Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: mMabMH3/LGwm1qgJauxZBCxsK0jRQxEjHtH4PrJfMJw=
Subject key identifier: 18:0B:4C:C0:55:A1:2B:E5:99:84:39:E2:0F:1A:03:39:5E:C8:92:7A
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 01974EFC774E4C4AB3F54B48BD9B0343FD9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 098D
Signing time: Sun 08 Jun 2025 10:00:57 +0000
Manifest this update: Sun 08 Jun 2025 10:00:57 +0000
Manifest next update: Mon 09 Jun 2025 10:00:57 +0000
Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: OVO5lxFzeF09orJv5ndtweR0hNC1RG6Y3fEfY/M8JWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 10:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:77:4e:4c:4a:b3:f5:4b:48:bd:9b:03:43:fd:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Jun 8 10:00:57 2025 GMT
Not After : Jun 9 10:00:57 2025 GMT
Subject: CN=180b4cc055a12be5998439e20f1a03395ec8927a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:29:0f:a4:08:bd:c4:c8:62:34:1e:b3:90:bd:
72:fd:e1:4d:71:ad:ca:39:25:d5:7c:e3:a7:59:fc:
41:a7:c5:9c:9b:2e:fe:95:9c:e6:bf:b9:86:d2:76:
5c:80:ac:c1:61:b8:00:9f:21:1a:b6:99:7c:02:a1:
7c:28:c0:57:98:c3:09:4f:6e:5b:c6:51:8e:5b:b5:
60:d1:6a:a1:8c:25:8a:c4:9e:13:34:09:0a:64:92:
88:da:c2:71:5d:c2:b5:ad:48:43:6d:47:a3:2b:c9:
75:83:cc:2e:c9:91:15:cd:6f:ce:6f:a0:44:7d:0f:
29:94:b3:f6:1d:0c:bb:f1:73:8f:fd:24:78:1c:fb:
53:5d:be:d3:9c:00:10:88:d8:dc:0b:d2:66:10:aa:
8a:8f:05:04:63:a0:b0:8f:7d:2c:44:6c:83:e5:41:
7b:4c:a0:69:1a:9c:9f:c8:82:10:c9:b7:37:88:c6:
5d:9b:82:d1:83:e6:d7:d2:3b:35:30:85:dd:d4:b9:
d8:d9:b3:9e:fb:6e:78:80:b0:f9:7c:8e:19:e7:bd:
dd:2d:db:e5:0f:f4:32:5f:e3:3e:6b:e1:b6:84:a5:
6c:e8:fc:3d:af:08:29:7d:df:09:23:1e:81:14:4f:
d0:29:ee:ff:ee:21:66:eb:c0:84:c2:73:2a:a2:50:
fa:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:0B:4C:C0:55:A1:2B:E5:99:84:39:E2:0F:1A:03:39:5E:C8:92:7A
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:68:00:bc:8a:3a:7e:47:15:12:37:fd:44:30:aa:9a:de:68:
41:35:b9:82:f2:23:6c:70:07:ad:51:9a:a2:83:0e:6d:e7:b8:
31:83:9e:f9:20:79:14:38:53:12:49:fb:3c:a1:a5:2f:30:3a:
ba:4d:ac:3a:f7:5c:14:2b:35:67:4d:f7:dd:1c:b2:04:24:44:
75:78:f2:c5:0b:bf:39:b7:83:e1:35:81:25:14:6e:1a:16:8f:
18:b5:c6:b9:52:6f:ad:31:c9:06:f1:f7:f8:71:16:91:0f:56:
39:56:c9:79:8e:6f:36:bc:2c:9c:0a:1c:19:3c:32:22:4a:26:
3f:27:5f:67:14:59:b2:94:3d:a8:46:69:e7:6d:32:d8:19:bc:
61:e4:27:0b:75:82:95:eb:e2:a9:f8:65:23:a8:d0:7f:90:bb:
2c:54:c1:f2:5c:64:66:a7:38:9f:f0:52:f3:17:f5:29:01:88:
95:46:fe:0f:c5:11:40:4a:6b:9a:a2:b9:19:3c:ec:88:97:60:
66:09:7d:69:73:94:39:f7:93:65:67:ea:e5:7d:80:2f:e3:10:
d1:c1:e5:69:ca:d5:de:75:eb:66:5d:55:70:35:e6:5c:8d:a0:
26:b9:2b:4c:e0:3d:db:a0:14:1b:41:ac:16:ae:01:64:1f:39:
1a:92:1d:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdO/HdOTEqz9UtIvZsDQ/2cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNjgwMTQ1Y2ZiMjM3MWVjZjRjMzY0NzI2YjY0NzA4NTcy
YzQyMjMwHhcNMjUwNjA4MTAwMDU3WhcNMjUwNjA5MTAwMDU3WjAzMTEwLwYDVQQD
EygxODBiNGNjMDU1YTEyYmU1OTk4NDM5ZTIwZjFhMDMzOTVlYzg5MjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuikPpAi9xMhiNB6zkL1y/eFNca3K
OSXVfOOnWfxBp8Wcmy7+lZzmv7mG0nZcgKzBYbgAnyEatpl8AqF8KMBXmMMJT25b
xlGOW7Vg0WqhjCWKxJ4TNAkKZJKI2sJxXcK1rUhDbUejK8l1g8wuyZEVzW/Ob6BE
fQ8plLP2HQy78XOP/SR4HPtTXb7TnAAQiNjcC9JmEKqKjwUEY6Cwj30sRGyD5UF7
TKBpGpyfyIIQybc3iMZdm4LRg+bX0js1MIXd1LnY2bOe+254gLD5fI4Z573dLdvl
D/QyX+M+a+G2hKVs6Pw9rwgpfd8JIx6BFE/QKe7/7iFm68CEwnMqolD60QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBgLTMBVoSvlmYQ54g8aAzleyJJ6MB8GA1UdIwQY
MBaAFJJoAUXPsjcez0w2Rya2RwhXLEIjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQt
MTNkN2JlYmY0N2JhLzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQtMTNkN2JlYmY0N2Jh
LzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUGgAvIo6
fkcVEjf9RDCqmt5oQTW5gvIjbHAHrVGaooMObee4MYOe+SB5FDhTEkn7PKGlLzA6
uk2sOvdcFCs1Z0333RyyBCREdXjyxQu/ObeD4TWBJRRuGhaPGLXGuVJvrTHJBvH3
+HEWkQ9WOVbJeY5vNrwsnAocGTwyIkomPydfZxRZspQ9qEZp520y2Bm8YeQnC3WC
leviqfhlI6jQf5C7LFTB8lxkZqc4n/BS8xf1KQGIlUb+D8URQEprmqK5GTzsiJdg
Zgl9aXOUOfeTZWfq5X2AL+MQ0cHlacrV3nXrZl1VcDXmXI2gJrkrTOA926AUG0Gs
Fq4BZB85GpIdRQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 18:23:31 2025 by rpki-client