Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
File: K2ePFPiyKI1JVXym-xvfR5OSfc4.mft (raw, json)
Hash identifier: PKSEABa1nltimIqyeEHGaPWYoOP9zFMcBJGMGlF5x50=
Subject key identifier: 0B:57:BD:80:98:F8:23:65:1C:59:D3:66:D8:D6:16:6B:5A:B3:DF:7F
Authority key identifier: 2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
Certificate issuer: /CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Certificate serial: 0198D5BBCD7C7FEED652F416E2039B22B37B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
Manifest number: 0E16
Signing time: Sat 23 Aug 2025 07:01:51 +0000
Manifest this update: Sat 23 Aug 2025 07:01:51 +0000
Manifest next update: Sun 24 Aug 2025 07:01:51 +0000
Files and hashes: 1: F4GHMtEvNm46dM5TWDxthbQ6BA4.roa (hash: KVVBBRsYRigOW/uzk41RjMrk4PM1I4rBXcib4AOOQeA=)
2: K2ePFPiyKI1JVXym-xvfR5OSfc4.crl (hash: BMEEZIERpV47orKs5cM7/eWGrvE/IX+d94yjkzqAMYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:cd:7c:7f:ee:d6:52:f4:16:e2:03:9b:22:b3:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b678f14f8b2288d49557ca6fb1bdf4793927dce
Validity
Not Before: Aug 23 07:01:51 2025 GMT
Not After : Aug 24 07:01:51 2025 GMT
Subject: CN=0b57bd8098f823651c59d366d8d6166b5ab3df7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:69:f9:03:69:69:53:73:02:cb:a3:a4:fa:44:
90:73:b7:76:4d:1b:16:2a:30:a3:6d:53:b3:a9:bb:
f7:c4:fd:61:9f:c7:c4:bd:04:6f:ec:48:9d:d8:1b:
46:24:5e:a1:e6:bb:5f:b8:d2:2a:c7:69:30:26:c8:
c8:99:0e:6c:88:7b:26:a5:32:8c:9f:fa:47:f0:53:
2c:93:fb:49:02:d9:39:6c:e3:96:1d:37:53:6d:d1:
36:9f:c2:ed:85:45:89:a8:a7:fd:18:ab:dc:31:1d:
75:44:25:f3:4f:71:5e:f2:ab:d0:33:52:c4:ba:9a:
c8:dd:eb:66:72:bf:09:2b:68:5b:b9:6d:3d:b9:00:
32:76:71:cd:df:0e:14:e9:dc:5b:db:48:02:aa:cf:
b0:cf:50:43:c6:f5:e5:73:9b:ed:7c:47:4d:45:af:
b9:b8:1a:ba:84:f9:a3:4f:0f:ac:7e:0a:54:19:6c:
28:56:2d:5e:4f:62:34:a5:69:95:7f:47:48:0a:a1:
7b:4a:40:cd:dc:47:07:33:84:a2:74:1f:c4:46:2d:
be:4d:01:b7:59:ea:bc:33:93:7f:21:cd:e3:26:52:
b8:5c:96:b5:0e:92:9b:21:8a:35:e5:d9:c4:6c:d9:
90:22:e9:06:8d:bd:13:1e:39:d9:a7:60:99:51:8f:
bf:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:57:BD:80:98:F8:23:65:1C:59:D3:66:D8:D6:16:6B:5A:B3:DF:7F
X509v3 Authority Key Identifier:
keyid:2B:67:8F:14:F8:B2:28:8D:49:55:7C:A6:FB:1B:DF:47:93:92:7D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K2ePFPiyKI1JVXym-xvfR5OSfc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/bba9ed-da21-4919-a831-f1cc873c2e27/1/K2ePFPiyKI1JVXym-xvfR5OSfc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:db:24:22:57:b2:32:44:58:9a:4e:b4:82:ca:33:a8:a4:da:
34:b5:d3:d6:a7:52:d9:d9:fb:26:05:a6:c5:53:bc:66:0c:c6:
f0:e7:0b:50:30:28:9b:2f:ca:50:ef:61:e3:cd:d1:94:85:e4:
f9:d5:f5:c7:31:b4:33:10:2a:83:0b:76:64:05:57:be:6d:db:
c9:69:a7:5d:13:34:01:6d:a6:ca:d3:22:02:dc:a0:d8:06:a9:
11:9e:94:09:f4:fa:be:04:69:53:f6:86:d0:e4:7d:a8:a7:26:
6e:72:3f:fc:14:79:1a:f7:86:58:86:db:e2:6b:f6:97:d6:50:
fb:77:70:da:75:1b:d6:38:6b:78:58:69:af:90:8b:e1:85:c7:
95:11:21:70:71:e1:04:88:93:ee:0d:ff:00:0f:26:eb:0f:62:
71:d0:c8:86:31:92:f3:62:ef:5b:a0:85:21:81:6c:35:73:25:
bf:34:47:c9:5e:eb:fc:0e:aa:88:f4:69:a2:ae:e9:32:91:0e:
13:f9:2d:df:40:5e:96:01:fe:b4:6f:4b:5d:6a:09:da:0d:cf:
55:79:25:bd:f8:14:ed:ef:cf:10:73:21:86:83:23:bc:69:3b:
db:91:c4:a4:db:04:00:e8:05:27:79:f5:5b:9f:d7:97:25:a1:
88:7c:a9:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu818f+7WUvQW4gObIrN7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiNjc4ZjE0ZjhiMjI4OGQ0OTU1N2NhNmZiMWJkZjQ3OTM5
MjdkY2UwHhcNMjUwODIzMDcwMTUxWhcNMjUwODI0MDcwMTUxWjAzMTEwLwYDVQQD
EygwYjU3YmQ4MDk4ZjgyMzY1MWM1OWQzNjZkOGQ2MTY2YjVhYjNkZjdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmn5A2lpU3MCy6Ok+kSQc7d2TRsW
KjCjbVOzqbv3xP1hn8fEvQRv7Eid2BtGJF6h5rtfuNIqx2kwJsjImQ5siHsmpTKM
n/pH8FMsk/tJAtk5bOOWHTdTbdE2n8LthUWJqKf9GKvcMR11RCXzT3Fe8qvQM1LE
uprI3etmcr8JK2hbuW09uQAydnHN3w4U6dxb20gCqs+wz1BDxvXlc5vtfEdNRa+5
uBq6hPmjTw+sfgpUGWwoVi1eT2I0pWmVf0dICqF7SkDN3EcHM4SidB/ERi2+TQG3
Weq8M5N/Ic3jJlK4XJa1DpKbIYo15dnEbNmQIukGjb0THjnZp2CZUY+/vQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAtXvYCY+CNlHFnTZtjWFmtas99/MB8GA1UdIwQY
MBaAFCtnjxT4siiNSVV8pvsb30eTkn3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9iYmE5ZWQtZGEyMS00OTE5LWE4MzEt
ZjFjYzg3M2MyZTI3LzEvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9iYmE5ZWQtZGEyMS00OTE5LWE4MzEtZjFjYzg3M2MyZTI3
LzEvSzJlUEZQaXlLSTFKVlh5bS14dmZSNU9TZmM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAENskIley
MkRYmk60gsozqKTaNLXT1qdS2dn7JgWmxVO8ZgzG8OcLUDAomy/KUO9h483RlIXk
+dX1xzG0MxAqgwt2ZAVXvm3byWmnXRM0AW2mytMiAtyg2AapEZ6UCfT6vgRpU/aG
0OR9qKcmbnI//BR5GveGWIbb4mv2l9ZQ+3dw2nUb1jhreFhpr5CL4YXHlREhcHHh
BIiT7g3/AA8m6w9icdDIhjGS82LvW6CFIYFsNXMlvzRHyV7r/A6qiPRpoq7pMpEO
E/kt30BelgH+tG9LXWoJ2g3PVXklvfgU7e/PEHMhhoMjvGk725HEpNsEAOgFJ3n1
W5/XlyWhiHypQA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:28 2025 by rpki-client