Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
File: KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft (raw, json)
Hash identifier: T3D0LcAyQgqCbAGOlHhSoUWZPW8iEF/TcHwqSiACfFw=
Subject key identifier: DD:1A:34:80:20:A4:F7:E6:3C:97:23:1A:B4:32:60:D3:8B:13:89:47
Authority key identifier: 28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
Certificate issuer: /CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Certificate serial: 0198D65F96A7E159A6ECD5589535D7AAC34C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
Manifest number: 08C7
Signing time: Sat 23 Aug 2025 10:00:45 +0000
Manifest this update: Sat 23 Aug 2025 10:00:45 +0000
Manifest next update: Sun 24 Aug 2025 10:00:45 +0000
Files and hashes: 1: Ep5Q_paEMkoQ8JMNVQev_VtcdmY.roa (hash: Bu1EiGDnBTDp8uoDAPAoyCI9ib5FJjnia2bO4NVERCs=)
2: KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl (hash: HONcYhVWIP6+GbjFbzc72rHTDIytK9MxbqSFbIrQV0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:96:a7:e1:59:a6:ec:d5:58:95:35:d7:aa:c3:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Validity
Not Before: Aug 23 10:00:45 2025 GMT
Not After : Aug 24 10:00:45 2025 GMT
Subject: CN=dd1a348020a4f7e63c97231ab43260d38b138947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:73:88:6b:2d:62:46:0a:f9:c1:96:52:c6:17:
99:92:04:93:eb:d6:f2:2a:06:9b:ac:70:a8:b6:71:
d9:33:b8:d0:ab:d1:d3:cc:74:2a:ff:de:ef:17:d4:
ce:7b:9a:f9:c3:d7:48:d1:63:b8:ac:ea:6c:20:53:
e9:b7:c5:af:a7:eb:bb:7e:42:58:44:d9:4d:90:d4:
56:7f:c9:95:96:0a:95:73:b0:b1:e9:e4:bd:ab:73:
64:60:5f:5e:2d:2a:a4:16:df:0f:e1:10:eb:af:7b:
db:10:d5:d0:35:3d:01:f2:ab:fc:99:e8:e8:a4:13:
70:ed:2e:b2:2a:02:61:f4:f6:2f:c2:19:e5:8c:1a:
f2:a4:24:8e:47:82:79:06:26:d0:d5:8a:3b:8d:f8:
57:ce:c5:a4:ba:c3:3b:2d:3f:b2:f7:fd:0a:54:9c:
2b:c7:68:50:51:e7:c7:56:31:8c:51:99:20:83:2b:
e1:a3:15:9e:d2:4b:a7:36:91:bf:a1:7b:0a:61:d8:
87:ee:b0:c4:82:5e:09:7c:8f:67:81:b5:23:57:d8:
c9:a4:83:ab:48:45:74:0c:b7:4b:e9:91:27:be:3c:
f7:5b:f3:d2:f5:14:ed:6d:cc:23:4c:9c:12:98:ab:
26:f9:c6:c4:75:3b:3e:65:2a:92:64:81:e8:b8:d7:
b5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1A:34:80:20:A4:F7:E6:3C:97:23:1A:B4:32:60:D3:8B:13:89:47
X509v3 Authority Key Identifier:
keyid:28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:b1:30:60:17:e1:ae:7a:e6:d3:e6:53:4a:8e:7d:24:f3:ad:
ca:99:73:3b:85:72:d4:2c:8b:19:19:8e:8f:05:13:ea:15:7d:
9f:6e:65:10:fe:35:a3:70:dc:46:fa:1b:b8:ec:c6:e1:f1:f4:
d8:84:3c:50:b4:3e:21:e7:2a:4a:61:40:3e:b2:d2:db:8d:47:
e9:24:26:d5:7c:f7:bb:69:cc:34:75:b8:79:65:0e:06:45:b0:
08:ed:97:39:7c:3a:99:48:1f:ca:53:3c:39:2a:6e:79:9b:5f:
97:a3:15:e1:c3:7b:8a:26:83:37:9f:d1:10:6a:47:be:26:6c:
90:55:fc:63:b1:8d:af:68:58:70:50:8d:cd:44:d4:4a:0e:a5:
12:49:c5:05:79:ad:4a:22:af:3b:7d:83:85:8e:2e:f3:10:ae:
08:cf:ed:e2:06:6f:46:3f:5f:51:e9:02:e6:d2:67:d0:2b:87:
7d:ce:7d:3b:e2:c7:a6:74:a3:fa:6e:33:35:94:cc:7c:d0:f0:
6b:8c:4f:63:4a:10:1e:26:f2:ed:1e:b9:8c:33:1f:58:d1:dc:
71:ce:86:b1:e2:99:35:5e:6c:01:43:06:f5:b6:c2:8c:48:12:
4c:6e:38:0a:98:65:d1:72:01:82:35:07:85:1a:13:5a:d5:6e:
79:9e:4c:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX5an4Vmm7NVYlTXXqsNMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MjAzZGVjZDA4YmQ0N2Q4YTkxNjJhNmUxNzQyZjNjNTNl
YTNjNzQwHhcNMjUwODIzMTAwMDQ1WhcNMjUwODI0MTAwMDQ1WjAzMTEwLwYDVQQD
EyhkZDFhMzQ4MDIwYTRmN2U2M2M5NzIzMWFiNDMyNjBkMzhiMTM4OTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXOIay1iRgr5wZZSxheZkgST69by
KgabrHCotnHZM7jQq9HTzHQq/97vF9TOe5r5w9dI0WO4rOpsIFPpt8Wvp+u7fkJY
RNlNkNRWf8mVlgqVc7Cx6eS9q3NkYF9eLSqkFt8P4RDrr3vbENXQNT0B8qv8mejo
pBNw7S6yKgJh9PYvwhnljBrypCSOR4J5BibQ1Yo7jfhXzsWkusM7LT+y9/0KVJwr
x2hQUefHVjGMUZkggyvhoxWe0kunNpG/oXsKYdiH7rDEgl4JfI9ngbUjV9jJpIOr
SEV0DLdL6ZEnvjz3W/PS9RTtbcwjTJwSmKsm+cbEdTs+ZSqSZIHouNe1dQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN0aNIAgpPfmPJcjGrQyYNOLE4lHMB8GA1UdIwQY
MBaAFCggPezQi9R9ipFipuF0LzxT6jx0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0NBOTdOQ0wxSDJLa1dLbTRYUXZQRlBxUEhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9jOTBhMzQtMGFmZC00OWI5LWJiZDYt
YTI5N2MxNDA4MDg1LzEvS0NBOTdOQ0wxSDJLa1dLbTRYUXZQRlBxUEhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9jOTBhMzQtMGFmZC00OWI5LWJiZDYtYTI5N2MxNDA4MDg1
LzEvS0NBOTdOQ0wxSDJLa1dLbTRYUXZQRlBxUEhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT7EwYBfh
rnrm0+ZTSo59JPOtyplzO4Vy1CyLGRmOjwUT6hV9n25lEP41o3DcRvobuOzG4fH0
2IQ8ULQ+IecqSmFAPrLS241H6SQm1Xz3u2nMNHW4eWUOBkWwCO2XOXw6mUgfylM8
OSpueZtfl6MV4cN7iiaDN5/REGpHviZskFX8Y7GNr2hYcFCNzUTUSg6lEknFBXmt
SiKvO32DhY4u8xCuCM/t4gZvRj9fUekC5tJn0CuHfc59O+LHpnSj+m4zNZTMfNDw
a4xPY0oQHiby7R65jDMfWNHccc6GseKZNV5sAUMG9bbCjEgSTG44Cphl0XIBgjUH
hRoTWtVueZ5MyQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:25:40 2025 by rpki-client