Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: f2255tCuqTlO8aRcvjA66yJor6lnTNZ9Sq2sFG26VGA=
Subject key identifier: C1:55:84:5F:75:23:4E:91:AC:8B:29:99:4E:0C:0D:ED:0E:E6:8E:00
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019740D369C4AE4991394E8EBEC069212CAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 0322
Signing time: Thu 05 Jun 2025 16:01:26 +0000
Manifest this update: Thu 05 Jun 2025 16:01:26 +0000
Manifest next update: Fri 06 Jun 2025 16:01:26 +0000
Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
3: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: AIk60xF7a00uy/59y6j6mYZWyXBpP7Fol6pm5CsACvI=)
4: OdjteK9gKG4YNaSPtAZxPfbKTlg.roa (hash: C1n8BPEFHA0rRgZVDgK4q8CBrVeD5FeMnjLcyYE1XMw=)
5: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
6: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=)
7: xTf5pi1O1OBOL8Roy41K3aIww6Y.roa (hash: S2VqtYqj28mSbHWyl9+CNpKvGeC5wqTzL6SGHQbpvl4=)
8: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:40:d3:69:c4:ae:49:91:39:4e:8e:be:c0:69:21:2c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Jun 5 16:01:26 2025 GMT
Not After : Jun 6 16:01:26 2025 GMT
Subject: CN=c155845f75234e91ac8b29994e0c0ded0ee68e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3a:b0:35:c9:99:c3:f8:fe:59:51:dc:2f:7e:
04:28:f0:7d:d2:e5:14:5b:41:03:5e:4d:f9:b3:05:
83:00:be:e7:d2:79:4e:d2:d5:eb:31:02:1e:b3:1a:
53:a9:ae:9a:7f:2b:d7:61:0d:45:45:19:8b:f1:ab:
8f:78:c0:ff:59:df:c2:bd:45:68:5f:4d:95:7b:9c:
b9:d3:eb:bf:6a:6d:60:69:ef:af:32:bf:09:5a:69:
ac:72:52:09:6c:f2:e8:bf:f6:2a:a0:21:2d:a9:7e:
02:c6:dc:17:bb:8a:a6:d0:63:68:b1:01:1f:b3:3e:
a8:fa:29:23:a6:e7:a7:1c:86:3b:b8:b5:50:0d:65:
51:59:f3:99:24:58:a6:78:c7:c9:91:3b:8c:0c:2f:
b2:13:66:65:fd:44:a4:b6:c2:7e:80:36:07:61:b5:
dc:86:4d:13:d4:03:69:ed:c4:65:37:66:b9:cc:b8:
e1:7d:d1:48:95:06:07:79:af:49:86:25:d7:8f:b0:
d8:a7:49:c6:bc:7d:f4:57:9a:37:9f:cd:69:86:8a:
0d:51:f8:5c:c9:9e:ed:02:a3:3b:17:6b:c7:e9:40:
e2:95:a1:bc:aa:29:9a:fe:7e:17:53:7e:1b:32:70:
5e:6c:da:a7:28:1d:c5:57:2d:cf:8e:52:ec:24:8f:
51:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:55:84:5F:75:23:4E:91:AC:8B:29:99:4E:0C:0D:ED:0E:E6:8E:00
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:a8:68:d0:07:2e:96:a5:19:49:f7:2d:fd:54:69:00:bb:c1:
6b:58:1e:9a:74:20:e6:b6:2a:ae:46:76:19:2f:19:ec:b3:8d:
bb:e8:c7:6c:f8:4a:ba:c4:27:50:fa:63:07:b2:83:75:e9:4b:
56:89:bc:48:34:55:53:64:76:a2:8f:93:5e:0e:db:fb:9f:94:
19:99:9b:60:70:c5:8c:87:9f:fb:61:38:b3:c8:37:a3:07:b7:
64:ef:3c:58:82:1b:18:69:ac:23:e1:a1:bc:82:bd:c5:7c:19:
5a:44:6b:dc:f0:fb:74:f1:16:52:04:9a:62:0f:63:fd:24:27:
ca:10:94:fc:be:ad:14:e7:28:31:0f:01:9d:98:cd:84:64:25:
56:65:c0:0b:58:01:58:3e:eb:29:a5:43:38:e0:dc:b8:58:77:
b1:27:bf:87:5b:a8:a5:87:d2:f8:28:9d:b5:84:7d:87:94:8c:
06:29:3b:16:33:8a:3a:fa:dc:64:46:00:cf:8c:ed:1b:c3:80:
ef:b1:d8:dd:9c:d1:ba:5e:97:40:7e:2c:bb:56:cc:e0:48:ec:
a2:73:51:3b:bb:a8:d5:af:85:3c:14:27:82:dd:59:0e:90:f8:
b9:65:ad:0a:86:dc:6e:ac:c2:56:e2:c0:53:14:e9:81:a5:ae:
9c:5c:f6:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdA02nErkmROU6OvsBpISyqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh
NTI2ZDgwHhcNMjUwNjA1MTYwMTI2WhcNMjUwNjA2MTYwMTI2WjAzMTEwLwYDVQQD
EyhjMTU1ODQ1Zjc1MjM0ZTkxYWM4YjI5OTk0ZTBjMGRlZDBlZTY4ZTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTqwNcmZw/j+WVHcL34EKPB90uUU
W0EDXk35swWDAL7n0nlO0tXrMQIesxpTqa6afyvXYQ1FRRmL8auPeMD/Wd/CvUVo
X02Ve5y50+u/am1gae+vMr8JWmmsclIJbPLov/YqoCEtqX4CxtwXu4qm0GNosQEf
sz6o+ikjpuenHIY7uLVQDWVRWfOZJFimeMfJkTuMDC+yE2Zl/USktsJ+gDYHYbXc
hk0T1ANp7cRlN2a5zLjhfdFIlQYHea9JhiXXj7DYp0nGvH30V5o3n81phooNUfhc
yZ7tAqM7F2vH6UDilaG8qima/n4XU34bMnBebNqnKB3FVy3PjlLsJI9RbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMFVhF91I06RrIspmU4MDe0O5o4AMB8GA1UdIwQY
MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt
MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh
LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY6ho0Acu
lqUZSfct/VRpALvBa1gemnQg5rYqrkZ2GS8Z7LONu+jHbPhKusQnUPpjB7KDdelL
Vom8SDRVU2R2oo+TXg7b+5+UGZmbYHDFjIef+2E4s8g3owe3ZO88WIIbGGmsI+Gh
vIK9xXwZWkRr3PD7dPEWUgSaYg9j/SQnyhCU/L6tFOcoMQ8BnZjNhGQlVmXAC1gB
WD7rKaVDOODcuFh3sSe/h1uopYfS+CidtYR9h5SMBik7FjOKOvrcZEYAz4ztG8OA
77HY3ZzRul6XQH4su1bM4EjsonNRO7uo1a+FPBQngt1ZDpD4uWWtCobcbqzCVuLA
UxTpgaWunFz2EA==
-----END CERTIFICATE-----
Generated at Thu Jun 5 18:52:30 2025 by rpki-client