Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
File: KhfSVHdMl6nGhansXSTy_GlomQg.mft (raw, json)
Hash identifier: jgX/GsykJz86mUIAm/yNlAsIvG7bsODQbXMeFwEW/tM=
Subject key identifier: 6A:21:3A:AD:C5:E1:AE:FD:CF:EC:1D:86:E8:39:B6:10:72:DF:07:2C
Authority key identifier: 2A:17:D2:54:77:4C:97:A9:C6:85:A9:EC:5D:24:F2:FC:69:68:99:08
Certificate issuer: /CN=2a17d254774c97a9c685a9ec5d24f2fc69689908
Certificate serial: 0197B7EACEF8407A6B90C09A819F14169535
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
Manifest number: 12F1
Signing time: Sat 28 Jun 2025 19:01:48 +0000
Manifest this update: Sat 28 Jun 2025 19:01:48 +0000
Manifest next update: Sun 29 Jun 2025 19:01:48 +0000
Files and hashes: 1: 1ibpJfSu5zvmElDRsm3yBPA2Psc.roa (hash: fl2TXrWlprslHDoqKeFpyUnoLUsON1oTzkxdU0IwAjQ=)
2: KhfSVHdMl6nGhansXSTy_GlomQg.crl (hash: nFKpoyWCsWiUEUWuBQlsZAug+HVwNYOBTVuj2kbq86E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:ce:f8:40:7a:6b:90:c0:9a:81:9f:14:16:95:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a17d254774c97a9c685a9ec5d24f2fc69689908
Validity
Not Before: Jun 28 19:01:48 2025 GMT
Not After : Jun 29 19:01:48 2025 GMT
Subject: CN=6a213aadc5e1aefdcfec1d86e839b61072df072c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3a:35:f9:55:2a:5b:ef:0b:d7:aa:7b:88:2b:
f2:8d:63:97:30:96:a7:04:70:ad:93:15:ce:c3:20:
e4:95:45:68:52:14:70:89:9d:f0:fb:bd:3c:43:1e:
6a:b4:ad:ef:47:27:f4:40:4d:31:0d:a6:f5:e6:65:
a6:44:85:23:4a:df:cd:89:33:e1:62:86:7c:aa:06:
da:a4:ad:f9:27:a4:f4:c1:6f:1d:ac:ef:6a:63:5c:
27:37:a6:ed:74:e6:ae:33:73:32:54:0d:cd:f4:9f:
6a:ea:f6:d8:73:94:71:e9:9d:66:bd:09:27:b4:52:
1c:d1:65:ed:4b:70:59:71:f2:c6:0c:d9:54:d3:ae:
86:ee:09:51:91:ad:50:48:59:84:c2:d9:db:ac:de:
9b:c4:44:6c:92:19:aa:fe:f7:53:cb:51:c8:85:a8:
0b:71:eb:e2:93:cb:41:c2:23:16:4a:63:29:a1:8d:
46:09:c9:4a:dd:ab:b2:31:75:0b:b9:37:8e:af:ab:
1a:4c:a2:42:76:02:20:60:57:a3:27:66:48:f7:b9:
0e:d4:9b:4d:ae:5c:8d:19:4e:f7:f3:c2:2d:a8:17:
c7:da:49:d0:18:51:d2:99:14:ce:75:37:55:72:ad:
b8:a9:1c:7d:36:d5:d8:95:bb:69:fc:a9:53:d4:d3:
fa:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:21:3A:AD:C5:E1:AE:FD:CF:EC:1D:86:E8:39:B6:10:72:DF:07:2C
X509v3 Authority Key Identifier:
keyid:2A:17:D2:54:77:4C:97:A9:C6:85:A9:EC:5D:24:F2:FC:69:68:99:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:05:b4:03:12:7f:69:0d:3d:b3:40:57:0b:9f:a0:76:3a:22:
b3:8d:d5:c5:ba:69:7d:92:69:a3:c0:4a:47:c2:89:84:50:dc:
cc:ca:ef:64:55:09:9b:5e:74:29:4f:28:25:05:a9:8a:39:20:
10:7e:35:12:ee:66:b7:53:2e:dc:43:1c:ac:da:26:e3:7e:ec:
1e:42:4f:45:9d:db:30:e6:de:f7:69:9e:55:9e:5f:e0:54:69:
f9:5a:07:5c:1c:6a:8c:dd:b6:eb:34:f4:1c:8f:8a:fb:e6:96:
2f:c6:6f:d3:d5:27:a4:4a:d4:96:22:72:21:fa:5f:7c:0f:40:
cd:44:46:e0:37:cc:4f:42:36:49:99:ca:e5:a5:90:bf:e2:d5:
30:2c:5a:97:b3:57:33:7d:60:ff:d3:c7:98:0e:3a:80:40:d4:
55:95:56:a2:95:4c:3d:0e:43:5b:86:76:df:e6:f3:37:bc:6f:
02:fa:65:a9:60:65:e4:6e:83:e1:ef:0a:f5:2c:a2:0d:f4:8a:
0b:66:6d:3e:3f:7c:57:ae:9c:0d:b1:41:02:56:bb:5e:1f:c1:
41:5d:7b:86:50:d8:c2:de:28:3c:c7:c6:8b:c0:70:40:4a:3c:
8a:05:4d:0e:5f:4c:dd:d6:17:41:80:1d:b5:32:f3:9a:53:e1:
6a:8c:b9:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36s74QHprkMCagZ8UFpU1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMTdkMjU0Nzc0Yzk3YTljNjg1YTllYzVkMjRmMmZjNjk2
ODk5MDgwHhcNMjUwNjI4MTkwMTQ4WhcNMjUwNjI5MTkwMTQ4WjAzMTEwLwYDVQQD
Eyg2YTIxM2FhZGM1ZTFhZWZkY2ZlYzFkODZlODM5YjYxMDcyZGYwNzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzo1+VUqW+8L16p7iCvyjWOXMJan
BHCtkxXOwyDklUVoUhRwiZ3w+708Qx5qtK3vRyf0QE0xDab15mWmRIUjSt/NiTPh
YoZ8qgbapK35J6T0wW8drO9qY1wnN6btdOauM3MyVA3N9J9q6vbYc5Rx6Z1mvQkn
tFIc0WXtS3BZcfLGDNlU066G7glRka1QSFmEwtnbrN6bxERskhmq/vdTy1HIhagL
cevik8tBwiMWSmMpoY1GCclK3auyMXULuTeOr6saTKJCdgIgYFejJ2ZI97kO1JtN
rlyNGU7388ItqBfH2knQGFHSmRTOdTdVcq24qRx9NtXYlbtp/KlT1NP6WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGohOq3F4a79z+wdhug5thBy3wcsMB8GA1UdIwQY
MBaAFCoX0lR3TJepxoWp7F0k8vxpaJkIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82NmE0MzktY2YzMy00N2M1LTkyYWIt
ODBiNTExOGFiYWY2LzEvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi82NmE0MzktY2YzMy00N2M1LTkyYWItODBiNTExOGFiYWY2
LzEvS2hmU1ZIZE1sNm5HaGFuc1hTVHlfR2xvbVFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEwW0AxJ/
aQ09s0BXC5+gdjois43VxbppfZJpo8BKR8KJhFDczMrvZFUJm150KU8oJQWpijkg
EH41Eu5mt1Mu3EMcrNom437sHkJPRZ3bMObe92meVZ5f4FRp+VoHXBxqjN226zT0
HI+K++aWL8Zv09UnpErUliJyIfpffA9AzURG4DfMT0I2SZnK5aWQv+LVMCxal7NX
M31g/9PHmA46gEDUVZVWopVMPQ5DW4Z23+bzN7xvAvplqWBl5G6D4e8K9SyiDfSK
C2ZtPj98V66cDbFBAla7Xh/BQV17hlDYwt4oPMfGi8BwQEo8igVNDl9M3dYXQYAd
tTLzmlPhaoy5Ew==
-----END CERTIFICATE-----
Generated at Sun Jun 29 04:40:22 2025 by rpki-client