Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
File: KhmTnyGLthMV6bOzez24WWCXXRQ.mft (raw, json)
Hash identifier: KvUoCIM6ThVJwTojebIVSuVqF5+KlPpVI5XMXP2IKQk=
Subject key identifier: 26:9A:E7:89:78:0B:BD:5D:DB:34:F2:8D:A4:79:15:56:6A:37:3D:0A
Authority key identifier: 2A:19:93:9F:21:8B:B6:13:15:E9:B3:B3:7B:3D:B8:59:60:97:5D:14
Certificate issuer: /CN=2a19939f218bb61315e9b3b37b3db85960975d14
Certificate serial: 0197B5C49177B8392AA7F6DDB8F7D1BF6922
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
Manifest number: 0FAF
Signing time: Sat 28 Jun 2025 09:00:47 +0000
Manifest this update: Sat 28 Jun 2025 09:00:47 +0000
Manifest next update: Sun 29 Jun 2025 09:00:47 +0000
Files and hashes: 1: ICnu7sUwpSSY15uEDFVsgADJKAc.roa (hash: OMIgQNcZqzMDzM+I0pk5KXUbjDdmpf89SBEO3vtX8ZE=)
2: KhmTnyGLthMV6bOzez24WWCXXRQ.crl (hash: 9sIaXKsuZ3u2GAxNBERIHSX4LoCG767Bk8UNSEtB7cI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 09:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b5:c4:91:77:b8:39:2a:a7:f6:dd:b8:f7:d1:bf:69:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a19939f218bb61315e9b3b37b3db85960975d14
Validity
Not Before: Jun 28 09:00:47 2025 GMT
Not After : Jun 29 09:00:47 2025 GMT
Subject: CN=269ae789780bbd5ddb34f28da47915566a373d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:29:a1:e4:0b:74:08:1f:ee:58:77:9a:c4:
8b:a0:26:bc:c8:a8:d8:08:f8:83:c2:11:0a:39:98:
18:20:06:e9:db:d0:d6:35:2e:6c:28:11:a1:95:0b:
1c:28:7e:6f:bd:3c:ec:4a:42:f6:a7:6f:be:32:a3:
14:65:c9:16:ed:e1:d5:f2:e5:bc:29:0d:64:b0:ef:
9e:b8:b7:52:3d:5d:f0:61:64:04:b4:95:70:94:56:
ac:ed:79:c3:f4:bf:91:2e:7c:a3:27:ad:44:d5:1b:
83:3a:d3:6f:34:6b:c3:dd:b9:12:72:2f:fb:d2:77:
e5:52:81:95:b3:9b:59:8f:f5:fa:46:15:73:72:68:
0b:09:98:83:39:0e:3f:84:c6:f8:75:16:76:22:e2:
52:9d:98:54:55:48:2f:b0:59:28:83:71:b9:96:af:
7c:0e:f8:c0:6a:4a:5c:7f:10:fc:80:d7:5e:5a:b5:
15:11:1d:fb:4b:24:39:a4:44:83:f4:e2:e4:d3:f0:
eb:30:65:11:06:5c:09:22:6b:01:cb:c7:e3:8b:92:
5d:58:b9:84:67:c6:96:49:be:e9:d9:f6:e0:28:a6:
e3:e4:7e:79:e3:e4:09:67:31:89:ea:8a:23:d1:8e:
92:72:16:5a:76:d7:76:5b:8b:5d:f3:9a:91:bf:93:
94:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:9A:E7:89:78:0B:BD:5D:DB:34:F2:8D:A4:79:15:56:6A:37:3D:0A
X509v3 Authority Key Identifier:
keyid:2A:19:93:9F:21:8B:B6:13:15:E9:B3:B3:7B:3D:B8:59:60:97:5D:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhmTnyGLthMV6bOzez24WWCXXRQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/54e498-e629-41e8-8abc-df5f20dd76ad/1/KhmTnyGLthMV6bOzez24WWCXXRQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:69:7d:01:80:f5:04:62:d5:5c:9a:1a:d4:ed:08:6f:e9:cd:
6d:86:d7:41:ab:53:ea:86:e1:68:82:1f:55:7c:33:c5:b1:d1:
c7:54:5b:33:fc:b3:90:cf:78:4d:18:3e:ab:e3:ba:73:7b:3f:
98:9d:60:4b:08:67:c2:0b:1b:2f:1b:ef:a3:61:04:91:4f:b5:
8f:2d:3e:3f:2b:bf:54:df:0c:ad:09:2a:a5:b8:f8:86:66:5c:
fb:e8:fd:de:da:db:38:55:c6:2c:55:92:1c:59:80:63:bf:ac:
42:86:89:f0:52:ca:56:16:81:07:6a:bf:2f:70:f2:7b:26:38:
4c:14:3e:15:5e:eb:50:b0:8e:6a:96:65:b0:05:a5:8e:32:34:
b3:a1:93:9e:3f:43:8f:f8:b3:56:89:19:ef:99:63:bf:a0:3f:
91:f0:23:03:ab:24:a9:14:f0:4a:1f:7b:81:0e:df:15:03:d0:
a5:86:d2:e8:85:c0:29:b7:68:a9:12:a2:13:89:45:c4:26:b5:
86:88:3b:17:89:98:35:57:ae:7e:37:92:85:40:b3:10:79:37:
05:56:13:23:09:6b:92:b4:5f:26:67:62:fe:55:d0:72:b5:68:
76:4f:0c:5f:3a:cb:88:87:a6:d7:10:11:d9:89:d5:54:2d:40:
14:e0:2a:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe1xJF3uDkqp/bduPfRv2kiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMTk5MzlmMjE4YmI2MTMxNWU5YjNiMzdiM2RiODU5NjA5
NzVkMTQwHhcNMjUwNjI4MDkwMDQ3WhcNMjUwNjI5MDkwMDQ3WjAzMTEwLwYDVQQD
EygyNjlhZTc4OTc4MGJiZDVkZGIzNGYyOGRhNDc5MTU1NjZhMzczZDBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojMpoeQLdAgf7lh3msSLoCa8yKjY
CPiDwhEKOZgYIAbp29DWNS5sKBGhlQscKH5vvTzsSkL2p2++MqMUZckW7eHV8uW8
KQ1ksO+euLdSPV3wYWQEtJVwlFas7XnD9L+RLnyjJ61E1RuDOtNvNGvD3bkSci/7
0nflUoGVs5tZj/X6RhVzcmgLCZiDOQ4/hMb4dRZ2IuJSnZhUVUgvsFkog3G5lq98
DvjAakpcfxD8gNdeWrUVER37SyQ5pESD9OLk0/DrMGURBlwJImsBy8fji5JdWLmE
Z8aWSb7p2fbgKKbj5H554+QJZzGJ6ooj0Y6SchZadtd2W4td85qRv5OUtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCaa54l4C71d2zTyjaR5FVZqNz0KMB8GA1UdIwQY
MBaAFCoZk58hi7YTFemzs3s9uFlgl10UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2htVG55R0x0aE1WNmJPemV6MjRXV0NYWFJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS81NGU0OTgtZTYyOS00MWU4LThhYmMt
ZGY1ZjIwZGQ3NmFkLzEvS2htVG55R0x0aE1WNmJPemV6MjRXV0NYWFJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS81NGU0OTgtZTYyOS00MWU4LThhYmMtZGY1ZjIwZGQ3NmFk
LzEvS2htVG55R0x0aE1WNmJPemV6MjRXV0NYWFJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKGl9AYD1
BGLVXJoa1O0Ib+nNbYbXQatT6obhaIIfVXwzxbHRx1RbM/yzkM94TRg+q+O6c3s/
mJ1gSwhnwgsbLxvvo2EEkU+1jy0+Pyu/VN8MrQkqpbj4hmZc++j93trbOFXGLFWS
HFmAY7+sQoaJ8FLKVhaBB2q/L3DyeyY4TBQ+FV7rULCOapZlsAWljjI0s6GTnj9D
j/izVokZ75ljv6A/kfAjA6skqRTwSh97gQ7fFQPQpYbS6IXAKbdoqRKiE4lFxCa1
hog7F4mYNVeufjeShUCzEHk3BVYTIwlrkrRfJmdi/lXQcrVodk8MXzrLiIem1xAR
2YnVVC1AFOAq9w==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:31:23 2025 by rpki-client