Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: pRf6bqnsOgGPivnvlzfueH8CGLc96ll60M/AaAUXzjs=
Subject key identifier: BD:3F:8B:00:11:38:75:14:CB:58:5A:BD:87:11:A1:41:BF:5F:65:4B
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 0197B745452E1832310104F430AD82AC06EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 0173
Signing time: Sat 28 Jun 2025 16:00:59 +0000
Manifest this update: Sat 28 Jun 2025 16:00:59 +0000
Manifest next update: Sun 29 Jun 2025 16:00:59 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: NwacxtGPm+pN5QF4WBSQBf/Mk599zTrZo8NYwzjvhhQ=)
2: q2_sbJziOr7rwxyhvKWnkNjMans.roa (hash: 0BH7DATsPfSUKJPP/TZdwOG931UfHO+OV4ftBhPZrwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:45:2e:18:32:31:01:04:f4:30:ad:82:ac:06:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Jun 28 16:00:59 2025 GMT
Not After : Jun 29 16:00:59 2025 GMT
Subject: CN=bd3f8b0011387514cb585abd8711a141bf5f654b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:0d:06:5f:dc:ef:7b:16:ad:1d:6c:c5:25:
12:05:77:ea:9b:22:25:1e:5e:5e:29:08:9e:f9:5a:
a1:8d:f6:1c:72:8b:84:bc:34:8e:e0:05:69:33:87:
c6:83:3e:3d:c8:c4:55:45:f7:e5:08:7e:de:0f:d5:
14:78:af:f4:58:fa:84:a0:c1:5c:9f:bb:4a:db:f1:
2f:e5:f4:a7:39:38:8f:af:28:8c:28:ed:b8:39:f0:
b0:3d:8b:b3:1e:33:46:db:a5:6b:33:b0:81:28:c9:
26:70:81:ab:f3:ec:25:3e:5c:0c:86:60:84:01:51:
c5:90:68:5c:95:73:8a:52:c7:65:a1:4b:78:5b:d1:
81:b5:d4:6b:f2:10:99:ff:9e:45:e3:a3:3a:e0:a4:
7a:ca:31:16:b9:db:a6:88:69:52:c5:c4:ec:f8:51:
fe:5d:37:01:8a:8b:0b:18:00:13:4e:b7:a9:91:c7:
05:77:3a:ea:6d:28:67:9d:73:ab:c6:e7:3c:d6:55:
ee:3f:3b:54:78:2b:a3:59:d7:73:2d:ad:59:06:48:
b4:15:4d:12:ad:44:36:89:11:e1:e5:e6:d5:47:62:
de:ea:69:9d:46:e6:d5:85:02:de:46:2e:0a:5d:4d:
ad:e9:bb:22:55:71:20:cd:ba:74:77:02:4e:c8:de:
bf:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:3F:8B:00:11:38:75:14:CB:58:5A:BD:87:11:A1:41:BF:5F:65:4B
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:bc:f4:91:8e:7c:52:f2:3e:31:30:7a:66:9f:40:2c:52:05:
d7:42:a5:fd:da:49:d9:32:c9:fe:e0:7d:68:a2:3a:fd:e3:73:
a3:6e:4c:db:51:77:4b:6b:f3:83:ea:7d:35:9f:fd:db:bb:af:
2a:35:5a:e5:57:25:4a:1c:f6:4c:9d:c5:fe:4a:e0:28:76:46:
71:3b:6c:ce:47:5f:a6:d1:9f:e9:bc:c9:07:86:b1:14:54:6a:
f0:54:8e:fd:21:52:40:30:93:74:9f:24:be:09:16:e7:22:42:
9a:d3:b1:e6:a5:6b:78:2d:07:3a:31:22:2b:3f:5c:a0:68:c8:
cf:bf:40:93:f1:a6:45:80:e5:e8:86:91:95:df:a5:c9:1f:ea:
f9:a4:56:e1:1e:09:d8:17:89:aa:32:8c:56:90:bc:a3:8e:a7:
5f:38:0c:a9:57:0c:9c:7d:7a:0f:26:e9:25:a9:1f:34:6f:3f:
8b:75:3f:99:32:ab:d6:a1:ee:67:24:20:87:86:f9:d3:30:42:
cd:57:8e:5f:b8:3e:54:a7:0b:af:bf:c6:74:f8:21:ed:17:03:
5d:7c:cb:68:f9:6d:0f:f6:7e:66:a1:c8:c8:e0:49:ec:e3:ce:
d8:ec:a0:68:90:8c:6f:be:db:22:58:57:4e:a0:bd:3a:ba:24:
22:2b:cc:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RUUuGDIxAQT0MK2CrAbrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODA0NzRhOTYxNjFkZGUyOTQyY2ZiOWYxODU2YzJmZmM4
ODA5MDQwHhcNMjUwNjI4MTYwMDU5WhcNMjUwNjI5MTYwMDU5WjAzMTEwLwYDVQQD
EyhiZDNmOGIwMDExMzg3NTE0Y2I1ODVhYmQ4NzExYTE0MWJmNWY2NTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwccNBl/c73sWrR1sxSUSBXfqmyIl
Hl5eKQie+VqhjfYccouEvDSO4AVpM4fGgz49yMRVRfflCH7eD9UUeK/0WPqEoMFc
n7tK2/Ev5fSnOTiPryiMKO24OfCwPYuzHjNG26VrM7CBKMkmcIGr8+wlPlwMhmCE
AVHFkGhclXOKUsdloUt4W9GBtdRr8hCZ/55F46M64KR6yjEWudumiGlSxcTs+FH+
XTcBiosLGAATTrepkccFdzrqbShnnXOrxuc81lXuPztUeCujWddzLa1ZBki0FU0S
rUQ2iRHh5ebVR2Le6mmdRubVhQLeRi4KXU2t6bsiVXEgzbp0dwJOyN6/TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL0/iwAROHUUy1havYcRoUG/X2VLMB8GA1UdIwQY
MBaAFCiAR0qWFh3eKULPufGFbC/8iAkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAt
NzQ2MWE1NmNlOTVlLzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAtNzQ2MWE1NmNlOTVl
LzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbLz0kY58
UvI+MTB6Zp9ALFIF10Kl/dpJ2TLJ/uB9aKI6/eNzo25M21F3S2vzg+p9NZ/927uv
KjVa5VclShz2TJ3F/krgKHZGcTtszkdfptGf6bzJB4axFFRq8FSO/SFSQDCTdJ8k
vgkW5yJCmtOx5qVreC0HOjEiKz9coGjIz79Ak/GmRYDl6IaRld+lyR/q+aRW4R4J
2BeJqjKMVpC8o46nXzgMqVcMnH16DybpJakfNG8/i3U/mTKr1qHuZyQgh4b50zBC
zVeOX7g+VKcLr7/GdPgh7RcDXXzLaPltD/Z+ZqHIyOBJ7OPO2OygaJCMb77bIlhX
TqC9OrokIivMmA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:43:25 2025 by rpki-client