Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: yWaLfVZaBLc3+9Q5nQGNyI8FE8TBlHjn4dAhBiXJUuU=
Subject key identifier: 94:70:29:51:BA:56:77:0C:0C:8C:FB:FF:9E:DF:29:A3:C9:0D:F6:3C
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 0199504129725E510D2B9756822AFDFF9F69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 0434
Signing time: Tue 16 Sep 2025 02:01:11 +0000
Manifest this update: Tue 16 Sep 2025 02:01:11 +0000
Manifest next update: Wed 17 Sep 2025 02:01:11 +0000
Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
3: HxZyQaGrGtOk8RKg0Mhbl06w1Co.roa (hash: T6PK192RHox/GMNjjl8t8FiOFdhRf0h3waZVXZOPKpk=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: UrYGGs5x17H4eI2F6IxwvprKVBBzIiKmfqp7CfZHpI4=)
5: PwMQ2FB61zxu5sQ2E09luTqKMvk.roa (hash: izn212mH5oYV5cpl26pTxpZxIsUMzoPkaD7C7yvNm8E=)
6: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
7: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=)
8: od9af71GeQfA9Hxa-pUi9HfyQbQ.roa (hash: XWeJ2o3YIDMGq+Gf7bx+E7FN5efcdXQkm09+SRPSSXw=)
9: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 22:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:50:41:29:72:5e:51:0d:2b:97:56:82:2a:fd:ff:9f:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Sep 16 02:01:11 2025 GMT
Not After : Sep 17 02:01:11 2025 GMT
Subject: CN=94702951ba56770c0c8cfbff9edf29a3c90df63c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7e:2c:9f:c7:82:ec:8d:9e:48:fa:3e:a4:17:
11:87:ae:7a:76:61:d7:bd:66:c3:38:c9:54:af:85:
8c:26:5d:b3:0b:c0:7e:81:27:cb:64:23:e8:04:ca:
7d:14:0f:dc:03:f9:67:56:33:ad:db:9d:bd:1e:22:
fc:5b:96:68:7a:43:28:82:7a:f0:7c:65:ad:ed:d5:
d8:d8:41:7e:33:20:4b:d7:47:30:04:35:83:56:fa:
e9:4c:6e:57:69:f5:4c:5f:c3:6e:6c:cd:1a:d8:69:
34:b8:7d:b1:53:aa:45:5b:b3:3d:cf:23:78:3d:c1:
64:e0:b7:1b:13:1a:27:be:88:0f:16:2f:e8:82:71:
f4:46:c9:d8:10:fe:b6:e6:72:54:38:9a:aa:e1:ce:
ab:43:fe:ea:85:2c:bf:19:73:93:a9:27:5e:93:93:
59:5e:2a:13:0c:f7:26:2f:b5:75:ae:b2:69:ef:97:
f6:85:cc:1e:a3:ac:86:ce:77:95:b8:8d:97:73:2c:
24:f5:af:37:9c:5f:36:99:01:f9:bd:ff:91:9d:25:
fb:7d:c9:4d:b7:9f:a7:0c:71:c8:2d:ab:45:4a:b0:
55:70:e4:17:cc:e0:29:a9:5f:02:45:b7:2c:b0:8e:
76:98:8f:91:19:eb:7f:14:5f:f2:61:32:c0:4e:61:
1e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:70:29:51:BA:56:77:0C:0C:8C:FB:FF:9E:DF:29:A3:C9:0D:F6:3C
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:2b:bb:c5:49:73:64:ef:1e:a6:97:4f:13:fe:2a:2c:a0:3c:
93:83:9c:4b:4e:72:52:4f:9d:fa:e4:13:b7:62:9a:80:98:f0:
bd:6f:c6:bb:e0:70:93:8d:d1:96:e6:cd:b3:aa:71:6a:3d:65:
70:5b:77:cb:83:8b:55:50:e3:d0:7c:f8:ad:e9:45:e0:f6:99:
db:03:c9:8d:8a:f5:97:84:c9:d8:8c:9b:77:6c:7a:0e:de:92:
e3:c1:78:ed:2a:b5:ac:b4:70:6c:48:ec:c2:ff:17:43:2d:3e:
84:c6:a7:f6:8b:e5:f4:be:34:04:ce:1c:6c:b2:55:d9:9e:ff:
9c:ed:8d:b5:25:11:a5:de:e5:61:96:c7:f3:e2:23:43:fe:30:
b8:57:25:1e:61:6f:9d:c0:e4:b4:e7:40:e6:20:e0:25:5b:eb:
ad:37:9f:58:cf:10:c4:e5:5c:c6:d2:49:29:62:7e:b7:2d:cb:
d5:10:ad:9f:93:1b:dc:16:95:b6:41:75:ad:7a:3c:f5:53:26:
d3:72:61:2b:d3:5f:27:d9:07:4b:38:fa:12:2c:88:a9:47:e6:
89:1e:4e:fe:b8:60:dc:fe:42:8b:01:58:50:2a:fe:f1:ae:4e:
0f:bf:57:78:d0:38:ee:15:01:a3:81:ca:02:87:61:de:0d:ea:
b8:1e:f3:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZlQQSlyXlENK5dWgir9/59pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh
NTI2ZDgwHhcNMjUwOTE2MDIwMTExWhcNMjUwOTE3MDIwMTExWjAzMTEwLwYDVQQD
Eyg5NDcwMjk1MWJhNTY3NzBjMGM4Y2ZiZmY5ZWRmMjlhM2M5MGRmNjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnn4sn8eC7I2eSPo+pBcRh656dmHX
vWbDOMlUr4WMJl2zC8B+gSfLZCPoBMp9FA/cA/lnVjOt2529HiL8W5ZoekMognrw
fGWt7dXY2EF+MyBL10cwBDWDVvrpTG5XafVMX8NubM0a2Gk0uH2xU6pFW7M9zyN4
PcFk4LcbExonvogPFi/ognH0RsnYEP625nJUOJqq4c6rQ/7qhSy/GXOTqSdek5NZ
XioTDPcmL7V1rrJp75f2hcweo6yGzneVuI2Xcywk9a83nF82mQH5vf+RnSX7fclN
t5+nDHHILatFSrBVcOQXzOApqV8CRbcssI52mI+RGet/FF/yYTLATmEeZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJRwKVG6VncMDIz7/57fKaPJDfY8MB8GA1UdIwQY
MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt
MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh
LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAyu7xUlz
ZO8eppdPE/4qLKA8k4OcS05yUk+d+uQTt2KagJjwvW/Gu+Bwk43RlubNs6pxaj1l
cFt3y4OLVVDj0Hz4relF4PaZ2wPJjYr1l4TJ2Iybd2x6Dt6S48F47Sq1rLRwbEjs
wv8XQy0+hMan9ovl9L40BM4cbLJV2Z7/nO2NtSURpd7lYZbH8+IjQ/4wuFclHmFv
ncDktOdA5iDgJVvrrTefWM8QxOVcxtJJKWJ+ty3L1RCtn5Mb3BaVtkF1rXo89VMm
03JhK9NfJ9kHSzj6EiyIqUfmiR5O/rhg3P5CiwFYUCr+8a5OD79XeNA47hUBo4HK
Aodh3g3quB7zDg==
-----END CERTIFICATE-----
Generated at Tue Sep 16 05:42:53 2025 by rpki-client