0e:ec:bc:
51:ac:63:65:f0:78:c3:e9:dc:f3:8a:36:b4:dd:8e:
1f:f1:e6:3d:4e:68:ef:ba:c4:30:40:bd:7a:43:41:
06:c1:89:cb:3a:f5:c2:31:48:73:ef:2d:81:cc:24:
ed:0e:36:d8:18:0c:b4:89:6a:e0:bc:9e:b0:b6:78:
b5:0f:e6:e3:08:18:02:7e:10:01:9f:e9:ca:aa:74:
32:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:09:48:5E:3F:EC:55:FE:BD:68:A7:38:CD:B1:7A:50:97:FC:6E:51
X509v3 Authority Key Identifier:
keyid:91:78:30:D9:41:EE:09:0A:8E:32:34:8F:97:B8:30:8F:D1:CE:09:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXgw2UHuCQqOMjSPl7gwj9HOCf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/ff2fd0-624d-47f8-be9f-d1f1803b1812/1/kXgw2UHuCQqOMjSPl7gwj9HOCf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/ff2fd0-624d-47f8-be9f-d1f1803b1812/1/kXgw2UHuCQqOMjSPl7gwj9HOCf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:51:1e:3f:4f:12:83:4a:05:02:41:e0:e0:d1:aa:5e:a0:49:
31:02:ae:47:b6:62:38:c0:d3:7f:c3:76:f6:f9:cc:48:52:63:
5a:4d:be:6d:1c:2e:98:34:2d:1d:06:d8:b8:0b:74:8e:10:6c:
aa:bf:da:a5:c2:f7:e1:3d:71:ae:f4:a9:38:1f:0e:1c:50:ea:
b4:d4:2f:f7:ae:b1:f9:14:eb:29:69:34:db:a9:d9:a0:49:bf:
83:86:31:2e:a9:ab:a8:53:ad:5b:85:c5:a5:f7:d3:47:de:58:
58:c3:08:fe:61:d2:d2:33:ab:64:68:3a:d7:25:79:ba:87:04:
01:4c:52:6c:77:e9:3f:d1:f0:a2:50:f6:97:89:f3:f8:94:29:
0a:8c:1d:18:30:d0:7f:28:ea:a0:a5:93:7f:ab:8b:91:57:77:
be:68:d1:0f:dd:89:81:59:35:29:85:a7:8d:b3:19:84:f7:0d:
bd:bc:4e:f5:22:c5:82:c9:29:d9:aa:58:5a:6d:2a:30:bf:e8:
cb:8c:ef:41:1d:96:74:9d:fe:2c:9e:cb:0c:08:66:64:0a:2a:
d7:55:78:68:61:c2:37:c7:2e:ee:cd:5d:1d:30:68:27:41:0c:
8c:c9:c9:e3:b9:50:9e:c7:e1:cb:f4:f9:b4:8e:b0:fe:92:c7:
d9:c0:e9:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzfQE/1kANjzzmCmUfX6tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNzgzMGQ5NDFlZTA5MGE4ZTMyMzQ4Zjk3YjgzMDhmZDFj
ZTA5ZmQwHhcNMjUwODIzMTIwMTE4WhcNMjUwODI0MTIwMTE4WjAzMTEwLwYDVQQD
EyhlYjA5NDg1ZTNmZWM1NWZlYmQ2OGE3MzhjZGIxN2E1MDk3ZmM2ZTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PlFgW77krBPzHtJo17GlCHSNQOd
CASMPGr1dEpFr7F+TTxzWvwkxbPDEv2pEbFV/twtKxKosFjZok5z35J26U3IpRT2
OS3e6gcID/OZtK59LWmEWtkMWEd9V/9njYYZxezw192cq7LJYRqPnaed+ND9tjfl
1WyPpntdpFyMkV8wwPXu4lLInonDkKUmKvW4mrU2oxcz43MSvr0cX3KLxS/eX5yj
V1ePZ1G2FMMwFZMO7LxRrGNl8HjD6dzzija03Y4f8eY9TmjvusQwQL16Q0EGwYnL
OvXCMUhz7y2BzCTtDjbYGAy0iWrgvJ6wtni1D+bjCBgCfhABn+nKqnQy/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOsJSF4/7FX+vWinOM2xelCX/G5RMB8GA1UdIwQY
MBaAFJF4MNlB7gkKjjI0j5e4MI/Rzgn9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1hndzJVSHVDUXFPTWpTUGw3Z3dqOUhPQ2YwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9mZjJmZDAtNjI0ZC00N2Y4LWJlOWYt
ZDFmMTgwM2IxODEyLzEva1hndzJVSHVDUXFPTWpTUGw3Z3dqOUhPQ2YwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9mZjJmZDAtNjI0ZC00N2Y4LWJlOWYtZDFmMTgwM2IxODEy
LzEva1hndzJVSHVDUXFPTWpTUGw3Z3dqOUhPQ2YwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs1EeP08S
g0oFAkHg4NGqXqBJMQKuR7ZiOMDTf8N29vnMSFJjWk2+bRwumDQtHQbYuAt0jhBs
qr/apcL34T1xrvSpOB8OHFDqtNQv966x+RTrKWk026nZoEm/g4YxLqmrqFOtW4XF
pffTR95YWMMI/mHS0jOrZGg61yV5uocEAUxSbHfpP9HwolD2l4nz+JQpCowdGDDQ
fyjqoKWTf6uLkVd3vmjRD92JgVk1KYWnjbMZhPcNvbxO9SLFgskp2apYWm0qML/o
y4zvQR2WdJ3+LJ7LDAhmZAoq11V4aGHCN8cu7s1dHTBoJ0EMjMnJ47lQnsfhy/T5
tI6w/pLH2cDplg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:06:45 2025 by rpki-client