Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: yAP5DdNNox/Cu97EKGkmcrlyU5VLc6I6XJR8nmipcY0=
Subject key identifier: 0E:0E:A5:98:91:CA:C6:76:88:7E:79:0C:89:72:38:BE:81:B9:A1:DD
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 0198D51635B61A78C7260D598950316A056F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 0816
Signing time: Sat 23 Aug 2025 04:00:59 +0000
Manifest this update: Sat 23 Aug 2025 04:00:59 +0000
Manifest next update: Sun 24 Aug 2025 04:00:59 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: Au7td0uGlskaJ4m92AM2xFHXlLX6ZIaZoIiPDLNllzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:16:35:b6:1a:78:c7:26:0d:59:89:50:31:6a:05:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Aug 23 04:00:59 2025 GMT
Not After : Aug 24 04:00:59 2025 GMT
Subject: CN=0e0ea59891cac676887e790c897238be81b9a1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4c:26:d9:97:d1:86:52:62:79:69:e0:13:ca:
f6:c5:30:07:8a:e9:1d:64:3c:4c:77:82:2d:9e:97:
77:c7:3d:c6:55:89:ae:6a:91:0c:4e:89:42:ba:14:
e5:7a:0d:14:2f:78:85:e0:53:71:14:9f:97:f4:14:
91:eb:27:38:8a:55:d9:45:7d:60:a4:a7:58:6f:a0:
22:c6:8f:c4:f0:23:33:3e:9f:27:30:b2:df:8d:be:
70:42:a1:d1:b5:b0:e5:bf:93:48:23:48:af:db:ad:
9e:65:32:ad:59:55:5b:cb:4c:96:66:dc:fa:f2:ca:
c9:20:1c:b0:cb:7d:8b:a2:c1:2b:d0:4f:3a:ff:de:
72:20:e5:96:a2:7c:8d:60:84:26:66:ae:52:82:67:
5a:98:c8:e4:7e:22:6a:49:bb:d8:9c:58:88:1f:b2:
9a:ce:d1:0c:25:a4:80:0d:ec:b9:21:1c:23:26:15:
99:16:60:ee:bc:1b:01:cd:93:0b:3d:b0:a4:48:d5:
3e:c4:51:1a:fd:26:5f:f0:cb:32:47:8c:49:90:4f:
79:4e:57:93:43:b9:0d:73:96:cc:09:99:90:8f:ac:
06:93:5e:b4:2f:c5:af:74:03:e4:21:52:1a:77:f5:
16:a1:05:66:40:35:b9:9f:6b:8a:ce:43:7b:b9:a7:
f7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0E:A5:98:91:CA:C6:76:88:7E:79:0C:89:72:38:BE:81:B9:A1:DD
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:8a:d8:27:ec:b8:6e:2c:b9:af:6e:06:3e:ed:10:60:5c:35:
cd:0a:d8:9f:df:12:32:db:7e:9e:3a:31:bd:41:20:c0:57:13:
03:35:5f:66:9c:a4:a0:43:70:fb:e2:f2:a9:7c:d4:d3:72:47:
54:c3:55:c7:d1:b7:26:60:7b:73:4e:6d:11:6e:5f:3d:cb:52:
e0:b0:64:94:8f:d8:3c:2f:d9:04:c6:2b:0f:38:2a:f5:c7:6c:
51:ac:1e:04:2d:85:c8:7e:6d:9f:fc:94:d3:9e:d8:62:a3:1c:
43:b1:ac:01:15:ca:8a:8b:88:6e:17:ed:b7:c6:2f:4e:22:e2:
e1:74:55:86:8d:fe:0a:71:b0:10:c5:7a:57:54:3a:25:04:2f:
2b:fa:04:4c:94:42:b8:d6:14:2a:dc:8d:c2:bb:d3:29:b8:9e:
9f:41:b6:22:42:50:07:88:a7:e9:ed:59:e8:5c:99:d4:95:b0:
1c:90:97:36:bc:d9:95:27:c0:78:be:ad:41:df:aa:87:cb:52:
d2:61:07:dd:ad:e3:50:8a:4e:c3:53:af:a2:0c:a9:21:76:32:
3e:4f:6d:49:d5:e7:95:27:b2:64:d4:89:f4:38:d7:0c:b5:07:
7a:e5:39:d7:4f:fc:00:c1:0f:b4:e7:85:55:86:44:ec:7d:e5:
41:89:b0:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFjW2GnjHJg1ZiVAxagVvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYjJkMDIzNDFjMTE5NDlhOGM4NzE1M2Y4NjZjMGY2OGYx
YmJkNzMwHhcNMjUwODIzMDQwMDU5WhcNMjUwODI0MDQwMDU5WjAzMTEwLwYDVQQD
EygwZTBlYTU5ODkxY2FjNjc2ODg3ZTc5MGM4OTcyMzhiZTgxYjlhMWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0wm2ZfRhlJieWngE8r2xTAHiukd
ZDxMd4Itnpd3xz3GVYmuapEMTolCuhTleg0UL3iF4FNxFJ+X9BSR6yc4ilXZRX1g
pKdYb6Aixo/E8CMzPp8nMLLfjb5wQqHRtbDlv5NII0iv262eZTKtWVVby0yWZtz6
8srJIBywy32LosEr0E86/95yIOWWonyNYIQmZq5SgmdamMjkfiJqSbvYnFiIH7Ka
ztEMJaSADey5IRwjJhWZFmDuvBsBzZMLPbCkSNU+xFEa/SZf8MsyR4xJkE95TleT
Q7kNc5bMCZmQj6wGk160L8WvdAPkIVIad/UWoQVmQDW5n2uKzkN7uaf3KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA4OpZiRysZ2iH55DIlyOL6BuaHdMB8GA1UdIwQY
MBaAFCuy0CNBwRlJqMhxU/hmwPaPG71zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kN2E3OTQtNWUzOC00ZTg0LTgxNTYt
NDYwNjU2ZmUzYWI1LzEvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9kN2E3OTQtNWUzOC00ZTg0LTgxNTYtNDYwNjU2ZmUzYWI1
LzEvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM4rYJ+y4
biy5r24GPu0QYFw1zQrYn98SMtt+njoxvUEgwFcTAzVfZpykoENw++LyqXzU03JH
VMNVx9G3JmB7c05tEW5fPctS4LBklI/YPC/ZBMYrDzgq9cdsUaweBC2FyH5tn/yU
057YYqMcQ7GsARXKiouIbhftt8YvTiLi4XRVho3+CnGwEMV6V1Q6JQQvK/oETJRC
uNYUKtyNwrvTKbien0G2IkJQB4in6e1Z6FyZ1JWwHJCXNrzZlSfAeL6tQd+qh8tS
0mEH3a3jUIpOw1OvogypIXYyPk9tSdXnlSeyZNSJ9DjXDLUHeuU510/8AMEPtOeF
VYZE7H3lQYmwWA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:35:21 2025 by rpki-client