Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
File: kAhyNvFhxccF73Pf6eXjmG5xJsg.mft (raw, json)
Hash identifier: T7Er00OMK4k7pdboTu1TqfWVuRckSaAuAcWUTdHfsDs=
Subject key identifier: BE:8B:DB:12:36:5A:E1:BF:4F:55:A2:46:92:C9:2F:84:C6:16:33:BF
Authority key identifier: 90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
Certificate issuer: /CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Certificate serial: 0198D660266755B998BCB7DAF3C68FF44127
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
Manifest number: 0605
Signing time: Sat 23 Aug 2025 10:01:22 +0000
Manifest this update: Sat 23 Aug 2025 10:01:22 +0000
Manifest next update: Sun 24 Aug 2025 10:01:22 +0000
Files and hashes: 1: ilmUYJP9An2tvy3PssJlCv8HfSc.roa (hash: 1qXew5Oe7BdIwNw0qvNlQOP+TeLMGt2S2brGQ7Jg7lc=)
2: kAhyNvFhxccF73Pf6eXjmG5xJsg.crl (hash: amrNLzMc3Tn1swQ+vFdted3xxtQC0rqWWqUhV4tbWpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:26:67:55:b9:98:bc:b7:da:f3:c6:8f:f4:41:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Validity
Not Before: Aug 23 10:01:22 2025 GMT
Not After : Aug 24 10:01:22 2025 GMT
Subject: CN=be8bdb12365ae1bf4f55a24692c92f84c61633bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6f:a1:1c:d1:4b:2b:53:5e:a3:49:9b:bb:25:
e0:cf:2a:ff:20:d6:cc:90:2e:55:28:09:5d:47:ac:
d0:92:74:3d:ce:3f:ad:98:8c:be:73:a5:e7:8a:62:
57:35:df:6a:7e:bd:9b:2d:c6:0f:aa:3c:bc:8b:2e:
df:59:41:6a:f6:79:05:5d:e0:76:cd:bb:6d:da:40:
38:b8:2c:27:26:a3:f0:1a:23:5f:42:27:1c:eb:a4:
8a:ff:92:cb:3d:73:c3:01:73:97:4e:8d:43:e8:b2:
e7:16:55:f8:fe:89:eb:f7:a1:a3:12:99:37:34:5f:
76:14:50:c2:75:48:9b:34:7f:aa:c9:e7:91:6c:3d:
46:ac:77:3c:ce:e1:a2:82:ce:f5:d5:10:fb:8e:c6:
95:ed:6f:15:bd:e6:0d:a2:d8:9e:fb:cd:73:c9:4f:
bd:30:65:cd:e9:45:ab:22:79:13:8f:4f:17:0a:63:
12:31:47:6b:7a:ad:bc:a7:06:5f:ec:b4:78:cd:3f:
bd:2b:df:a1:52:a2:42:f9:6b:0b:b8:d4:77:c7:6c:
90:b2:f8:ee:92:d6:6b:7a:e3:4a:57:fd:3c:5a:aa:
57:88:11:b1:27:38:05:83:6f:96:77:01:dd:dc:02:
da:4d:da:ce:ab:85:44:5f:12:10:a5:c4:6b:51:9a:
5d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8B:DB:12:36:5A:E1:BF:4F:55:A2:46:92:C9:2F:84:C6:16:33:BF
X509v3 Authority Key Identifier:
keyid:90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:fe:1c:3e:15:6d:4f:2d:1c:63:52:b6:17:7b:e2:b6:61:4e:
de:70:ea:e0:74:8e:36:a3:af:20:e1:13:22:56:60:8d:0b:81:
ee:c6:a2:4a:3a:29:bc:72:ec:6b:d3:c3:e1:1e:85:42:5a:09:
66:18:50:24:8f:bf:3b:11:cf:06:c0:d9:88:cc:cb:c7:3a:3c:
69:10:5b:27:89:68:62:f9:2a:aa:68:55:0c:8f:e5:47:7d:25:
fe:f2:0b:08:03:b2:5a:81:b6:1e:bc:94:89:26:bc:dc:a4:8b:
e9:98:0d:30:6e:52:9a:6d:58:84:fd:ac:54:58:c1:c9:a3:1c:
d4:25:2a:4b:2b:90:44:fe:3c:e1:68:be:d7:4f:95:94:92:98:
21:ff:16:01:f8:a4:95:e3:66:4f:7b:de:dd:92:22:97:4e:cd:
56:61:fc:ed:cc:61:85:c4:bf:d3:16:41:dd:4e:a4:61:e2:b6:
08:62:7c:5e:5d:e8:00:96:a4:53:de:6a:55:ee:27:ce:06:dd:
3f:2c:66:b1:01:6a:5c:f4:97:b7:af:d6:c9:2c:bf:e5:ea:88:
da:66:6a:37:f4:33:33:93:a4:f2:d2:48:8b:13:3d:21:ac:ae:
37:8a:9c:e3:ff:c8:e9:b0:8e:8f:4d:ed:a8:76:ac:71:a9:d3:
ea:71:cd:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYCZnVbmYvLfa88aP9EEnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwMDg3MjM2ZjE2MWM1YzcwNWVmNzNkZmU5ZTVlMzk4NmU3
MTI2YzgwHhcNMjUwODIzMTAwMTIyWhcNMjUwODI0MTAwMTIyWjAzMTEwLwYDVQQD
EyhiZThiZGIxMjM2NWFlMWJmNGY1NWEyNDY5MmM5MmY4NGM2MTYzM2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlm+hHNFLK1Neo0mbuyXgzyr/INbM
kC5VKAldR6zQknQ9zj+tmIy+c6XnimJXNd9qfr2bLcYPqjy8iy7fWUFq9nkFXeB2
zbtt2kA4uCwnJqPwGiNfQicc66SK/5LLPXPDAXOXTo1D6LLnFlX4/onr96GjEpk3
NF92FFDCdUibNH+qyeeRbD1GrHc8zuGigs711RD7jsaV7W8VveYNotie+81zyU+9
MGXN6UWrInkTj08XCmMSMUdreq28pwZf7LR4zT+9K9+hUqJC+WsLuNR3x2yQsvju
ktZreuNKV/08WqpXiBGxJzgFg2+WdwHd3ALaTdrOq4VEXxIQpcRrUZpd4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL6L2xI2WuG/T1WiRpLJL4TGFjO/MB8GA1UdIwQY
MBaAFJAIcjbxYcXHBe9z3+nl45hucSbIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0FoeU52Rmh4Y2NGNzNQZjZlWGptRzV4SnNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9kZjgzM2ItYzg3YS00MWZjLWJhMmUt
ZTUzYzVlYzVkNDAyLzEva0FoeU52Rmh4Y2NGNzNQZjZlWGptRzV4SnNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9kZjgzM2ItYzg3YS00MWZjLWJhMmUtZTUzYzVlYzVkNDAy
LzEva0FoeU52Rmh4Y2NGNzNQZjZlWGptRzV4SnNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT/4cPhVt
Ty0cY1K2F3vitmFO3nDq4HSONqOvIOETIlZgjQuB7saiSjopvHLsa9PD4R6FQloJ
ZhhQJI+/OxHPBsDZiMzLxzo8aRBbJ4loYvkqqmhVDI/lR30l/vILCAOyWoG2HryU
iSa83KSL6ZgNMG5Smm1YhP2sVFjByaMc1CUqSyuQRP484Wi+10+VlJKYIf8WAfik
leNmT3ve3ZIil07NVmH87cxhhcS/0xZB3U6kYeK2CGJ8Xl3oAJakU95qVe4nzgbd
PyxmsQFqXPSXt6/WySy/5eqI2mZqN/QzM5Ok8tJIixM9IayuN4qc4//I6bCOj03t
qHascanT6nHNWA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 17:23:21 2025 by rpki-client