Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: 04g/DSF6pBN3l1m8eFBRY69B7UeSRZ61sorOpUh93Sw=
Subject key identifier: 2A:B8:5D:E3:B3:FB:D3:6A:28:FA:4A:38:67:53:27:7B:C7:3E:E1:65
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 0197B7454E59E0E550561114DCC98E39FBCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 15B4
Signing time: Sat 28 Jun 2025 16:01:01 +0000
Manifest this update: Sat 28 Jun 2025 16:01:01 +0000
Manifest next update: Sun 29 Jun 2025 16:01:01 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: EGNaPNQRiQBdokHpf9W35q/yEcRfXItcEnQRbOlwrd4=)
2: HUiYQLYoRn-P8-AKIUmGnSk_fUQ.roa (hash: ozdi5qHnRcow/nH1EVH0214AE7vAhAxmdAJcuT+IzE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:4e:59:e0:e5:50:56:11:14:dc:c9:8e:39:fb:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: Jun 28 16:01:01 2025 GMT
Not After : Jun 29 16:01:01 2025 GMT
Subject: CN=2ab85de3b3fbd36a28fa4a386753277bc73ee165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:41:c2:7a:14:a3:63:07:cf:56:32:c5:c2:3c:
73:be:b4:e3:d2:ea:4d:d4:a2:2b:7c:8e:6e:6b:ce:
00:71:14:cb:fd:24:14:f7:a6:82:b5:72:72:ce:5b:
80:6b:97:9a:89:84:e2:54:54:78:ab:68:88:05:30:
ef:83:18:28:8e:2a:34:10:a3:31:65:f1:65:2d:77:
1e:b6:21:25:ec:fa:85:ec:38:02:26:3d:01:43:4b:
7e:3d:bf:84:17:b4:2d:ad:fd:1b:86:05:49:ed:56:
32:32:58:83:e0:08:0a:d2:0c:42:40:1f:36:ff:2e:
09:be:85:65:89:bd:19:0f:6c:4f:b6:48:f2:39:eb:
e8:2d:33:08:b9:c8:e6:af:93:6a:f2:fa:25:0f:4a:
0b:80:e7:fb:23:ae:29:82:81:1b:7a:a7:18:9e:f9:
77:65:0a:c9:3d:81:75:81:44:54:3e:47:9e:26:ad:
d9:84:09:e3:b5:cd:40:7e:cc:28:fe:3b:f6:84:2b:
66:a6:08:b7:dd:59:68:60:b8:df:c9:89:b3:e1:30:
e8:02:25:5c:c9:f8:b7:30:34:4c:95:37:1b:76:fe:
88:51:8a:f6:13:60:a8:e6:19:6d:92:91:f0:72:6c:
24:3f:34:4e:a5:c0:86:4e:35:16:1f:fa:50:10:f4:
6a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B8:5D:E3:B3:FB:D3:6A:28:FA:4A:38:67:53:27:7B:C7:3E:E1:65
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:47:16:b6:e9:66:b4:97:32:a9:cc:ce:35:06:27:3f:ed:7f:
6c:d9:6e:95:0c:85:02:90:6c:d2:98:f0:63:5e:8c:f5:a8:34:
5c:6f:76:a0:36:e3:2f:2d:5a:63:94:ec:26:27:31:f7:c3:fa:
66:93:5a:dc:3a:07:83:d0:42:8b:62:09:59:d3:dd:81:9f:ce:
60:c0:a0:2b:b3:76:24:0a:9d:92:d9:ae:1e:de:a1:87:1e:4d:
46:5b:86:b8:10:4b:4d:f6:c0:be:b6:ef:4c:cd:56:cd:49:d0:
3b:0f:1e:6c:d3:36:27:6f:2c:32:70:0f:d7:95:0c:52:56:4b:
77:8d:b0:3b:2b:07:4a:eb:83:a9:7d:3f:ce:e9:5a:d9:6a:c8:
8c:b0:30:24:6b:bd:da:76:52:f3:72:a0:f3:1a:d7:1c:ab:59:
74:aa:bb:e2:7a:d8:ff:ef:e0:1f:b2:b6:c0:be:53:06:b6:21:
21:b8:af:ac:a4:3f:a5:17:8a:15:99:7a:5c:f0:bb:96:49:1d:
07:a1:e8:f9:26:64:2b:88:bf:09:24:0b:ef:aa:d2:d6:08:57:
0f:70:d5:4e:ea:34:b7:92:83:63:22:72:bd:1b:e8:4a:36:20:
85:f3:7a:a9:73:f4:0e:9c:05:62:dd:7c:56:0f:0d:f8:8a:f7:
af:49:11:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RU5Z4OVQVhEU3MmOOfvMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NDgyOTQ0NDNhZWQxNmQwNmI4NmFmMTRmNWE1ZjBhNTA4
Mzc3NGEwHhcNMjUwNjI4MTYwMTAxWhcNMjUwNjI5MTYwMTAxWjAzMTEwLwYDVQQD
EygyYWI4NWRlM2IzZmJkMzZhMjhmYTRhMzg2NzUzMjc3YmM3M2VlMTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEHCehSjYwfPVjLFwjxzvrTj0upN
1KIrfI5ua84AcRTL/SQU96aCtXJyzluAa5eaiYTiVFR4q2iIBTDvgxgojio0EKMx
ZfFlLXcetiEl7PqF7DgCJj0BQ0t+Pb+EF7Qtrf0bhgVJ7VYyMliD4AgK0gxCQB82
/y4JvoVlib0ZD2xPtkjyOevoLTMIucjmr5Nq8volD0oLgOf7I64pgoEbeqcYnvl3
ZQrJPYF1gURUPkeeJq3ZhAnjtc1Afswo/jv2hCtmpgi33VloYLjfyYmz4TDoAiVc
yfi3MDRMlTcbdv6IUYr2E2Co5hltkpHwcmwkPzROpcCGTjUWH/pQEPRqYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCq4XeOz+9NqKPpKOGdTJ3vHPuFlMB8GA1UdIwQY
MBaAFNZIKURDrtFtBrhq8U9aXwpQg3dKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDkt
ZTU3Y2M4MWY1MjMzLzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDktZTU3Y2M4MWY1MjMz
LzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARkcWtulm
tJcyqczONQYnP+1/bNlulQyFApBs0pjwY16M9ag0XG92oDbjLy1aY5TsJicx98P6
ZpNa3DoHg9BCi2IJWdPdgZ/OYMCgK7N2JAqdktmuHt6hhx5NRluGuBBLTfbAvrbv
TM1WzUnQOw8ebNM2J28sMnAP15UMUlZLd42wOysHSuuDqX0/zula2WrIjLAwJGu9
2nZS83Kg8xrXHKtZdKq74nrY/+/gH7K2wL5TBrYhIbivrKQ/pReKFZl6XPC7lkkd
B6Ho+SZkK4i/CSQL76rS1ghXD3DVTuo0t5KDYyJyvRvoSjYghfN6qXP0DpwFYt18
Vg8N+Ir3r0kRuw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:19:44 2025 by rpki-client