Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
File: KaA5l7KPWbCAMciYQH3V5RN93bE.mft (raw, json)
Hash identifier: OL5a+mdGhPu69H4kVu/ID0OndrWVBEa7eRlxOmw2ZQo=
Subject key identifier: 69:5E:C8:3D:34:8C:6D:7B:8D:18:D7:33:25:E4:42:1E:60:A0:8A:DA
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 0198D73B96651A6EC74A95F70211320E1F8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
Manifest number: 1336
Signing time: Sat 23 Aug 2025 14:01:03 +0000
Manifest this update: Sat 23 Aug 2025 14:01:03 +0000
Manifest next update: Sun 24 Aug 2025 14:01:03 +0000
Files and hashes: 1: KaA5l7KPWbCAMciYQH3V5RN93bE.crl (hash: xxI06cxXftExmEhvasTN9LLIBHaeArXbg+v6hrGtM+o=)
2: TFGcxJc1hz5sSLNvCaBuhb3JcFY.roa (hash: IVGRn6jYdKaVvVkrmcrSKzMRsOoEhE2vOI0riR6WQTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:3b:96:65:1a:6e:c7:4a:95:f7:02:11:32:0e:1f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Aug 23 14:01:03 2025 GMT
Not After : Aug 24 14:01:03 2025 GMT
Subject: CN=695ec83d348c6d7b8d18d73325e4421e60a08ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:76:d0:db:79:9e:06:7f:d1:8c:86:b9:19:de:
00:db:64:84:f8:c1:de:19:74:84:d3:21:39:d1:7e:
43:3e:c0:3e:a6:c6:5d:1a:7e:f6:4f:13:7b:f6:10:
43:52:14:a0:f2:ac:24:63:42:5b:8d:43:c5:cc:94:
e1:9d:16:1b:29:72:01:9b:df:d4:95:50:e7:33:9e:
5c:de:37:45:e4:da:78:f3:e5:03:02:d8:32:d1:d8:
c3:7e:ae:f9:9f:13:e2:80:99:85:70:ad:07:4f:2e:
9b:10:20:bf:a8:2a:2a:96:f6:bc:1e:b7:30:89:6d:
54:7b:af:5e:4f:78:1c:82:17:4f:0f:02:b7:3f:74:
57:f7:54:a0:15:6a:4b:fa:f7:4e:a5:7a:74:18:7f:
9f:9c:22:37:df:c9:6a:85:92:c7:c2:cd:99:5b:41:
aa:6e:58:b5:22:1d:fb:aa:5f:55:1a:f7:8e:a9:22:
a0:ee:6c:0e:ea:0f:ad:4f:62:23:ba:fa:6e:db:42:
67:0d:4c:9f:fd:0b:2d:d8:46:84:1c:bc:74:c9:c4:
97:13:04:81:c7:1d:15:c0:b8:94:0a:5d:c2:7e:fb:
00:8a:d4:d4:31:50:63:55:81:a6:6b:fc:72:97:ae:
c7:22:bf:61:fc:0f:99:f8:34:27:81:bb:0b:2a:df:
61:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5E:C8:3D:34:8C:6D:7B:8D:18:D7:33:25:E4:42:1E:60:A0:8A:DA
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:30:c8:6f:b4:03:19:a7:82:70:f1:fb:82:62:4e:6b:6a:17:
6c:49:ce:b2:73:5c:dd:6a:a5:31:28:3b:68:5e:51:74:d5:e0:
6f:64:07:f3:72:7a:7a:e3:74:f1:5b:fc:44:c3:f4:8f:b3:dc:
d5:a3:fe:f5:98:7f:31:56:77:dd:91:aa:d5:1b:17:5a:7f:8d:
d6:c9:73:4c:b9:a9:ad:e4:5f:86:5c:b5:ba:1f:93:9c:f6:8d:
f4:e6:09:e9:30:df:0d:80:93:7d:ca:a9:af:e2:c8:a9:e4:33:
af:d2:27:12:ae:e0:e5:0c:ff:9b:f4:d1:b2:fc:c2:a4:60:85:
ce:1f:1f:a4:fe:6a:47:b1:35:da:ea:81:e2:94:b2:fb:6a:55:
e9:a7:26:0c:44:d6:61:cf:19:c1:9a:01:27:8e:0f:cf:0e:aa:
6d:ae:63:33:4b:c4:e8:c1:ce:e6:86:ec:6c:5a:fb:9f:e6:49:
bc:88:91:5d:a6:07:7d:70:62:7e:d8:b8:10:2d:85:a7:d8:9a:
2f:9e:b8:ba:55:b9:41:a3:34:01:70:4a:d2:c0:cb:35:9e:94:
29:f6:15:8f:78:85:58:5d:46:bc:18:7b:f3:71:b5:93:f5:e3:
57:5a:fa:3d:f9:98:0d:fa:de:4c:11:ad:b8:83:28:0d:4e:8e:
93:f7:d3:d7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXO5ZlGm7HSpX3AhEyDh+OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5YTAzOTk3YjI4ZjU5YjA4MDMxYzg5ODQwN2RkNWU1MTM3
ZGRkYjEwHhcNMjUwODIzMTQwMTAzWhcNMjUwODI0MTQwMTAzWjAzMTEwLwYDVQQD
Eyg2OTVlYzgzZDM0OGM2ZDdiOGQxOGQ3MzMyNWU0NDIxZTYwYTA4YWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0nbQ23meBn/RjIa5Gd4A22SE+MHe
GXSE0yE50X5DPsA+psZdGn72TxN79hBDUhSg8qwkY0JbjUPFzJThnRYbKXIBm9/U
lVDnM55c3jdF5Np48+UDAtgy0djDfq75nxPigJmFcK0HTy6bECC/qCoqlva8Hrcw
iW1Ue69eT3gcghdPDwK3P3RX91SgFWpL+vdOpXp0GH+fnCI338lqhZLHws2ZW0Gq
bli1Ih37ql9VGveOqSKg7mwO6g+tT2Ijuvpu20JnDUyf/Qst2EaEHLx0ycSXEwSB
xx0VwLiUCl3CfvsAitTUMVBjVYGma/xyl67HIr9h/A+Z+DQngbsLKt9hUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGleyD00jG17jRjXMyXkQh5goIraMB8GA1UdIwQY
MBaAFCmgOZeyj1mwgDHImEB91eUTfd2xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2FBNWw3S1BXYkNBTWNpWVFIM1Y1Uk45M2JFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8yMTliZTItMzk2Zi00MjdmLTk0MmMt
MWY4ZTUyMjQwOGE1LzEvS2FBNWw3S1BXYkNBTWNpWVFIM1Y1Uk45M2JFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8yMTliZTItMzk2Zi00MjdmLTk0MmMtMWY4ZTUyMjQwOGE1
LzEvS2FBNWw3S1BXYkNBTWNpWVFIM1Y1Uk45M2JFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAzDIb7QD
GaeCcPH7gmJOa2oXbEnOsnNc3WqlMSg7aF5RdNXgb2QH83J6euN08Vv8RMP0j7Pc
1aP+9Zh/MVZ33ZGq1RsXWn+N1slzTLmpreRfhly1uh+TnPaN9OYJ6TDfDYCTfcqp
r+LIqeQzr9InEq7g5Qz/m/TRsvzCpGCFzh8fpP5qR7E12uqB4pSy+2pV6acmDETW
Yc8ZwZoBJ44Pzw6qba5jM0vE6MHO5obsbFr7n+ZJvIiRXaYHfXBifti4EC2Fp9ia
L564ulW5QaM0AXBK0sDLNZ6UKfYVj3iFWF1GvBh783G1k/XjV1r6PfmYDfreTBGt
uIMoDU6Ok/fT1w==
-----END CERTIFICATE-----
Generated at Sat Aug 23 22:31:16 2025 by rpki-client