Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
File: KqFL_4NIDRDND767gLLLUJH8-C8.mft (raw, json)
Hash identifier: IIWxL6Sle3++rbR/DORI6lJzcrsP9suqB6xcBFtFa/c=
Subject key identifier: 8E:14:10:73:EC:23:9E:22:FB:C1:05:8B:0B:46:BD:73:27:1B:2E:71
Authority key identifier: 2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F
Certificate issuer: /CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f
Certificate serial: 01991763E8FF57960FB073AFAC4C03CD72CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
Manifest number: 166A
Signing time: Fri 05 Sep 2025 01:00:47 +0000
Manifest this update: Fri 05 Sep 2025 01:00:47 +0000
Manifest next update: Sat 06 Sep 2025 01:00:47 +0000
Files and hashes: 1: 0zY-sGp0Ft0AM9Sf-NYlNdybUWg.roa (hash: eX1zp0GC5bqV6hOy4nxEisONQ8sH8x4mX06jY0ZL3fw=)
2: KqFL_4NIDRDND767gLLLUJH8-C8.crl (hash: aTbmliFBTyF5sb1KlS+86WKWncBF+N67p/D9Zm4g99s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:63:e8:ff:57:96:0f:b0:73:af:ac:4c:03:cd:72:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f
Validity
Not Before: Sep 5 01:00:47 2025 GMT
Not After : Sep 6 01:00:47 2025 GMT
Subject: CN=8e141073ec239e22fbc1058b0b46bd73271b2e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:27:a6:a6:70:fa:d6:78:af:2a:cf:77:62:d4:
11:d0:8e:87:38:57:be:bd:d8:9d:31:ae:2e:ed:4a:
a0:72:6c:bd:11:55:85:5f:09:91:6a:41:8c:9a:08:
ae:08:4b:39:18:5e:75:5b:9b:e8:3e:d0:9a:7c:43:
12:24:c7:03:a2:4c:ac:75:7e:70:69:7f:42:ad:3f:
86:64:c6:69:e2:35:c4:56:27:b2:89:77:e5:3f:ca:
2d:1a:9f:6e:73:92:5c:ae:a4:be:fe:91:24:fb:c1:
b6:40:89:d3:6a:35:82:3f:0f:02:29:60:42:c3:4a:
24:aa:bf:12:e5:b8:93:91:9a:c2:02:2a:a1:eb:70:
5a:fa:c9:c4:d2:51:65:be:99:df:87:27:1f:22:0d:
4d:bb:b3:94:07:58:75:33:1b:5b:e6:60:2c:15:d7:
61:8a:d0:29:a1:ce:d1:87:7a:a7:26:ed:d2:b8:c9:
d6:b3:e6:21:6b:63:7d:8e:f2:58:6f:8d:3d:1c:af:
7f:ed:77:97:b2:db:fb:5c:cf:f8:c5:7b:a1:8f:36:
23:dc:1b:f7:16:fb:ec:ed:3d:05:a1:85:4f:7a:a3:
37:25:b7:9d:b5:0e:38:b3:5d:8a:86:0a:55:43:52:
93:4c:39:86:c9:85:4c:40:b4:73:bd:59:b0:bb:f5:
e5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:14:10:73:EC:23:9E:22:FB:C1:05:8B:0B:46:BD:73:27:1B:2E:71
X509v3 Authority Key Identifier:
keyid:2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:65:86:04:ef:40:6b:6b:90:04:49:16:2c:e7:84:6b:d1:c4:
e9:25:58:67:1f:97:d4:c5:61:a2:04:94:d6:5b:bd:ef:7f:74:
60:cb:6b:83:83:c3:8f:3c:2c:c2:21:1c:d9:f9:da:64:44:9d:
96:d1:80:10:18:fc:e4:8a:80:c2:af:41:70:64:22:08:99:0c:
f0:73:46:9d:24:ec:b3:e0:f9:6d:1a:f5:7b:8b:3c:67:20:74:
af:61:64:31:92:4d:e4:a4:09:5f:b6:a1:dd:80:4f:84:bf:9b:
44:74:7f:52:7f:e8:99:51:98:67:ed:68:4a:6e:b2:1c:c6:79:
c6:61:ac:7a:08:31:79:70:22:21:7a:d1:b6:24:86:f9:de:65:
d6:fa:6d:5e:66:fd:d0:85:c8:30:18:42:f3:26:0a:85:11:1a:
aa:5e:0f:af:1e:60:58:79:2e:42:48:57:8c:2f:91:9f:b2:e5:
c8:8a:1e:f1:7f:d1:04:63:06:50:eb:13:a5:36:e8:de:9b:7e:
3f:78:7c:d8:3e:85:c4:5c:31:66:6f:14:cf:ac:7c:7f:8d:ee:
40:d1:b8:b4:2d:24:15:16:25:26:98:de:d3:3b:3f:dd:d3:8b:
21:fe:ea:38:c8:7d:79:ae:54:47:46:e1:c0:e3:b0:fe:6d:cd:
62:40:ab:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkXY+j/V5YPsHOvrEwDzXLOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYTE0YmZmODM0ODBkMTBjZDBmYmViYjgwYjJjYjUwOTFm
Y2Y4MmYwHhcNMjUwOTA1MDEwMDQ3WhcNMjUwOTA2MDEwMDQ3WjAzMTEwLwYDVQQD
Eyg4ZTE0MTA3M2VjMjM5ZTIyZmJjMTA1OGIwYjQ2YmQ3MzI3MWIyZTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyempnD61nivKs93YtQR0I6HOFe+
vdidMa4u7Uqgcmy9EVWFXwmRakGMmgiuCEs5GF51W5voPtCafEMSJMcDokysdX5w
aX9CrT+GZMZp4jXEVieyiXflP8otGp9uc5JcrqS+/pEk+8G2QInTajWCPw8CKWBC
w0okqr8S5biTkZrCAiqh63Ba+snE0lFlvpnfhycfIg1Nu7OUB1h1Mxtb5mAsFddh
itApoc7Rh3qnJu3SuMnWs+Yha2N9jvJYb409HK9/7XeXstv7XM/4xXuhjzYj3Bv3
Fvvs7T0FoYVPeqM3JbedtQ44s12KhgpVQ1KTTDmGyYVMQLRzvVmwu/XlHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI4UEHPsI54i+8EFiwtGvXMnGy5xMB8GA1UdIwQY
MBaAFCqhS/+DSA0QzQ++u4Cyy1CR/PgvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3FGTF80TklEUkRORDc2N2dMTExVSkg4LUM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9iMTk4MTEtZmEyMy00N2IwLWI1Nzct
MTc2OThmODhjM2JkLzEvS3FGTF80TklEUkRORDc2N2dMTExVSkg4LUM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9iMTk4MTEtZmEyMy00N2IwLWI1NzctMTc2OThmODhjM2Jk
LzEvS3FGTF80TklEUkRORDc2N2dMTExVSkg4LUM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJmWGBO9A
a2uQBEkWLOeEa9HE6SVYZx+X1MVhogSU1lu97390YMtrg4PDjzwswiEc2fnaZESd
ltGAEBj85IqAwq9BcGQiCJkM8HNGnSTss+D5bRr1e4s8ZyB0r2FkMZJN5KQJX7ah
3YBPhL+bRHR/Un/omVGYZ+1oSm6yHMZ5xmGseggxeXAiIXrRtiSG+d5l1vptXmb9
0IXIMBhC8yYKhREaql4Prx5gWHkuQkhXjC+Rn7LlyIoe8X/RBGMGUOsTpTbo3pt+
P3h82D6FxFwxZm8Uz6x8f43uQNG4tC0kFRYlJpje0zs/3dOLIf7qOMh9ea5UR0bh
wOOw/m3NYkCrBw==
-----END CERTIFICATE-----
Generated at Fri Sep 5 04:30:16 2025 by rpki-client