Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: dyTpApYtS43YHk8EFO+EYKET0VO/tSqRFVjCOPJwe8k=
Subject key identifier: 5A:87:8D:CD:21:29:5D:91:C7:AB:7E:10:67:1C:A5:25:47:C8:71:96
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 0198D473AFDFD318EEFD2FB20130A8D54D8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1653
Signing time: Sat 23 Aug 2025 01:03:28 +0000
Manifest this update: Sat 23 Aug 2025 01:03:28 +0000
Manifest next update: Sun 24 Aug 2025 01:03:28 +0000
Files and hashes: 1: Lx4QL8l0KgaffC4QXEWzVHcEawc.roa (hash: DxG2rV8lArm7XTxrRaRlBv42lE1FblGks/y6Gbm7tWY=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: 1C4k/dQYiWxAXvDwkruEbwcY0U2WowlotDBHFyC79K0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:73:af:df:d3:18:ee:fd:2f:b2:01:30:a8:d5:4d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Aug 23 01:03:28 2025 GMT
Not After : Aug 24 01:03:28 2025 GMT
Subject: CN=5a878dcd21295d91c7ab7e10671ca52547c87196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:40:98:b9:b1:a1:b8:df:97:50:75:f7:ec:e9:
15:2b:aa:4e:3b:95:ba:23:4f:e4:21:c6:98:de:1a:
22:79:74:a3:65:ce:1e:a0:3d:43:70:d5:76:91:83:
97:7f:f8:0b:dc:68:31:f7:c0:d8:c1:a9:55:cc:0e:
7e:6c:6b:bc:f9:14:c2:03:ee:b6:31:fe:bc:0f:4f:
0e:b0:6a:5e:42:54:d5:9f:c8:89:f5:74:ea:78:da:
d9:d6:f6:68:0c:d7:83:24:fb:10:60:29:f3:66:f6:
0e:bc:4a:97:25:ae:6d:6d:ef:c3:b4:ba:e0:94:24:
c7:54:ee:ca:4b:8d:7b:b4:17:45:af:96:b8:b6:b5:
e2:44:97:ae:3e:28:eb:4f:e0:82:df:5d:14:7d:29:
a0:9b:a9:32:8c:88:df:f2:9f:21:8b:d3:45:3e:d4:
ec:7e:9d:60:67:ff:67:ff:95:5a:36:3f:16:36:56:
46:6b:e7:71:a0:4f:ed:78:36:55:8f:ca:65:e2:95:
8d:c4:59:65:d4:5c:9b:af:20:59:a2:c1:82:ae:8c:
ad:88:68:23:11:5b:b9:84:35:f8:2f:61:c5:8d:9c:
31:0f:95:cd:d7:42:58:92:04:c1:b9:f3:44:25:46:
5a:50:57:a2:dd:78:a0:10:cd:7b:ae:a8:5f:31:90:
b9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:87:8D:CD:21:29:5D:91:C7:AB:7E:10:67:1C:A5:25:47:C8:71:96
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:9e:a6:a8:52:7d:80:57:da:b3:4b:28:e2:03:0d:e6:f5:93:
29:aa:1f:2d:3f:80:58:52:13:76:a1:ab:0e:d9:5a:ba:40:9b:
53:04:1f:95:a6:06:3d:bb:c0:87:c6:af:42:36:17:8e:39:ac:
87:78:7f:7b:bf:56:60:7f:b2:b1:23:b4:56:85:91:5f:2a:a1:
e0:61:b3:94:dd:45:a4:8b:3b:34:72:77:67:19:52:c9:06:0b:
45:0f:44:57:bf:e9:ac:6b:dc:3a:70:5c:1f:4d:4d:be:cc:4c:
4d:f3:59:78:97:95:e5:9a:46:53:14:f5:69:eb:d0:78:40:29:
cd:8e:e5:d7:ff:71:aa:18:29:e4:20:d7:03:eb:18:1c:36:4b:
05:78:e2:c7:f8:fe:c8:ec:5e:b6:7a:3a:17:81:e5:0e:0f:70:
ba:0f:3b:1e:09:c5:e1:5b:62:43:c8:e4:b6:1a:d6:29:08:83:
14:9d:28:d3:6c:7a:e1:6b:b0:bd:00:2a:03:27:b2:3e:58:69:
2c:76:87:50:f6:c0:27:d6:d7:62:65:43:b5:7b:ee:c3:06:f6:
9c:ab:04:51:43:7e:d9:99:e4:72:f0:79:19:f4:0e:36:41:cf:
e4:fc:0b:08:7f:45:61:89:f8:d9:98:58:41:b4:ec:38:dc:2e:
7c:19:0c:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc6/f0xju/S+yATCo1U2OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYzFjODViZjVjNTM0NzFhOTk3ZWY5ZmE5OTlkMGMxNmJl
ODU0NDQwHhcNMjUwODIzMDEwMzI4WhcNMjUwODI0MDEwMzI4WjAzMTEwLwYDVQQD
Eyg1YTg3OGRjZDIxMjk1ZDkxYzdhYjdlMTA2NzFjYTUyNTQ3Yzg3MTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmECYubGhuN+XUHX37OkVK6pOO5W6
I0/kIcaY3hoieXSjZc4eoD1DcNV2kYOXf/gL3Ggx98DYwalVzA5+bGu8+RTCA+62
Mf68D08OsGpeQlTVn8iJ9XTqeNrZ1vZoDNeDJPsQYCnzZvYOvEqXJa5tbe/DtLrg
lCTHVO7KS417tBdFr5a4trXiRJeuPijrT+CC310UfSmgm6kyjIjf8p8hi9NFPtTs
fp1gZ/9n/5VaNj8WNlZGa+dxoE/teDZVj8pl4pWNxFll1FybryBZosGCroytiGgj
EVu5hDX4L2HFjZwxD5XN10JYkgTBufNEJUZaUFei3XigEM17rqhfMZC5fQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFqHjc0hKV2Rx6t+EGccpSVHyHGWMB8GA1UdIwQY
MBaAFJHByFv1xTRxqZfvn6mZ0MFr6FREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2Et
NDUxNDM3NGU2ZmZhLzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2EtNDUxNDM3NGU2ZmZh
LzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApZ6mqFJ9
gFfas0so4gMN5vWTKaofLT+AWFITdqGrDtlaukCbUwQflaYGPbvAh8avQjYXjjms
h3h/e79WYH+ysSO0VoWRXyqh4GGzlN1FpIs7NHJ3ZxlSyQYLRQ9EV7/prGvcOnBc
H01NvsxMTfNZeJeV5ZpGUxT1aevQeEApzY7l1/9xqhgp5CDXA+sYHDZLBXjix/j+
yOxetno6F4HlDg9wug87HgnF4VtiQ8jkthrWKQiDFJ0o02x64WuwvQAqAyeyPlhp
LHaHUPbAJ9bXYmVDtXvuwwb2nKsEUUN+2ZnkcvB5GfQONkHP5PwLCH9FYYn42ZhY
QbTsONwufBkMsQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:31:12 2025 by rpki-client