Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: 3c+YkT+E0P3cPkgitCu5xktoNZzftMNjdzGd6acTJ30=
Subject key identifier: F2:34:DF:B1:FB:46:9D:98:84:9E:11:5B:A7:DF:C8:7F:99:87:27:92
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 019853B2229F88FDA679413AD78457BC5089
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0A14
Signing time: Tue 29 Jul 2025 01:00:39 +0000
Manifest this update: Tue 29 Jul 2025 01:00:39 +0000
Manifest next update: Wed 30 Jul 2025 01:00:39 +0000
Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: wDrPeR4nmeGQuVXY1in1QWz2X2rTxM+kzZRAmjbagXw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Jul 2025 23:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:53:b2:22:9f:88:fd:a6:79:41:3a:d7:84:57:bc:50:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Jul 29 01:00:39 2025 GMT
Not After : Jul 30 01:00:39 2025 GMT
Subject: CN=f234dfb1fb469d98849e115ba7dfc87f99872792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1d:fd:34:1f:ae:6c:da:9d:44:86:24:26:c1:
ca:37:94:17:6f:ca:2f:e9:f1:3b:b2:c0:b3:3e:c0:
74:ed:11:58:76:8d:28:9a:a6:f5:12:cd:5b:6b:93:
a4:1f:5e:13:bf:86:93:ac:70:d4:49:48:3f:4e:74:
4f:1e:04:9c:02:71:05:a2:15:d7:83:e6:38:62:1c:
95:60:17:35:dd:74:4a:01:69:c5:eb:70:fa:af:1f:
b2:53:0d:16:85:ef:22:a2:c4:2f:be:c7:a8:65:d6:
ee:91:ee:6a:71:bf:55:3f:b8:5b:6e:11:91:f7:f1:
04:f0:cf:63:c6:3f:4e:34:b1:6f:74:75:40:70:36:
cd:07:25:5f:1b:c9:32:63:e5:45:71:59:21:8c:df:
0f:95:cb:dd:e7:86:c6:7f:de:f5:84:2b:4e:50:3e:
d4:ce:da:90:bb:0a:bd:4b:23:ce:7d:a0:1a:c0:2b:
af:04:4c:d0:3b:21:95:82:f6:fc:3a:19:5e:9b:ff:
65:ba:52:af:0a:56:f3:73:35:a2:55:18:13:67:50:
77:31:96:d0:98:cc:99:25:11:a3:8c:09:b4:c1:9d:
4e:88:cb:2d:81:02:39:86:c0:69:8e:db:e5:4a:c7:
5b:8e:55:1a:95:c6:85:92:60:7d:a9:7c:e8:01:f3:
5c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:34:DF:B1:FB:46:9D:98:84:9E:11:5B:A7:DF:C8:7F:99:87:27:92
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:b7:96:1c:1b:1e:f3:f8:1d:68:c3:ac:84:af:55:3a:65:cd:
07:16:47:e7:1d:52:b0:a2:a2:2f:bc:6f:48:a7:44:60:52:b2:
51:b2:d0:9d:d7:a1:51:76:00:6a:dc:49:20:f6:a0:23:ac:82:
dc:69:ba:9e:3b:a2:5a:7b:65:c2:48:21:08:8d:4a:8e:35:cb:
6b:ac:5a:a8:39:37:1a:89:43:b3:73:38:a8:8d:58:04:dc:d5:
c3:da:8e:10:fb:9d:ff:99:65:08:2b:bd:4d:24:63:de:ba:68:
5a:f4:8b:49:ac:eb:f7:bc:20:22:08:fc:77:4e:eb:1a:97:09:
6a:51:a2:f1:01:2b:ba:ea:32:f0:4e:81:3c:ab:09:3d:03:48:
d9:92:29:14:95:97:af:a7:8f:30:3f:9e:0f:ea:4f:a4:97:dd:
ff:b9:26:93:37:ee:ed:18:89:2d:b6:11:b1:14:ce:8f:26:b9:
5a:e3:cd:59:6e:fb:7b:1b:40:37:1d:20:a2:09:3c:21:7e:24:
32:0c:f1:be:10:ed:2c:bd:19:f9:f3:c6:e1:f9:96:7f:4f:9d:
22:a5:34:d8:a2:0c:f4:2f:19:a8:de:41:02:61:52:dc:73:b7:
ca:ee:0c:fc:44:6b:9b:56:08:32:35:9d:00:79:8e:1a:f4:1f:
a0:55:96:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhTsiKfiP2meUE614RXvFCJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNjgwMTQ1Y2ZiMjM3MWVjZjRjMzY0NzI2YjY0NzA4NTcy
YzQyMjMwHhcNMjUwNzI5MDEwMDM5WhcNMjUwNzMwMDEwMDM5WjAzMTEwLwYDVQQD
EyhmMjM0ZGZiMWZiNDY5ZDk4ODQ5ZTExNWJhN2RmYzg3Zjk5ODcyNzkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwR39NB+ubNqdRIYkJsHKN5QXb8ov
6fE7ssCzPsB07RFYdo0omqb1Es1ba5OkH14Tv4aTrHDUSUg/TnRPHgScAnEFohXX
g+Y4YhyVYBc13XRKAWnF63D6rx+yUw0Whe8iosQvvseoZdbuke5qcb9VP7hbbhGR
9/EE8M9jxj9ONLFvdHVAcDbNByVfG8kyY+VFcVkhjN8Plcvd54bGf971hCtOUD7U
ztqQuwq9SyPOfaAawCuvBEzQOyGVgvb8Ohlem/9lulKvClbzczWiVRgTZ1B3MZbQ
mMyZJRGjjAm0wZ1OiMstgQI5hsBpjtvlSsdbjlUalcaFkmB9qXzoAfNcLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPI037H7Rp2YhJ4RW6ffyH+ZhyeSMB8GA1UdIwQY
MBaAFJJoAUXPsjcez0w2Rya2RwhXLEIjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQt
MTNkN2JlYmY0N2JhLzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQtMTNkN2JlYmY0N2Jh
LzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWLeWHBse
8/gdaMOshK9VOmXNBxZH5x1SsKKiL7xvSKdEYFKyUbLQndehUXYAatxJIPagI6yC
3Gm6njuiWntlwkghCI1KjjXLa6xaqDk3GolDs3M4qI1YBNzVw9qOEPud/5llCCu9
TSRj3rpoWvSLSazr97wgIgj8d07rGpcJalGi8QEruuoy8E6BPKsJPQNI2ZIpFJWX
r6ePMD+eD+pPpJfd/7kmkzfu7RiJLbYRsRTOjya5WuPNWW77extANx0gogk8IX4k
MgzxvhDtLL0Z+fPG4fmWf0+dIqU02KIM9C8ZqN5BAmFS3HO3yu4M/ERrm1YIMjWd
AHmOGvQfoFWWIw==
-----END CERTIFICATE-----
Generated at Tue Jul 29 04:24:55 2025 by rpki-client