Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
File: K_CgGXhoxtjDTdFrP0TezF5CNvU.mft (raw, json)
Hash identifier: j+r47jXvlu97A3tnhjOgx78LNfOqbunFwhj2Y4YLf44=
Subject key identifier: F7:89:A2:11:A6:A3:DE:9D:FC:2C:0A:B1:13:BD:F9:44:BA:E6:A4:1F
Authority key identifier: 2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
Certificate issuer: /CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Certificate serial: 0198D851CA15A5FC7DCB6142305FEFDD9686
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
Manifest number: 0E03
Signing time: Sat 23 Aug 2025 19:04:55 +0000
Manifest this update: Sat 23 Aug 2025 19:04:55 +0000
Manifest next update: Sun 24 Aug 2025 19:04:55 +0000
Files and hashes: 1: K_CgGXhoxtjDTdFrP0TezF5CNvU.crl (hash: yoJqtDHK+MqxSVJMnDckSIVhKy1xnLKDu3vKosjmsfk=)
2: cwewYqqUz_DTY7N101NBNvby5-A.roa (hash: 12Ilbr32JYBfPHCal30nzRY5XUe8GWiDmB7OIucWhgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 17:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d8:51:ca:15:a5:fc:7d:cb:61:42:30:5f:ef:dd:96:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Validity
Not Before: Aug 23 19:04:55 2025 GMT
Not After : Aug 24 19:04:55 2025 GMT
Subject: CN=f789a211a6a3de9dfc2c0ab113bdf944bae6a41f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7f:5a:1b:f3:ce:b3:c4:1f:fe:76:bc:a8:d4:
9e:9a:29:5d:f2:99:a3:ec:23:58:53:0c:7a:eb:fd:
74:21:f3:e1:d9:58:0e:5b:7d:7e:53:b8:dc:1a:14:
32:3c:9b:73:86:ff:1d:83:69:d1:d7:c7:0b:b5:41:
44:88:da:53:e6:e7:81:85:5c:ed:b2:76:c1:82:59:
45:94:e8:73:e8:ab:71:51:1a:da:99:aa:1c:6b:b6:
a4:cb:38:b6:aa:65:84:e2:11:5d:35:91:6c:6d:39:
59:9a:f9:3f:8e:01:08:a5:c6:70:e5:bb:12:92:4e:
2f:68:a9:92:76:ce:9f:63:68:d2:19:a0:07:2a:c7:
b9:ee:e9:e1:08:23:c9:aa:92:5f:33:42:4b:1d:ad:
27:36:a5:b9:da:b3:94:56:d4:25:c6:0e:a5:ba:79:
38:62:26:94:79:f1:dd:54:5b:61:a4:9f:86:1e:5a:
89:b3:da:ec:4d:45:6d:a2:5d:94:7c:d6:c5:ae:b5:
30:81:1f:f8:40:59:2b:29:4b:0d:50:bc:50:36:15:
47:cb:51:3f:a4:4c:fe:34:c3:dc:c1:46:a7:90:47:
b5:ee:78:54:40:b3:90:05:e4:f6:e8:2e:0c:f5:2a:
60:4d:46:c4:30:c6:fd:84:a3:b9:bc:c1:06:0f:d8:
38:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:89:A2:11:A6:A3:DE:9D:FC:2C:0A:B1:13:BD:F9:44:BA:E6:A4:1F
X509v3 Authority Key Identifier:
keyid:2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:64:72:07:38:a6:f7:b5:82:a3:82:25:a2:99:71:64:ce:43:
e9:95:60:1b:5d:2f:55:c4:c7:90:10:fc:35:bc:31:c7:79:15:
6b:f4:f7:67:2b:7d:71:a9:5d:7d:ca:97:09:34:98:30:fc:aa:
3b:20:55:f3:3c:b4:9f:c1:01:0a:9a:e6:01:62:df:fe:be:f2:
20:8e:f6:ce:69:a0:76:4c:2f:5b:54:fe:02:47:74:98:d1:67:
34:b7:a5:0d:39:2a:87:8f:87:82:d8:1b:96:3e:54:25:a6:5b:
1b:f6:f0:f2:52:23:6f:7c:c7:84:58:52:19:9f:e0:c1:6c:0d:
32:37:3c:b4:40:7f:10:de:da:79:b0:cc:21:dd:da:ca:ef:f8:
7c:40:3f:6c:d3:0f:49:e6:89:d9:07:98:2f:7d:9b:33:2b:5f:
fa:19:31:2f:e3:40:4c:17:30:e0:a5:dd:99:5c:62:9e:47:a7:
9c:cf:2b:08:b8:e2:b5:d9:a8:51:11:73:0a:37:6e:6a:d2:da:
58:d9:9a:ef:05:aa:37:fa:59:84:08:75:04:a1:36:d0:40:26:
29:8e:ef:5d:e4:12:4f:15:ae:02:d3:2e:4e:04:a4:01:7e:db:
68:5f:d6:c4:4d:27:22:2b:f0:54:4a:ce:72:76:94:98:91:ed:
99:1c:2a:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYUcoVpfx9y2FCMF/v3ZaGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiZjBhMDE5Nzg2OGM2ZDhjMzRkZDE2YjNmNDRkZWNjNWU0
MjM2ZjUwHhcNMjUwODIzMTkwNDU1WhcNMjUwODI0MTkwNDU1WjAzMTEwLwYDVQQD
EyhmNzg5YTIxMWE2YTNkZTlkZmMyYzBhYjExM2JkZjk0NGJhZTZhNDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA139aG/POs8Qf/na8qNSemild8pmj
7CNYUwx66/10IfPh2VgOW31+U7jcGhQyPJtzhv8dg2nR18cLtUFEiNpT5ueBhVzt
snbBgllFlOhz6KtxURramaoca7akyzi2qmWE4hFdNZFsbTlZmvk/jgEIpcZw5bsS
kk4vaKmSds6fY2jSGaAHKse57unhCCPJqpJfM0JLHa0nNqW52rOUVtQlxg6lunk4
YiaUefHdVFthpJ+GHlqJs9rsTUVtol2UfNbFrrUwgR/4QFkrKUsNULxQNhVHy1E/
pEz+NMPcwUankEe17nhUQLOQBeT26C4M9SpgTUbEMMb9hKO5vMEGD9g4SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPeJohGmo96d/CwKsRO9+US65qQfMB8GA1UdIwQY
MBaAFCvwoBl4aMbYw03Raz9E3sxeQjb1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80MGQyMjAtNjIxZC00NmZiLWFjOWMt
NDhiODM2NmZmMjNlLzEvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80MGQyMjAtNjIxZC00NmZiLWFjOWMtNDhiODM2NmZmMjNl
LzEvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm2RyBzim
97WCo4IloplxZM5D6ZVgG10vVcTHkBD8Nbwxx3kVa/T3Zyt9caldfcqXCTSYMPyq
OyBV8zy0n8EBCprmAWLf/r7yII72zmmgdkwvW1T+Akd0mNFnNLelDTkqh4+Hgtgb
lj5UJaZbG/bw8lIjb3zHhFhSGZ/gwWwNMjc8tEB/EN7aebDMId3ayu/4fEA/bNMP
SeaJ2QeYL32bMytf+hkxL+NATBcw4KXdmVxinkennM8rCLjitdmoURFzCjduatLa
WNma7wWqN/pZhAh1BKE20EAmKY7vXeQSTxWuAtMuTgSkAX7baF/WxE0nIivwVErO
cnaUmJHtmRwq6g==
-----END CERTIFICATE-----
Generated at Sun Aug 24 01:09:17 2025 by rpki-client