Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
File: KgV9tw5HTrSgd_oT875N17Y4C1Q.mft (raw, json)
Hash identifier: WBxIejuBOvjBsXOd0CbHOG+4JmEAWY8Pe/zNb3OAK9c=
Subject key identifier: 1D:CE:B9:92:A4:0E:F9:40:02:8F:47:E1:1B:39:7F:1B:45:FE:CE:40
Authority key identifier: 2A:05:7D:B7:0E:47:4E:B4:A0:77:FA:13:F3:BE:4D:D7:B6:38:0B:54
Certificate issuer: /CN=2a057db70e474eb4a077fa13f3be4dd7b6380b54
Certificate serial: 0197B6A1727B4047E5B7A523423805FA592E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
Manifest number: 0FAD
Signing time: Sat 28 Jun 2025 13:02:03 +0000
Manifest this update: Sat 28 Jun 2025 13:02:03 +0000
Manifest next update: Sun 29 Jun 2025 13:02:03 +0000
Files and hashes: 1: KgV9tw5HTrSgd_oT875N17Y4C1Q.crl (hash: TPrvkZsPvlPgwBl7m8g9Re8/XWRv4eo01OM/4G6jT3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:72:7b:40:47:e5:b7:a5:23:42:38:05:fa:59:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a057db70e474eb4a077fa13f3be4dd7b6380b54
Validity
Not Before: Jun 28 13:02:03 2025 GMT
Not After : Jun 29 13:02:03 2025 GMT
Subject: CN=1dceb992a40ef940028f47e11b397f1b45fece40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:90:8f:9a:33:f5:7c:32:ac:55:30:e9:d0:04:
8e:5d:dc:b0:e1:0d:d7:17:7f:50:36:f7:1c:a4:01:
bf:3f:9c:18:03:0d:dd:77:1e:c6:22:17:74:f2:a6:
e6:22:f1:df:b2:1b:9f:0d:2b:bd:cf:02:de:96:a6:
3a:9e:8d:ae:79:5b:31:cc:56:f5:b9:9d:89:87:9b:
ce:8e:1e:88:23:15:6f:10:2c:b9:a1:74:45:f7:0d:
cc:02:db:dd:81:ea:1c:17:17:a9:4c:fb:72:de:9e:
bd:2e:90:17:57:e8:64:9b:ff:f8:4f:33:18:82:39:
b9:6e:32:eb:a0:a2:1f:6a:28:06:be:85:b7:3e:87:
0e:d5:c9:1c:13:22:d6:6b:86:de:b9:d3:7a:71:bb:
12:44:ff:63:12:c0:e3:6c:14:ef:b4:29:05:7f:77:
c7:98:c7:25:30:90:49:f4:b4:c2:82:7a:c8:73:20:
e2:0c:c4:b8:7a:76:d5:9f:1b:9c:61:1a:52:24:69:
a5:93:ad:b7:2e:27:75:26:20:6d:43:f6:db:12:a2:
61:6d:14:93:a9:da:5d:fe:7d:71:89:96:cf:a8:e1:
23:75:4d:e1:39:c7:bd:14:e9:b2:a5:ae:da:fc:5e:
2e:8e:63:bc:8d:68:69:01:62:59:a1:77:5e:a8:48:
ee:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CE:B9:92:A4:0E:F9:40:02:8F:47:E1:1B:39:7F:1B:45:FE:CE:40
X509v3 Authority Key Identifier:
keyid:2A:05:7D:B7:0E:47:4E:B4:A0:77:FA:13:F3:BE:4D:D7:B6:38:0B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgV9tw5HTrSgd_oT875N17Y4C1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/d978ff-74a1-4915-959a-c03568dc08b3/1/KgV9tw5HTrSgd_oT875N17Y4C1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:49:f2:ac:cc:73:8d:86:39:3a:34:9d:e4:fa:b0:55:52:fb:
f8:fa:05:e0:cd:e4:8a:21:2d:cf:2a:9a:99:ab:46:59:0b:0a:
b3:c4:27:92:ee:5c:66:34:fe:99:b6:68:ae:18:6f:0b:3e:0e:
c2:7d:90:58:20:93:f9:e1:78:17:35:a9:46:7c:1f:24:06:54:
66:c0:81:ab:f3:58:86:20:63:a6:f2:e0:7e:7f:c6:63:a5:c4:
80:ed:4b:a7:15:3f:0d:46:b0:32:c2:51:d9:be:f3:29:e0:34:
38:1a:4b:97:f7:fd:c7:42:a8:e2:2a:fc:6f:52:10:de:13:f0:
94:7c:30:5b:8e:d9:3f:1b:35:7c:9c:7d:b5:ed:3e:ca:97:45:
01:4b:15:32:51:ac:2e:c0:53:77:4c:80:3e:c8:67:3a:d1:06:
06:4d:a2:f8:5a:05:80:1e:56:7b:57:42:f7:41:1c:28:ea:a4:
36:b1:f0:3b:0c:d1:9d:6c:ee:bc:21:a2:2b:87:5b:7e:0f:33:
1a:36:ee:35:89:ad:96:9a:13:e6:52:f9:9d:3f:16:b7:47:2f:
8a:a2:d3:80:ba:11:37:da:9a:0a:de:2f:8f:fa:83:a3:a5:a3:
35:b0:fb:c3:f4:c2:ed:ba:df:ec:2f:a5:81:71:a1:4c:a9:d4:
0d:68:1d:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oXJ7QEflt6UjQjgF+lkuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMDU3ZGI3MGU0NzRlYjRhMDc3ZmExM2YzYmU0ZGQ3YjYz
ODBiNTQwHhcNMjUwNjI4MTMwMjAzWhcNMjUwNjI5MTMwMjAzWjAzMTEwLwYDVQQD
EygxZGNlYjk5MmE0MGVmOTQwMDI4ZjQ3ZTExYjM5N2YxYjQ1ZmVjZTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppCPmjP1fDKsVTDp0ASOXdyw4Q3X
F39QNvccpAG/P5wYAw3ddx7GIhd08qbmIvHfshufDSu9zwLelqY6no2ueVsxzFb1
uZ2Jh5vOjh6IIxVvECy5oXRF9w3MAtvdgeocFxepTPty3p69LpAXV+hkm//4TzMY
gjm5bjLroKIfaigGvoW3PocO1ckcEyLWa4beudN6cbsSRP9jEsDjbBTvtCkFf3fH
mMclMJBJ9LTCgnrIcyDiDMS4enbVnxucYRpSJGmlk623Lid1JiBtQ/bbEqJhbRST
qdpd/n1xiZbPqOEjdU3hOce9FOmypa7a/F4ujmO8jWhpAWJZoXdeqEjusQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB3OuZKkDvlAAo9H4Rs5fxtF/s5AMB8GA1UdIwQY
MBaAFCoFfbcOR060oHf6E/O+Tde2OAtUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2dWOXR3NUhUclNnZF9vVDg3NU4xN1k0QzFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9kOTc4ZmYtNzRhMS00OTE1LTk1OWEt
YzAzNTY4ZGMwOGIzLzEvS2dWOXR3NUhUclNnZF9vVDg3NU4xN1k0QzFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9kOTc4ZmYtNzRhMS00OTE1LTk1OWEtYzAzNTY4ZGMwOGIz
LzEvS2dWOXR3NUhUclNnZF9vVDg3NU4xN1k0QzFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqUnyrMxz
jYY5OjSd5PqwVVL7+PoF4M3kiiEtzyqamatGWQsKs8Qnku5cZjT+mbZorhhvCz4O
wn2QWCCT+eF4FzWpRnwfJAZUZsCBq/NYhiBjpvLgfn/GY6XEgO1LpxU/DUawMsJR
2b7zKeA0OBpLl/f9x0Ko4ir8b1IQ3hPwlHwwW47ZPxs1fJx9te0+ypdFAUsVMlGs
LsBTd0yAPshnOtEGBk2i+FoFgB5We1dC90EcKOqkNrHwOwzRnWzuvCGiK4dbfg8z
GjbuNYmtlpoT5lL5nT8Wt0cviqLTgLoRN9qaCt4vj/qDo6WjNbD7w/TC7brf7C+l
gXGhTKnUDWgdaA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:25:44 2025 by rpki-client