Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
File: K_CgGXhoxtjDTdFrP0TezF5CNvU.mft (raw, json)
Hash identifier: 75vKH4uBr4DJrtMtJ1GBHcAwrelq+mIofsye/eXmSvI=
Subject key identifier: 9F:9D:45:31:08:1B:22:04:51:6E:32:32:4C:01:24:A9:2B:26:77:7E
Authority key identifier: 2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
Certificate issuer: /CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Certificate serial: 0197B88F5AC5BC6B273AA07B577032AE50EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
Manifest number: 0D6E
Signing time: Sat 28 Jun 2025 22:01:32 +0000
Manifest this update: Sat 28 Jun 2025 22:01:32 +0000
Manifest next update: Sun 29 Jun 2025 22:01:32 +0000
Files and hashes: 1: K_CgGXhoxtjDTdFrP0TezF5CNvU.crl (hash: 7GWnLXPAx7eKCNBa68plLTP2LdYOiY2IvHiAINeOe80=)
2: cwewYqqUz_DTY7N101NBNvby5-A.roa (hash: 12Ilbr32JYBfPHCal30nzRY5XUe8GWiDmB7OIucWhgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:5a:c5:bc:6b:27:3a:a0:7b:57:70:32:ae:50:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Validity
Not Before: Jun 28 22:01:32 2025 GMT
Not After : Jun 29 22:01:32 2025 GMT
Subject: CN=9f9d4531081b2204516e32324c0124a92b26777e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b1:80:92:e0:ae:76:5a:fc:f8:c9:68:28:cd:
aa:02:47:ee:45:06:90:fd:fe:5a:e3:29:a1:99:34:
18:23:b9:2a:d9:d0:f7:83:ea:83:9e:a3:a8:7a:2f:
d5:74:b6:fc:ff:40:29:39:e8:ec:03:85:b3:76:93:
66:43:5a:a2:d9:b3:f1:b2:05:a6:14:93:49:73:cc:
50:ad:e6:46:da:9a:49:51:b6:2c:f8:d8:7c:35:22:
70:d5:54:bc:e2:db:ca:a8:cb:84:e9:6d:0a:4c:19:
f9:36:3f:90:6b:32:11:07:77:aa:3a:14:d5:84:67:
35:b0:36:d2:f0:9f:f6:f0:45:9a:b7:ef:1a:ac:f4:
83:58:8a:5f:52:b4:2d:f2:b6:7f:1e:33:b0:ac:47:
7c:4a:e0:33:6b:c1:db:a9:ae:68:ac:14:08:6b:90:
fa:15:62:a6:da:e4:14:96:01:cd:1c:4f:cf:0c:1c:
70:b5:89:67:af:d2:e7:55:e6:bf:5f:3e:bb:ac:ed:
17:ca:55:ef:83:1c:fa:b0:75:e3:58:25:c6:b2:50:
03:1f:40:2c:fd:81:4e:a6:3d:a7:f3:ba:9d:b8:6d:
3e:56:40:65:b4:03:32:a5:e3:c4:db:32:0a:4e:29:
c5:63:e8:1c:2e:78:57:81:3f:44:9b:cd:40:6f:b5:
bb:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9D:45:31:08:1B:22:04:51:6E:32:32:4C:01:24:A9:2B:26:77:7E
X509v3 Authority Key Identifier:
keyid:2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:ed:16:31:af:1e:4b:c9:3f:bd:7c:86:82:b6:e0:a1:89:b3:
ae:05:12:37:93:2b:4c:04:a7:51:5e:19:e9:38:04:ed:85:21:
5a:5b:88:dc:8e:00:66:47:b9:da:c7:72:f0:79:68:cf:87:bd:
62:69:48:8c:28:a0:ff:bb:ff:27:0f:b3:dd:33:5a:bf:c3:67:
43:4a:8b:9b:ad:a5:5b:da:30:16:21:65:ea:fa:a6:da:4b:c9:
77:9f:2b:dd:dd:54:68:85:0f:ae:3d:db:ae:1d:42:c8:f1:2a:
2e:ba:50:6b:50:c1:16:52:4f:65:88:8b:4c:62:43:f5:95:5c:
86:25:a1:b4:fc:72:12:dd:3f:a8:de:fb:52:c3:6c:d3:74:0f:
1e:ad:4a:cc:c2:0e:76:38:8b:97:91:30:9a:7d:63:81:f3:8a:
3e:74:c6:6f:20:1a:f5:11:f4:84:e5:bb:37:7f:bf:8b:9a:34:
2c:de:0a:1c:85:3c:fb:8b:21:29:ec:13:e1:7f:bf:1d:ac:39:
12:0d:a2:b1:73:9b:0f:7c:01:33:d1:87:bc:28:7b:73:d6:2b:
2c:29:a2:72:7c:df:5c:ce:1e:71:1d:74:0f:53:fa:cd:67:bc:
62:4f:1a:ff:79:28:32:ba:0c:1e:7a:0f:63:c1:7c:68:34:ec:
d6:7d:ce:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4j1rFvGsnOqB7V3AyrlDvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiZjBhMDE5Nzg2OGM2ZDhjMzRkZDE2YjNmNDRkZWNjNWU0
MjM2ZjUwHhcNMjUwNjI4MjIwMTMyWhcNMjUwNjI5MjIwMTMyWjAzMTEwLwYDVQQD
Eyg5ZjlkNDUzMTA4MWIyMjA0NTE2ZTMyMzI0YzAxMjRhOTJiMjY3NzdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybGAkuCudlr8+MloKM2qAkfuRQaQ
/f5a4ymhmTQYI7kq2dD3g+qDnqOoei/VdLb8/0ApOejsA4WzdpNmQ1qi2bPxsgWm
FJNJc8xQreZG2ppJUbYs+Nh8NSJw1VS84tvKqMuE6W0KTBn5Nj+QazIRB3eqOhTV
hGc1sDbS8J/28EWat+8arPSDWIpfUrQt8rZ/HjOwrEd8SuAza8Hbqa5orBQIa5D6
FWKm2uQUlgHNHE/PDBxwtYlnr9LnVea/Xz67rO0XylXvgxz6sHXjWCXGslADH0As
/YFOpj2n87qduG0+VkBltAMypePE2zIKTinFY+gcLnhXgT9Em81Ab7W7RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ+dRTEIGyIEUW4yMkwBJKkrJnd+MB8GA1UdIwQY
MBaAFCvwoBl4aMbYw03Raz9E3sxeQjb1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80MGQyMjAtNjIxZC00NmZiLWFjOWMt
NDhiODM2NmZmMjNlLzEvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80MGQyMjAtNjIxZC00NmZiLWFjOWMtNDhiODM2NmZmMjNl
LzEvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMe0WMa8e
S8k/vXyGgrbgoYmzrgUSN5MrTASnUV4Z6TgE7YUhWluI3I4AZke52sdy8Hloz4e9
YmlIjCig/7v/Jw+z3TNav8NnQ0qLm62lW9owFiFl6vqm2kvJd58r3d1UaIUPrj3b
rh1CyPEqLrpQa1DBFlJPZYiLTGJD9ZVchiWhtPxyEt0/qN77UsNs03QPHq1KzMIO
djiLl5Ewmn1jgfOKPnTGbyAa9RH0hOW7N3+/i5o0LN4KHIU8+4shKewT4X+/Haw5
Eg2isXObD3wBM9GHvCh7c9YrLCmicnzfXM4ecR10D1P6zWe8Yk8a/3koMroMHnoP
Y8F8aDTs1n3OPw==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:40:26 2025 by rpki-client