Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
File: kN_zHRsERNQgTeFYTQDd-WjQsBI.mft (raw, json)
Hash identifier: 6KarrG8HoazxlzK0bV/eKd9Pl0/eLwIDwr31vwog4Fo=
Subject key identifier: AD:DF:2A:0E:67:11:F2:52:4E:07:34:E6:FA:37:AD:38:6C:10:10:84
Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Certificate serial: 0198D4DFF021E58C5A1E38D4197774948C5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
Manifest number: 0ABE
Signing time: Sat 23 Aug 2025 03:01:42 +0000
Manifest this update: Sat 23 Aug 2025 03:01:42 +0000
Manifest next update: Sun 24 Aug 2025 03:01:42 +0000
Files and hashes: 1: fhqhrm_dY2gYWI5oCp04pibtM_o.roa (hash: s8FH9ikZ8P5QdYR5uDaZwWuPJb6gYAb8hHHjeN9RXKc=)
2: kN_zHRsERNQgTeFYTQDd-WjQsBI.crl (hash: d9vQj/gbfNW1/WnrLGFBIjEPmJx1/4qX4p9wZQ0TN78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:df:f0:21:e5:8c:5a:1e:38:d4:19:77:74:94:8c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Validity
Not Before: Aug 23 03:01:42 2025 GMT
Not After : Aug 24 03:01:42 2025 GMT
Subject: CN=addf2a0e6711f2524e0734e6fa37ad386c101084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a0:be:43:01:c3:e2:94:a9:83:5f:8a:23:85:
9a:20:1c:12:60:9b:51:a3:c4:13:b3:da:74:b1:fb:
10:6a:e6:78:37:6c:ee:97:3b:f3:a9:e7:f6:d0:eb:
3f:e6:73:a3:0c:67:ec:98:cc:67:48:3c:54:86:60:
a5:e6:3f:42:33:4f:2a:e8:5f:18:a7:77:58:8e:a6:
e2:40:f3:4f:76:da:c4:af:bc:dc:90:18:e2:0c:bf:
93:ce:0e:61:d0:21:ea:ad:b0:4e:ee:f6:13:5b:14:
12:46:f0:02:08:de:a7:91:aa:96:ba:17:67:d2:b7:
07:40:3c:c2:e5:21:e1:d3:d1:dc:f2:78:79:1e:4d:
cf:d9:70:59:98:c3:ef:84:d6:1c:63:a4:70:33:a8:
35:3d:ba:21:9d:e7:67:92:85:a9:6a:e0:93:b3:07:
65:b4:52:f7:f3:9a:41:d6:7d:21:39:2e:94:cf:5d:
f0:b0:a7:ce:17:ab:7d:72:ec:94:63:c8:d8:e4:ba:
7e:ca:bd:b9:80:cc:ab:01:44:24:c1:fd:78:22:36:
59:04:6e:03:92:f0:eb:42:a8:89:bf:29:e2:e7:af:
cd:21:f3:17:a5:83:28:af:e2:1a:09:b7:0a:41:b8:
b1:0d:f4:68:84:a8:e0:96:40:8b:53:82:ba:53:3f:
f7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:DF:2A:0E:67:11:F2:52:4E:07:34:E6:FA:37:AD:38:6C:10:10:84
X509v3 Authority Key Identifier:
keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:c9:d0:74:ee:01:d4:c9:13:8e:b1:b2:a0:5d:4a:3f:d3:fc:
06:0f:b3:36:3f:be:ab:34:6e:e7:af:a2:b9:95:01:91:6f:67:
8b:8f:62:60:54:44:09:d2:ef:ba:f9:33:c2:6d:d4:0b:37:c3:
43:a2:36:35:b1:bf:4b:d5:b5:15:8d:21:4e:98:f3:96:51:2a:
1b:a5:b9:9d:9c:1e:b5:cf:11:12:08:d8:9a:6a:38:ba:cd:fc:
01:8d:06:9e:2a:f8:3e:11:69:27:a9:6f:f6:bc:04:4d:12:b4:
47:59:17:68:14:83:3e:bc:b5:8f:2f:b0:92:e7:6b:17:91:dc:
dc:1c:82:aa:83:b6:da:ac:14:23:f1:57:d6:4d:07:62:d0:e9:
38:e1:54:4a:7c:19:a6:58:d7:c9:bc:dc:88:ff:5c:f7:6d:a9:
b0:4c:48:3f:3c:3b:4e:0d:1e:57:41:6c:27:fa:cb:39:d0:f3:
c1:c6:2a:fa:f1:e6:cd:0b:1a:b6:95:a7:78:19:35:3e:4f:70:
2e:48:d8:0a:cc:48:85:16:0d:2d:e3:84:e4:4f:81:41:69:dd:
c5:3f:b6:9a:6c:6c:b0:10:fa:4d:bc:a7:94:2a:1d:c4:00:84:
76:a4:e0:1c:08:74:e5:ec:12:8b:7c:24:d3:99:77:52:14:54:
8e:df:fa:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU3/Ah5YxaHjjUGXd0lIxcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwZGZmMzFkMWIwNDQ0ZDQyMDRkZTE1ODRkMDBkZGY5Njhk
MGIwMTIwHhcNMjUwODIzMDMwMTQyWhcNMjUwODI0MDMwMTQyWjAzMTEwLwYDVQQD
EyhhZGRmMmEwZTY3MTFmMjUyNGUwNzM0ZTZmYTM3YWQzODZjMTAxMDg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKC+QwHD4pSpg1+KI4WaIBwSYJtR
o8QTs9p0sfsQauZ4N2zulzvzqef20Os/5nOjDGfsmMxnSDxUhmCl5j9CM08q6F8Y
p3dYjqbiQPNPdtrEr7zckBjiDL+Tzg5h0CHqrbBO7vYTWxQSRvACCN6nkaqWuhdn
0rcHQDzC5SHh09Hc8nh5Hk3P2XBZmMPvhNYcY6RwM6g1PbohnednkoWpauCTswdl
tFL385pB1n0hOS6Uz13wsKfOF6t9cuyUY8jY5Lp+yr25gMyrAUQkwf14IjZZBG4D
kvDrQqiJvyni56/NIfMXpYMor+IaCbcKQbixDfRohKjglkCLU4K6Uz/3MwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK3fKg5nEfJSTgc05vo3rThsEBCEMB8GA1UdIwQY
MBaAFJDf8x0bBETUIE3hWE0A3flo0LASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC85OWEzY2EtN2U1Yy00OGQ0LWI5NzUt
OWYyMTRkMWJhOTM0LzEva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC85OWEzY2EtN2U1Yy00OGQ0LWI5NzUtOWYyMTRkMWJhOTM0
LzEva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcMnQdO4B
1MkTjrGyoF1KP9P8Bg+zNj++qzRu56+iuZUBkW9ni49iYFRECdLvuvkzwm3UCzfD
Q6I2NbG/S9W1FY0hTpjzllEqG6W5nZwetc8REgjYmmo4us38AY0Gnir4PhFpJ6lv
9rwETRK0R1kXaBSDPry1jy+wkudrF5Hc3ByCqoO22qwUI/FX1k0HYtDpOOFUSnwZ
pljXybzciP9c922psExIPzw7Tg0eV0FsJ/rLOdDzwcYq+vHmzQsatpWneBk1Pk9w
LkjYCsxIhRYNLeOE5E+BQWndxT+2mmxssBD6TbynlCodxACEdqTgHAh05ewSi3wk
05l3UhRUjt/6Fg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:26:47 2025 by rpki-client