Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
File: kq8Dyi32Qjt30O83N7D0eRqgNaM.mft (raw, json)
Hash identifier: CyPBHpOh0v0SAk9bYotXCAgbc7pIxSheMY524vuBAG8=
Subject key identifier: DA:3F:D4:A4:3E:E9:74:DC:10:52:C0:F8:D9:4D:69:BE:94:30:1F:0A
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 0197DBF71577D9C23AB1BA40893D5E1F3916
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
Manifest number: 0A57
Signing time: Sat 05 Jul 2025 19:01:32 +0000
Manifest this update: Sat 05 Jul 2025 19:01:32 +0000
Manifest next update: Sun 06 Jul 2025 19:01:32 +0000
Files and hashes: 1: XFrF4ZD8RKmENGKuXlNfyh9_oV8.roa (hash: Syc9HmjiF/DkUOhl4IVh1oQ9jwD6L7ptWtUgxSy9ut8=)
2: kq8Dyi32Qjt30O83N7D0eRqgNaM.crl (hash: ggO4ux0f3hWk7cdo/CLxbtClAAIqSTqjHj5t3QRr/MI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 16:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:db:f7:15:77:d9:c2:3a:b1:ba:40:89:3d:5e:1f:39:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: Jul 5 19:01:32 2025 GMT
Not After : Jul 6 19:01:32 2025 GMT
Subject: CN=da3fd4a43ee974dc1052c0f8d94d69be94301f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:bd:5d:f2:cc:e6:1d:d8:54:7f:4a:f3:ed:01:
e3:36:59:c7:bd:c0:09:ee:ac:0a:33:96:9e:4e:0e:
54:04:73:ae:7e:46:5f:4b:36:fb:cf:c7:43:c3:45:
9c:a5:00:de:fb:24:60:75:0e:8c:f8:61:be:5d:46:
45:8a:61:2e:56:3c:1a:5f:22:9d:43:c2:00:51:a9:
46:68:55:73:42:a5:8c:38:34:81:79:4d:03:e6:4b:
f1:62:9b:08:0a:b4:92:5d:3a:da:82:e0:f0:08:0c:
d4:5f:3f:a4:6a:13:15:b7:3c:e5:99:ce:b5:68:46:
6f:1d:50:47:e1:ac:78:b1:d5:03:69:ac:99:f6:0c:
2f:c7:a9:c7:5e:20:bd:d7:ca:d0:87:0a:6b:00:78:
bc:61:13:7e:46:63:9c:1d:1f:b9:0c:4c:ad:c4:cf:
8a:c1:27:7e:9f:0a:eb:2c:56:03:04:81:43:38:1c:
87:a1:af:2d:90:65:ac:e6:51:55:02:a0:07:d0:f2:
22:bf:8c:3a:23:b7:d7:0d:47:a5:1f:a8:dc:dd:5b:
73:b5:31:bf:0c:2c:7b:ee:22:11:10:b3:a8:8b:ac:
df:d9:33:63:c4:f8:7d:88:ea:ea:3f:e8:7b:e2:f4:
b1:cd:7e:e8:68:1c:4a:d2:b8:e4:70:47:87:1f:76:
26:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:3F:D4:A4:3E:E9:74:DC:10:52:C0:F8:D9:4D:69:BE:94:30:1F:0A
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:d0:a0:38:3e:50:30:fb:eb:57:59:46:b4:96:b8:b8:46:59:
04:76:7f:e7:46:52:45:e9:fc:df:61:2e:d9:9b:c6:9c:1c:63:
c0:e8:14:93:ad:3d:a7:82:17:09:f4:2a:7b:2a:f9:70:bf:f0:
b6:dc:fa:56:35:c6:ec:c5:57:dd:f9:ad:88:89:16:7d:99:f3:
7e:2d:a4:d4:6a:b7:fe:c0:4b:34:32:8f:4b:38:08:0d:fd:e4:
e1:85:14:9c:73:bb:07:6a:da:53:42:08:6d:94:31:f9:a9:91:
a0:0a:c0:b4:cf:ad:98:a6:86:61:93:13:56:2c:da:4b:7e:07:
bc:f9:28:80:75:0d:01:9b:5c:8c:03:ab:73:b5:63:d7:30:5b:
e1:d2:c3:31:e3:68:a4:7f:27:e5:d9:c9:a5:3b:3a:bd:bc:e1:
b7:cf:04:31:76:fb:44:2a:56:2c:ac:3c:94:42:15:8e:bc:85:
3f:a2:87:49:de:43:85:49:41:8e:c8:1e:49:cd:9a:12:a2:94:
66:b8:21:72:a5:e8:1d:4e:99:e4:58:14:c7:c1:fa:bc:13:96:
35:4f:41:16:e4:33:fb:62:55:7b:6e:5a:87:3f:fe:6a:93:3d:
ff:07:df:89:8e:68:65:b9:64:c3:2a:dc:9d:4a:57:4d:fe:a2:
9a:d1:a1:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfb9xV32cI6sbpAiT1eHzkWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyYWYwM2NhMmRmNjQyM2I3N2QwZWYzNzM3YjBmNDc5MWFh
MDM1YTMwHhcNMjUwNzA1MTkwMTMyWhcNMjUwNzA2MTkwMTMyWjAzMTEwLwYDVQQD
EyhkYTNmZDRhNDNlZTk3NGRjMTA1MmMwZjhkOTRkNjliZTk0MzAxZjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnb1d8szmHdhUf0rz7QHjNlnHvcAJ
7qwKM5aeTg5UBHOufkZfSzb7z8dDw0WcpQDe+yRgdQ6M+GG+XUZFimEuVjwaXyKd
Q8IAUalGaFVzQqWMODSBeU0D5kvxYpsICrSSXTraguDwCAzUXz+kahMVtzzlmc61
aEZvHVBH4ax4sdUDaayZ9gwvx6nHXiC918rQhwprAHi8YRN+RmOcHR+5DEytxM+K
wSd+nwrrLFYDBIFDOByHoa8tkGWs5lFVAqAH0PIiv4w6I7fXDUelH6jc3VtztTG/
DCx77iIRELOoi6zf2TNjxPh9iOrqP+h74vSxzX7oaBxK0rjkcEeHH3Ym5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNo/1KQ+6XTcEFLA+NlNab6UMB8KMB8GA1UdIwQY
MBaAFJKvA8ot9kI7d9DvNzew9HkaoDWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS85ODIyYmMtMTU5My00OThjLThmNmEt
NzAzYjZiNzBhN2VjLzEva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS85ODIyYmMtMTU5My00OThjLThmNmEtNzAzYjZiNzBhN2Vj
LzEva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABtCgOD5Q
MPvrV1lGtJa4uEZZBHZ/50ZSRen832Eu2ZvGnBxjwOgUk609p4IXCfQqeyr5cL/w
ttz6VjXG7MVX3fmtiIkWfZnzfi2k1Gq3/sBLNDKPSzgIDf3k4YUUnHO7B2raU0II
bZQx+amRoArAtM+tmKaGYZMTVizaS34HvPkogHUNAZtcjAOrc7Vj1zBb4dLDMeNo
pH8n5dnJpTs6vbzht88EMXb7RCpWLKw8lEIVjryFP6KHSd5DhUlBjsgeSc2aEqKU
ZrghcqXoHU6Z5FgUx8H6vBOWNU9BFuQz+2JVe25ahz/+apM9/wffiY5oZblkwyrc
nUpXTf6imtGhkQ==
-----END CERTIFICATE-----
Generated at Sun Jul 6 00:31:28 2025 by rpki-client