Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
File: kGQm9IPDaqzahzIySriK1YAMmi0.mft (raw, json)
Hash identifier: UMPz2Zr3JGVIIHrxGlMPw+6JcV1WCfMbDQzpydWbsfo=
Subject key identifier: 2A:92:16:97:0D:6B:61:C9:04:25:D1:F2:D0:E9:6E:89:F0:94:9E:DB
Authority key identifier: 90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
Certificate issuer: /CN=906426f483c36aacda8732324ab88ad5800c9a2d
Certificate serial: 019847E528A6095928857A31B5AC79130A56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
Manifest number: 0B23
Signing time: Sat 26 Jul 2025 18:00:57 +0000
Manifest this update: Sat 26 Jul 2025 18:00:57 +0000
Manifest next update: Sun 27 Jul 2025 18:00:57 +0000
Files and hashes: 1: gLZLrbhpO6mWtu79cX_I9beQtfY.roa (hash: FKC1b4NqDGusVuG1PsHV/OorcR6VfmcWdy6GLsbONNI=)
2: kGQm9IPDaqzahzIySriK1YAMmi0.crl (hash: Yo1sEoZ0T97qkPIbpJkCM4pNlDB7iZL8YlmizUvh5BM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:e5:28:a6:09:59:28:85:7a:31:b5:ac:79:13:0a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=906426f483c36aacda8732324ab88ad5800c9a2d
Validity
Not Before: Jul 26 18:00:57 2025 GMT
Not After : Jul 27 18:00:57 2025 GMT
Subject: CN=2a9216970d6b61c90425d1f2d0e96e89f0949edb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c3:ac:24:50:6f:b4:e1:3a:ff:91:45:c3:36:
a7:99:ba:79:b8:ca:67:33:58:4a:52:31:25:35:00:
dc:c6:b5:90:e7:7e:4a:ac:fa:11:5e:67:6d:48:ad:
01:1e:21:16:46:d5:3d:85:2a:70:81:cc:e8:37:c5:
56:bd:e1:ac:4f:be:0f:42:87:59:a8:27:8b:b9:56:
fa:ff:f0:ba:71:3f:55:fb:47:b9:be:54:88:b2:4c:
d2:c4:ee:4f:48:8c:bb:82:99:1a:57:2d:d2:0d:66:
53:21:1e:a9:e0:4d:50:53:8c:d5:f5:b2:59:88:f0:
28:55:8f:3e:8a:67:f5:8a:ab:6b:3f:42:b5:c3:a8:
1f:3e:e2:b8:6b:fa:18:06:79:fd:05:25:09:f7:20:
d1:c9:e1:fc:d6:77:c5:a6:ad:f2:9c:cb:47:c2:92:
af:42:43:41:89:44:bb:3e:62:e3:49:9f:cc:29:4f:
ab:ec:2e:ac:00:0d:c7:10:f7:89:53:ed:74:9b:37:
c4:90:4d:aa:89:84:fe:14:9e:d2:23:ff:af:1d:07:
eb:1d:2d:52:37:52:7e:25:00:71:6b:fa:51:7a:66:
27:0c:0b:d1:12:5d:5c:d0:7f:80:af:16:cc:2a:67:
48:a5:1c:a3:85:c5:da:7e:b6:e9:1a:7f:ac:c0:9d:
30:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:92:16:97:0D:6B:61:C9:04:25:D1:F2:D0:E9:6E:89:F0:94:9E:DB
X509v3 Authority Key Identifier:
keyid:90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:ca:1a:19:aa:e5:b6:66:95:d0:f0:e6:70:3f:d7:06:ad:0a:
71:76:69:13:19:79:d8:d7:31:4f:e5:74:aa:ad:68:e4:ef:52:
e6:c2:c5:a1:3c:7a:46:89:9e:39:19:c3:e2:94:6f:7c:09:7c:
fb:a1:62:ad:af:60:c9:f5:4f:0f:e1:a1:5d:64:3d:ab:5c:e4:
fc:12:76:14:35:04:44:c1:2f:c3:a0:8f:73:3c:ae:8d:c2:e9:
45:32:e8:9d:22:9c:a9:f3:8c:dd:81:4d:26:41:66:a9:75:12:
73:1a:b5:56:fd:6e:27:a7:4e:16:5c:b6:05:ca:a5:dc:cf:d2:
8d:04:1c:4a:1c:be:ae:5a:57:6e:0e:e3:24:84:38:31:db:f1:
39:70:ca:f4:59:63:d2:79:f3:ff:42:b2:a6:1d:e6:ec:f0:13:
66:35:4c:ed:86:19:10:88:fe:c6:52:b3:71:2f:6e:02:cc:61:
1b:b2:b8:57:01:58:eb:de:cb:55:40:a1:05:a3:4b:1f:35:1b:
ce:d0:63:8a:c8:ab:11:04:fd:81:20:e4:db:34:7d:26:ff:29:
6e:7f:35:ec:64:07:5d:dd:9a:8f:c8:ad:eb:b3:70:99:dc:e1:
73:ef:36:7e:3f:18:d6:77:82:c1:ce:7a:1f:1d:82:76:4a:4d:
6a:1b:c4:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhH5SimCVkohXoxtax5EwpWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNjQyNmY0ODNjMzZhYWNkYTg3MzIzMjRhYjg4YWQ1ODAw
YzlhMmQwHhcNMjUwNzI2MTgwMDU3WhcNMjUwNzI3MTgwMDU3WjAzMTEwLwYDVQQD
EygyYTkyMTY5NzBkNmI2MWM5MDQyNWQxZjJkMGU5NmU4OWYwOTQ5ZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8OsJFBvtOE6/5FFwzanmbp5uMpn
M1hKUjElNQDcxrWQ535KrPoRXmdtSK0BHiEWRtU9hSpwgczoN8VWveGsT74PQodZ
qCeLuVb6//C6cT9V+0e5vlSIskzSxO5PSIy7gpkaVy3SDWZTIR6p4E1QU4zV9bJZ
iPAoVY8+imf1iqtrP0K1w6gfPuK4a/oYBnn9BSUJ9yDRyeH81nfFpq3ynMtHwpKv
QkNBiUS7PmLjSZ/MKU+r7C6sAA3HEPeJU+10mzfEkE2qiYT+FJ7SI/+vHQfrHS1S
N1J+JQBxa/pRemYnDAvREl1c0H+ArxbMKmdIpRyjhcXafrbpGn+swJ0wZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCqSFpcNa2HJBCXR8tDpbonwlJ7bMB8GA1UdIwQY
MBaAFJBkJvSDw2qs2ocyMkq4itWADJotMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0dRbTlJUERhcXphaHpJeVNyaUsxWUFNbWkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85NGQ0NDEtZDk4Ny00MDYyLTg5YzEt
OTRjNWFkMTdhN2EwLzEva0dRbTlJUERhcXphaHpJeVNyaUsxWUFNbWkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85NGQ0NDEtZDk4Ny00MDYyLTg5YzEtOTRjNWFkMTdhN2Ew
LzEva0dRbTlJUERhcXphaHpJeVNyaUsxWUFNbWkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk8oaGarl
tmaV0PDmcD/XBq0KcXZpExl52NcxT+V0qq1o5O9S5sLFoTx6RomeORnD4pRvfAl8
+6Fira9gyfVPD+GhXWQ9q1zk/BJ2FDUERMEvw6CPczyujcLpRTLonSKcqfOM3YFN
JkFmqXUScxq1Vv1uJ6dOFly2Bcql3M/SjQQcShy+rlpXbg7jJIQ4MdvxOXDK9Flj
0nnz/0Kyph3m7PATZjVM7YYZEIj+xlKzcS9uAsxhG7K4VwFY697LVUChBaNLHzUb
ztBjisirEQT9gSDk2zR9Jv8pbn817GQHXd2aj8it67Nwmdzhc+82fj8Y1neCwc56
Hx2CdkpNahvEjQ==
-----END CERTIFICATE-----
Generated at Sat Jul 26 20:58:03 2025 by rpki-client