Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
File: KhfSVHdMl6nGhansXSTy_GlomQg.mft (raw, json)
Hash identifier: nQK0u2qPlWmlLBmHc/WkFcMKovHfSHS0p2r3b8GYHZ0=
Subject key identifier: 0C:7E:6C:91:EE:AF:AC:EC:24:B0:08:1F:18:70:82:B2:D1:BB:4B:5A
Authority key identifier: 2A:17:D2:54:77:4C:97:A9:C6:85:A9:EC:5D:24:F2:FC:69:68:99:08
Certificate issuer: /CN=2a17d254774c97a9c685a9ec5d24f2fc69689908
Certificate serial: 0198D7A96C7B1744AABCEEB0774ABD9CD1BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
Manifest number: 1386
Signing time: Sat 23 Aug 2025 16:01:01 +0000
Manifest this update: Sat 23 Aug 2025 16:01:01 +0000
Manifest next update: Sun 24 Aug 2025 16:01:01 +0000
Files and hashes: 1: 1ibpJfSu5zvmElDRsm3yBPA2Psc.roa (hash: fl2TXrWlprslHDoqKeFpyUnoLUsON1oTzkxdU0IwAjQ=)
2: KhfSVHdMl6nGhansXSTy_GlomQg.crl (hash: gcgdyeNTpzZ6mbkC2ku0DIcurZDpwBQPDGo9kNIB1pQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a9:6c:7b:17:44:aa:bc:ee:b0:77:4a:bd:9c:d1:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a17d254774c97a9c685a9ec5d24f2fc69689908
Validity
Not Before: Aug 23 16:01:01 2025 GMT
Not After : Aug 24 16:01:01 2025 GMT
Subject: CN=0c7e6c91eeafacec24b0081f187082b2d1bb4b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f1:68:f7:3e:32:6e:16:c8:4f:f9:bc:d2:eb:
96:2d:ff:22:1e:e1:7e:b3:d5:4f:97:44:03:51:90:
e7:63:00:40:d0:47:18:71:3f:1a:66:ec:b1:c2:10:
45:80:9e:bc:d6:46:80:39:b8:dc:8b:2b:00:0f:31:
9c:8f:48:77:ce:10:92:5d:4e:53:f4:7b:15:c5:af:
33:6f:9f:ea:ed:86:52:d9:f9:23:ba:82:96:a2:52:
77:5e:b8:be:22:89:83:91:37:e8:d9:cd:a1:42:bf:
97:21:d9:2c:70:b7:ae:23:89:07:64:7c:ee:81:b4:
1c:b1:a1:31:c9:bb:68:38:24:29:f8:34:ff:2e:23:
51:fc:a4:4c:04:4b:88:43:1d:79:90:52:dc:f7:56:
28:12:48:ea:8e:5a:36:f1:0f:f4:e2:f7:46:17:76:
6e:5a:86:3e:b6:62:24:aa:1e:aa:ff:c8:c6:29:01:
c5:89:a8:20:c5:e0:64:c1:79:d0:d1:82:08:26:64:
31:db:73:b6:59:29:0d:84:8c:02:0c:5b:d9:0b:2d:
32:8d:46:31:f6:86:14:28:9b:7b:50:c3:7c:41:f6:
47:1c:20:02:24:ca:39:0a:ea:3f:ed:8c:94:10:b0:
8f:e9:7d:a5:10:eb:7f:f9:66:f0:86:6b:55:84:38:
c1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:7E:6C:91:EE:AF:AC:EC:24:B0:08:1F:18:70:82:B2:D1:BB:4B:5A
X509v3 Authority Key Identifier:
keyid:2A:17:D2:54:77:4C:97:A9:C6:85:A9:EC:5D:24:F2:FC:69:68:99:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:0c:08:b4:8e:32:b1:1c:0e:35:11:24:a8:f7:7d:2e:71:2c:
6d:bb:8f:05:7c:a2:33:a2:49:f7:49:a3:74:d3:1a:ff:24:bb:
17:73:6f:71:6e:6b:ac:b5:ca:6f:33:83:8b:85:f1:d9:24:5b:
ac:78:3c:8a:01:9a:33:3f:c6:d5:48:af:8e:3a:ae:3f:e5:1f:
77:7b:4e:7f:b3:6f:f8:6f:73:e9:98:8e:a3:5b:d8:2a:82:ab:
8e:a1:40:d0:20:31:c8:25:e1:c7:f3:d1:c0:34:99:46:26:0a:
d0:21:7a:35:bf:ad:bd:90:12:e8:f8:74:4b:b5:7d:58:f4:b5:
a6:82:b1:d4:07:26:55:a4:79:22:41:83:ff:c3:f7:10:71:5f:
4f:9f:ee:b5:96:c9:48:8e:22:1a:ce:1c:5f:48:ba:95:b0:a9:
a5:7e:36:eb:e4:1e:cb:e3:e7:55:14:d2:eb:d2:29:8e:78:62:
cb:31:6f:56:18:dd:ab:a9:28:d2:cb:6e:3a:94:f5:f4:e0:d1:
88:9c:86:c3:9c:cb:dd:68:62:09:c9:f0:cd:38:b5:7c:50:cc:
20:4b:e8:bc:b5:d5:6b:c0:65:0f:bf:7f:0c:ff:9b:3d:19:f1:
ad:1e:5a:f8:f9:27:f6:eb:d6:26:94:df:66:04:1a:3b:05:9c:
d3:07:e7:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqWx7F0SqvO6wd0q9nNG+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMTdkMjU0Nzc0Yzk3YTljNjg1YTllYzVkMjRmMmZjNjk2
ODk5MDgwHhcNMjUwODIzMTYwMTAxWhcNMjUwODI0MTYwMTAxWjAzMTEwLwYDVQQD
EygwYzdlNmM5MWVlYWZhY2VjMjRiMDA4MWYxODcwODJiMmQxYmI0YjVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0/Fo9z4ybhbIT/m80uuWLf8iHuF+
s9VPl0QDUZDnYwBA0EcYcT8aZuyxwhBFgJ681kaAObjciysADzGcj0h3zhCSXU5T
9HsVxa8zb5/q7YZS2fkjuoKWolJ3Xri+IomDkTfo2c2hQr+XIdkscLeuI4kHZHzu
gbQcsaExybtoOCQp+DT/LiNR/KRMBEuIQx15kFLc91YoEkjqjlo28Q/04vdGF3Zu
WoY+tmIkqh6q/8jGKQHFiaggxeBkwXnQ0YIIJmQx23O2WSkNhIwCDFvZCy0yjUYx
9oYUKJt7UMN8QfZHHCACJMo5Cuo/7YyUELCP6X2lEOt/+WbwhmtVhDjB/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAx+bJHur6zsJLAIHxhwgrLRu0taMB8GA1UdIwQY
MBaAFCoX0lR3TJepxoWp7F0k8vxpaJkIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82NmE0MzktY2YzMy00N2M1LTkyYWIt
ODBiNTExOGFiYWY2LzEvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi82NmE0MzktY2YzMy00N2M1LTkyYWItODBiNTExOGFiYWY2
LzEvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAgwItI4y
sRwONREkqPd9LnEsbbuPBXyiM6JJ90mjdNMa/yS7F3NvcW5rrLXKbzODi4Xx2SRb
rHg8igGaMz/G1UivjjquP+Ufd3tOf7Nv+G9z6ZiOo1vYKoKrjqFA0CAxyCXhx/PR
wDSZRiYK0CF6Nb+tvZAS6Ph0S7V9WPS1poKx1AcmVaR5IkGD/8P3EHFfT5/utZbJ
SI4iGs4cX0i6lbCppX426+Qey+PnVRTS69IpjnhiyzFvVhjdq6ko0stuOpT19ODR
iJyGw5zL3WhiCcnwzTi1fFDMIEvovLXVa8BlD79/DP+bPRnxrR5a+Pkn9uvWJpTf
ZgQaOwWc0wfnLg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:34:42 2025 by rpki-client