Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
File: KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft (raw, json)
Hash identifier: U4OwV8oEP928Xs9k/Bjq8p+KFB79CvJ+ksQI+pZDH3o=
Subject key identifier: 37:A2:D6:EA:62:B8:B7:38:27:BC:7E:44:C7:F8:5C:6B:36:0C:7A:25
Authority key identifier: 28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
Certificate issuer: /CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Certificate serial: 0198D65FE21C94DEFD25D8E877B034FCB819
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
Manifest number: 0B30
Signing time: Sat 23 Aug 2025 10:01:04 +0000
Manifest this update: Sat 23 Aug 2025 10:01:04 +0000
Manifest next update: Sun 24 Aug 2025 10:01:04 +0000
Files and hashes: 1: 0i9Bsr9ABLnx3mgPWtu21_vME3g.roa (hash: TMrcqTSOi1Ov7CcLLSWohgeiaaCi8xEADwSrQIF/DCo=)
2: KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl (hash: aXxxIlL/ieXti6s+QT8UNG3rN0vZ9c6K9y1mTiQ/vQY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:e2:1c:94:de:fd:25:d8:e8:77:b0:34:fc:b8:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Validity
Not Before: Aug 23 10:01:04 2025 GMT
Not After : Aug 24 10:01:04 2025 GMT
Subject: CN=37a2d6ea62b8b73827bc7e44c7f85c6b360c7a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:02:c4:d7:bf:4f:62:72:b9:79:b7:42:4a:23:
45:b5:2c:69:b0:3f:da:c9:27:24:f2:7d:f5:fb:25:
14:65:ba:a0:c0:fb:9d:ae:35:ac:96:c1:18:05:0e:
ea:8a:b5:9a:3c:af:f9:88:c4:3a:6b:66:4c:bf:31:
27:a9:13:3a:a9:24:23:55:ea:bf:24:53:b3:a6:a4:
8a:5a:69:97:5a:b8:30:fd:e8:60:e9:f2:bb:d6:ee:
58:fa:73:98:18:3c:bc:04:07:5d:c3:c3:f7:6d:69:
ac:da:f1:84:f4:21:fa:77:d0:25:bd:da:27:f8:60:
78:ec:34:02:6e:88:12:a6:97:64:a5:c8:d4:d5:94:
d7:f0:c8:54:29:ae:02:bd:8c:34:f2:c7:71:74:37:
14:df:62:d1:a0:a1:f3:b2:b2:1a:a6:17:01:f7:99:
52:b0:66:47:03:4d:22:7d:ef:9b:cb:2b:21:44:c5:
f5:1c:8b:2d:84:90:79:4c:93:dc:7c:a8:8e:6f:74:
a0:06:25:66:34:59:86:60:b6:ee:40:f7:5e:b1:d0:
ce:4d:9f:c7:c0:e2:08:9c:20:bc:b9:9d:dd:d0:2b:
56:11:ad:55:b3:08:17:85:48:d8:a5:dc:a1:1a:1a:
a0:9b:a5:1a:ff:2f:37:2e:e2:c4:c8:75:fe:15:ef:
69:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A2:D6:EA:62:B8:B7:38:27:BC:7E:44:C7:F8:5C:6B:36:0C:7A:25
X509v3 Authority Key Identifier:
keyid:28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:0c:4e:71:c1:4c:d2:17:ea:ad:31:b9:66:37:7b:db:97:1d:
28:21:59:79:96:0e:0c:d9:86:68:4e:f2:72:df:86:2f:4e:a8:
ba:46:ec:2e:91:ae:8d:07:ae:94:4d:ab:3e:9b:bf:9c:80:8d:
61:d4:7a:07:d7:b8:de:48:1a:f3:6c:3d:c1:95:4b:ca:e5:3b:
ff:0b:7f:fa:af:2e:1c:4c:94:8a:73:0d:bc:b7:7b:66:40:18:
8c:52:33:17:f1:05:be:a5:5c:bc:90:14:99:73:9c:2e:e8:73:
2b:74:e6:6f:f9:8e:7d:08:05:c9:e9:e2:22:16:52:6f:92:db:
cf:28:21:a9:14:1d:cd:87:e2:db:a6:8a:c2:5a:4f:20:7e:ae:
e3:32:3e:41:e5:18:6e:77:62:a9:08:bb:7a:39:86:11:7e:44:
62:cf:e7:fa:06:d0:80:41:d0:ba:07:67:27:93:93:19:63:34:
40:7f:6f:c3:d0:ad:b7:76:06:2d:8e:99:67:ea:4f:70:c9:38:
e6:5f:b4:9c:81:14:30:e9:a0:0e:ce:f0:ac:e2:99:55:31:96:
4a:ee:19:62:16:f3:78:7c:0c:b7:ea:f4:70:73:8b:4e:c5:49:
d5:11:bd:ae:be:34:54:1c:79:d5:2c:eb:ba:44:a4:ce:02:18:
14:10:94:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX+IclN79Jdjod7A0/LgZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4Y2I1ZjNmYjk1NzI1MWFhZDRiYTA5ZDBiYWI3MzUyYjc0
YmIwN2QwHhcNMjUwODIzMTAwMTA0WhcNMjUwODI0MTAwMTA0WjAzMTEwLwYDVQQD
EygzN2EyZDZlYTYyYjhiNzM4MjdiYzdlNDRjN2Y4NWM2YjM2MGM3YTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+ALE179PYnK5ebdCSiNFtSxpsD/a
ySck8n31+yUUZbqgwPudrjWslsEYBQ7qirWaPK/5iMQ6a2ZMvzEnqRM6qSQjVeq/
JFOzpqSKWmmXWrgw/ehg6fK71u5Y+nOYGDy8BAddw8P3bWms2vGE9CH6d9Alvdon
+GB47DQCbogSppdkpcjU1ZTX8MhUKa4CvYw08sdxdDcU32LRoKHzsrIaphcB95lS
sGZHA00ife+byyshRMX1HIsthJB5TJPcfKiOb3SgBiVmNFmGYLbuQPdesdDOTZ/H
wOIInCC8uZ3d0CtWEa1VswgXhUjYpdyhGhqgm6Ua/y83LuLEyHX+Fe9p1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDei1upiuLc4J7x+RMf4XGs2DHolMB8GA1UdIwQY
MBaAFCjLXz+5VyUarUugnQurc1K3S7B9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9lNjYzMmItMWZiZi00OTZmLWIzNTUt
MTUzNmZjNzgzODVkLzEvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9lNjYzMmItMWZiZi00OTZmLWIzNTUtMTUzNmZjNzgzODVk
LzEvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABQxOccFM
0hfqrTG5Zjd725cdKCFZeZYODNmGaE7yct+GL06oukbsLpGujQeulE2rPpu/nICN
YdR6B9e43kga82w9wZVLyuU7/wt/+q8uHEyUinMNvLd7ZkAYjFIzF/EFvqVcvJAU
mXOcLuhzK3Tmb/mOfQgFyeniIhZSb5LbzyghqRQdzYfi26aKwlpPIH6u4zI+QeUY
bndiqQi7ejmGEX5EYs/n+gbQgEHQugdnJ5OTGWM0QH9vw9Ctt3YGLY6ZZ+pPcMk4
5l+0nIEUMOmgDs7wrOKZVTGWSu4ZYhbzeHwMt+r0cHOLTsVJ1RG9rr40VBx51Szr
ukSkzgIYFBCUNw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:18:59 2025 by rpki-client