Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
File: Kq8k6REaiJ202uCH5ICeEIbjP4I.mft (raw, json)
Hash identifier: g7IEhkzzx3vQOrCUw/I5KNKn8jkYrZAODybDgRydKsI=
Subject key identifier: 21:8A:32:8F:25:F1:B6:59:92:31:F7:B4:71:44:B9:D1:6F:61:E3:F8
Authority key identifier: 2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
Certificate issuer: /CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Certificate serial: 01992443F8DEF7D5FA9460BC47C5C64EF399
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
Manifest number: 15CE
Signing time: Sun 07 Sep 2025 13:00:58 +0000
Manifest this update: Sun 07 Sep 2025 13:00:58 +0000
Manifest next update: Mon 08 Sep 2025 13:00:58 +0000
Files and hashes: 1: 5sMxgmIczAQ4fn8JJ0_j3DrMjS0.roa (hash: VTfvZnzv8Q2Rd2Q6njhUyXmObqB+4ygm6Iue4TDP3ic=)
2: Kq8k6REaiJ202uCH5ICeEIbjP4I.crl (hash: 9YiXv+NWEpbFaE3qnSGY3f5wyDYfVGqfNrv77EQluIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:24:43:f8:de:f7:d5:fa:94:60:bc:47:c5:c6:4e:f3:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aaf24e9111a889db4dae087e4809e1086e33f82
Validity
Not Before: Sep 7 13:00:58 2025 GMT
Not After : Sep 8 13:00:58 2025 GMT
Subject: CN=218a328f25f1b6599231f7b47144b9d16f61e3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:c3:68:9f:cc:2a:d5:40:97:48:a8:4b:de:
f7:05:0c:54:47:4a:20:47:76:9f:94:d1:37:6a:47:
5b:1c:7d:fc:44:57:12:76:d1:31:7b:c3:ac:e8:60:
1a:34:71:ce:5f:9a:bf:b2:87:e3:1d:8a:a7:7f:c9:
da:71:3c:4c:d9:6c:a7:4b:42:c3:00:33:59:51:e0:
74:c6:42:f4:ad:f6:02:98:75:d3:ef:ea:09:fd:26:
f8:e4:c1:8e:0f:ce:fd:53:08:38:68:36:70:1d:79:
bc:91:f4:16:1b:50:3a:85:80:26:92:0f:8e:02:91:
fe:c8:2b:2b:03:fe:84:9d:01:38:a3:53:6c:88:f4:
3a:5d:8a:f8:f5:2c:eb:dd:56:ec:bf:eb:43:e3:f6:
dc:00:a1:dc:1a:b5:b5:95:f2:5b:a6:be:0c:1c:c8:
99:05:bc:a0:49:e4:ab:7b:cf:98:68:88:ea:b6:16:
26:6d:d2:ae:b4:d5:fc:2f:fa:28:4a:a9:a5:79:a9:
0b:44:85:6b:db:33:2a:d8:a2:82:c9:03:f2:64:e3:
30:07:66:c1:f3:dd:99:61:3d:85:f6:17:99:b1:64:
93:38:43:1a:34:16:84:c1:60:16:9e:0e:80:c5:37:
fd:a6:b4:41:e7:53:52:d2:3b:b8:44:6b:b3:95:e7:
f2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8A:32:8F:25:F1:B6:59:92:31:F7:B4:71:44:B9:D1:6F:61:E3:F8
X509v3 Authority Key Identifier:
keyid:2A:AF:24:E9:11:1A:88:9D:B4:DA:E0:87:E4:80:9E:10:86:E3:3F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kq8k6REaiJ202uCH5ICeEIbjP4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c80896-c36e-4627-8353-341c3fa45b43/1/Kq8k6REaiJ202uCH5ICeEIbjP4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:73:3c:a4:9a:a8:d8:a4:f6:cc:51:f3:73:50:bd:c5:92:2d:
cc:a9:76:b4:e9:60:29:3c:20:e1:f5:2b:3a:03:90:cb:d9:1e:
12:9d:32:73:70:a7:6d:38:c7:a9:8b:33:29:50:ca:b3:ed:3b:
73:b2:2d:1b:88:ea:0f:15:30:ac:60:fd:a2:a8:e3:45:1c:b4:
99:bc:ca:d4:50:dc:74:7b:cf:eb:ed:65:b2:7a:53:75:63:0b:
ad:f7:d9:2f:71:3a:e6:49:a6:d2:80:f5:3a:13:c8:f0:84:ee:
34:65:68:89:1b:0e:c4:27:f2:9e:20:dc:d2:16:e3:dc:1c:8c:
53:32:ac:a1:e4:83:fa:a8:5a:78:70:bd:4b:38:58:40:06:b8:
14:f3:8c:7a:b4:f5:14:e1:2f:80:05:d2:81:89:ff:74:1f:0a:
19:d3:a3:7f:46:38:8e:79:5b:eb:2d:46:09:c2:91:7d:2c:0f:
c8:ef:73:d7:f3:db:52:e6:ea:62:29:ef:92:7e:86:2b:73:82:
2d:87:8d:5c:78:51:4c:e1:49:50:e2:12:51:80:46:40:aa:62:
ca:a1:66:a4:29:5d:c1:16:7d:68:11:37:70:61:de:a7:6d:a6:
d0:0d:ac:4f:08:c7:f7:73:b6:44:89:01:c2:29:66:6b:46:02:
af:aa:ca:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkkQ/je99X6lGC8R8XGTvOZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYWYyNGU5MTExYTg4OWRiNGRhZTA4N2U0ODA5ZTEwODZl
MzNmODIwHhcNMjUwOTA3MTMwMDU4WhcNMjUwOTA4MTMwMDU4WjAzMTEwLwYDVQQD
EygyMThhMzI4ZjI1ZjFiNjU5OTIzMWY3YjQ3MTQ0YjlkMTZmNjFlM2Y4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEbDaJ/MKtVAl0ioS973BQxUR0og
R3aflNE3akdbHH38RFcSdtExe8Os6GAaNHHOX5q/sofjHYqnf8nacTxM2WynS0LD
ADNZUeB0xkL0rfYCmHXT7+oJ/Sb45MGOD879Uwg4aDZwHXm8kfQWG1A6hYAmkg+O
ApH+yCsrA/6EnQE4o1NsiPQ6XYr49Szr3Vbsv+tD4/bcAKHcGrW1lfJbpr4MHMiZ
BbygSeSre8+YaIjqthYmbdKutNX8L/ooSqmleakLRIVr2zMq2KKCyQPyZOMwB2bB
892ZYT2F9heZsWSTOEMaNBaEwWAWng6AxTf9prRB51NS0ju4RGuzlefyuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCGKMo8l8bZZkjH3tHFEudFvYeP4MB8GA1UdIwQY
MBaAFCqvJOkRGoidtNrgh+SAnhCG4z+CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3E4azZSRWFpSjIwMnVDSDVJQ2VFSWJqUDRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9jODA4OTYtYzM2ZS00NjI3LTgzNTMt
MzQxYzNmYTQ1YjQzLzEvS3E4azZSRWFpSjIwMnVDSDVJQ2VFSWJqUDRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9jODA4OTYtYzM2ZS00NjI3LTgzNTMtMzQxYzNmYTQ1YjQz
LzEvS3E4azZSRWFpSjIwMnVDSDVJQ2VFSWJqUDRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApnM8pJqo
2KT2zFHzc1C9xZItzKl2tOlgKTwg4fUrOgOQy9keEp0yc3CnbTjHqYszKVDKs+07
c7ItG4jqDxUwrGD9oqjjRRy0mbzK1FDcdHvP6+1lsnpTdWMLrffZL3E65kmm0oD1
OhPI8ITuNGVoiRsOxCfyniDc0hbj3ByMUzKsoeSD+qhaeHC9SzhYQAa4FPOMerT1
FOEvgAXSgYn/dB8KGdOjf0Y4jnlb6y1GCcKRfSwPyO9z1/PbUubqYinvkn6GK3OC
LYeNXHhRTOFJUOISUYBGQKpiyqFmpCldwRZ9aBE3cGHep22m0A2sTwjH93O2RIkB
wilma0YCr6rK3w==
-----END CERTIFICATE-----
Generated at Sun Sep 7 14:57:34 2025 by rpki-client