Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
File: knEFydH7BpBVSXH0ZMoh9KRcEGo.mft (raw, json)
Hash identifier: d7LgQ8Is0JQGnDXP1O+skBM9HGtX93y39xshJPFuCug=
Subject key identifier: C4:51:6E:F6:0C:4F:BD:AB:01:55:02:2D:8D:9B:EB:5C:73:F3:57:FD
Authority key identifier: 92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
Certificate issuer: /CN=927105c9d1fb0690554971f464ca21f4a45c106a
Certificate serial: 0197B7EAB724CD3CB248C8AD477D2855D4C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
Manifest number: 0C8C
Signing time: Sat 28 Jun 2025 19:01:42 +0000
Manifest this update: Sat 28 Jun 2025 19:01:42 +0000
Manifest next update: Sun 29 Jun 2025 19:01:42 +0000
Files and hashes: 1: ipQ4XqSuTpQi-re2ZW_sK3VHNnQ.roa (hash: poFgPveu8J3ZCztPp1XhAex84n6Kit4aGgJE9uzT+QM=)
2: knEFydH7BpBVSXH0ZMoh9KRcEGo.crl (hash: YCUW1XIWNIRNTydhr5VxMN7Ky7wODnG27Y/oltrRA2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:b7:24:cd:3c:b2:48:c8:ad:47:7d:28:55:d4:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927105c9d1fb0690554971f464ca21f4a45c106a
Validity
Not Before: Jun 28 19:01:42 2025 GMT
Not After : Jun 29 19:01:42 2025 GMT
Subject: CN=c4516ef60c4fbdab0155022d8d9beb5c73f357fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d3:b2:2b:14:e1:3e:b1:7f:0d:bc:2a:81:21:
c8:3d:cf:23:c9:17:2f:3e:8d:ef:81:b5:1c:65:b5:
36:07:7f:78:16:e1:1b:83:64:f9:58:4b:62:93:bc:
19:e4:21:3f:60:c1:43:7c:3f:a2:92:8c:65:33:f1:
2f:8d:0d:35:98:cc:f4:2c:c9:5a:68:34:b4:24:10:
9c:54:1e:1e:72:eb:10:c5:24:25:e9:40:63:cc:b2:
90:60:69:50:ad:02:01:ee:45:6b:4c:65:ae:1f:d9:
9c:0b:ea:e5:a9:10:85:44:34:fb:2f:4c:b7:f2:d7:
90:0c:ce:c3:2e:5b:6d:3a:b5:c5:ce:2d:06:c6:d2:
f3:98:9a:ba:23:74:fc:25:e8:b0:c5:60:9f:e9:af:
39:e4:43:46:2b:8b:dc:fb:16:b7:3f:22:5c:9f:d0:
dc:df:2d:5e:9f:9a:43:27:3b:6a:7a:48:c5:72:5c:
dd:9c:17:f7:20:89:3a:40:bd:c8:f4:c7:42:20:3b:
4e:d9:55:da:4d:61:16:4f:c3:4a:e9:f9:d1:da:80:
3f:6c:3d:aa:ec:98:4d:87:f6:09:a1:b5:95:26:b3:
84:92:25:05:3c:b7:27:a6:23:79:92:66:d3:12:37:
22:f0:30:05:b8:d6:73:55:8c:21:42:1a:c2:6b:f6:
1b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:51:6E:F6:0C:4F:BD:AB:01:55:02:2D:8D:9B:EB:5C:73:F3:57:FD
X509v3 Authority Key Identifier:
keyid:92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:9f:89:42:a4:33:f3:a7:29:68:83:87:dc:24:4f:15:58:3c:
7a:07:af:e5:0c:d2:ec:4d:ac:95:eb:48:38:49:1f:33:b4:b0:
5d:60:e3:4e:d5:e2:de:7f:e0:45:ac:e4:d2:5f:ed:57:d3:74:
05:ce:41:32:05:52:9c:31:14:f4:43:8f:8e:53:b9:93:bc:7f:
df:3e:5f:44:45:a6:6b:02:45:6c:8b:30:e2:c8:2f:04:33:ef:
11:ad:a0:31:80:4b:08:e7:6c:73:32:18:be:22:cb:51:f1:a4:
ab:49:f5:75:41:ea:fb:87:52:1a:5f:61:44:75:42:a0:cc:1b:
e4:87:aa:5a:01:d7:a0:21:06:f7:ee:1c:a8:3e:17:07:18:b2:
99:00:b8:ca:24:b1:c0:a4:01:59:4b:c6:ba:16:78:4a:9b:70:
cf:68:9b:0c:bb:6b:cb:38:7f:ab:ce:02:36:48:93:96:bc:44:
53:9e:eb:48:10:16:ea:67:b3:ab:1a:be:74:0e:33:3b:12:04:
41:d7:26:eb:7a:f5:9c:8d:39:22:fd:d3:57:69:0c:2e:86:c4:
bd:52:24:6d:71:3e:a8:7a:83:63:94:00:47:4b:fa:c1:6a:f9:
f7:44:fa:47:9b:5e:ad:8b:2c:ac:b2:a8:ad:33:21:a7:2c:6e:
87:d9:ce:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36rckzTyySMitR30oVdTDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNzEwNWM5ZDFmYjA2OTA1NTQ5NzFmNDY0Y2EyMWY0YTQ1
YzEwNmEwHhcNMjUwNjI4MTkwMTQyWhcNMjUwNjI5MTkwMTQyWjAzMTEwLwYDVQQD
EyhjNDUxNmVmNjBjNGZiZGFiMDE1NTAyMmQ4ZDliZWI1YzczZjM1N2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA49OyKxThPrF/DbwqgSHIPc8jyRcv
Po3vgbUcZbU2B394FuEbg2T5WEtik7wZ5CE/YMFDfD+ikoxlM/EvjQ01mMz0LMla
aDS0JBCcVB4ecusQxSQl6UBjzLKQYGlQrQIB7kVrTGWuH9mcC+rlqRCFRDT7L0y3
8teQDM7DLlttOrXFzi0GxtLzmJq6I3T8JeiwxWCf6a855ENGK4vc+xa3PyJcn9Dc
3y1en5pDJztqekjFclzdnBf3IIk6QL3I9MdCIDtO2VXaTWEWT8NK6fnR2oA/bD2q
7JhNh/YJobWVJrOEkiUFPLcnpiN5kmbTEjci8DAFuNZzVYwhQhrCa/YbtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMRRbvYMT72rAVUCLY2b61xz81f9MB8GA1UdIwQY
MBaAFJJxBcnR+waQVUlx9GTKIfSkXBBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wYzlkODAtNDNhNS00NTNhLWFkMjUt
NGVlOTJlZTFlMGNkLzEva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wYzlkODAtNDNhNS00NTNhLWFkMjUtNGVlOTJlZTFlMGNk
LzEva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVp+JQqQz
86cpaIOH3CRPFVg8egev5QzS7E2sletIOEkfM7SwXWDjTtXi3n/gRazk0l/tV9N0
Bc5BMgVSnDEU9EOPjlO5k7x/3z5fREWmawJFbIsw4sgvBDPvEa2gMYBLCOdsczIY
viLLUfGkq0n1dUHq+4dSGl9hRHVCoMwb5IeqWgHXoCEG9+4cqD4XBxiymQC4yiSx
wKQBWUvGuhZ4Sptwz2ibDLtryzh/q84CNkiTlrxEU57rSBAW6mezqxq+dA4zOxIE
Qdcm63r1nI05Iv3TV2kMLobEvVIkbXE+qHqDY5QAR0v6wWr590T6R5terYssrLKo
rTMhpyxuh9nONQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 22:42:22 2025 by rpki-client