Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: ZndHnOY/+HvfYqUVDddhMKTPrEGMXG/roBWAkqMAwlI=
Subject key identifier: 43:78:BF:68:55:EE:81:A2:07:68:D2:3C:FB:FC:E4:EC:90:ED:9F:10
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 01992331462D8CE7A558F282FB3486D43482
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 0ABD
Signing time: Sun 07 Sep 2025 08:00:55 +0000
Manifest this update: Sun 07 Sep 2025 08:00:55 +0000
Manifest next update: Mon 08 Sep 2025 08:00:55 +0000
Files and hashes: 1: 1gJl5QGcLnfhKR4ZX5vkhukZyTU.roa (hash: NMFFqW5s2zQQWT6VrzvJinnOwTRcu4h6yTFNCCxpjXA=)
2: HlpYPKfUTSJ7pDq2oQziu1OJN70.roa (hash: 2/lnsP1apTOPlsNH0YhFprUwFbQM2G9j3yZLF5vZFt4=)
3: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: YUUg32gApxHylyjvAjtq6Deufgv7E7I5pgwPcARe6ME=)
4: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (hash: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:46:2d:8c:e7:a5:58:f2:82:fb:34:86:d4:34:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Sep 7 08:00:55 2025 GMT
Not After : Sep 8 08:00:55 2025 GMT
Subject: CN=4378bf6855ee81a20768d23cfbfce4ec90ed9f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fb:2b:3a:7a:02:66:10:6c:16:12:66:9a:77:
72:de:70:2e:3e:5a:0d:b6:ee:e4:92:45:fc:be:09:
53:65:df:a3:7d:4e:8a:39:6f:ee:9c:17:69:09:04:
0b:00:55:06:0f:e3:11:96:72:51:fd:34:01:9f:ed:
ae:e3:54:e4:fa:49:f9:c4:22:a9:05:0b:ed:31:9d:
91:55:fc:e3:eb:87:68:ea:a2:4e:5a:f0:1d:4b:b3:
71:9f:9c:14:ef:40:3a:38:04:b5:43:ba:bb:07:eb:
cb:35:c7:9d:6c:38:79:c2:5c:9a:c8:b3:0a:c9:3d:
03:97:bb:8a:3f:e1:ae:3c:76:48:61:b7:a5:51:b2:
b0:b3:9b:1b:ad:cd:f7:1b:42:74:1f:3f:ae:99:33:
39:b7:76:ac:c8:59:e3:a3:ce:f7:6e:52:b3:8a:ff:
b3:82:ca:09:21:a0:da:8d:31:57:dd:dd:39:67:63:
f3:2a:8f:52:d0:df:16:cc:13:86:cc:66:64:17:39:
d1:ef:23:70:4a:e2:e0:3b:6e:84:3e:41:9c:4a:cb:
33:b8:00:c7:a0:0e:f9:ed:80:3b:bc:22:36:e7:b8:
af:63:84:13:17:91:9e:a3:e4:f7:73:2c:de:de:15:
30:fd:dd:5f:de:57:dd:25:45:fd:48:e3:98:8b:61:
23:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:78:BF:68:55:EE:81:A2:07:68:D2:3C:FB:FC:E4:EC:90:ED:9F:10
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:9f:d1:c3:c8:2f:29:9f:4d:3c:7a:a1:36:12:d4:a5:57:d3:
77:23:e4:c7:7d:ff:5c:74:33:4c:28:7a:51:3b:d0:10:7a:9c:
a6:71:71:d2:54:1f:5e:db:33:49:a8:db:39:e6:d1:ac:58:34:
3a:6e:c7:e5:7a:ef:87:f8:ce:64:d2:7f:4e:c8:95:5a:71:5b:
73:24:2a:d4:0c:89:56:97:10:4f:4f:95:6d:e7:f2:2f:1f:d7:
ec:32:3d:f8:08:f3:44:53:45:bb:2d:d9:cf:00:90:cf:e3:b7:
6b:c7:ca:06:9e:a9:b3:47:5e:24:c1:aa:eb:1d:dd:55:e9:da:
56:16:a7:e7:3b:ec:ab:a2:2c:17:94:2f:30:c1:f7:08:f1:e8:
95:1c:30:71:c6:32:21:ff:bc:e6:5b:06:15:f9:ce:46:7a:be:
01:d0:a0:a9:b3:5b:74:ee:f4:fb:ee:01:18:ff:79:9f:59:a4:
38:4d:00:d1:c4:36:16:aa:55:74:b0:a7:1a:c1:88:af:c2:97:
7c:a0:45:c6:73:64:f1:14:0e:84:90:30:22:2e:b7:cd:ed:76:
41:57:50:e6:10:a1:93:9e:f7:a8:39:dd:44:69:83:3e:0e:11:
2d:97:a6:73:61:a1:06:96:ac:dc:9a:81:fc:ea:a4:fc:54:a6:
70:77:a7:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMUYtjOelWPKC+zSG1DSCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4N2UxYzk3ZjcxZjM1NTg2N2UzZmI4NzdmMjFhYTUxMzBi
NmNmNWQwHhcNMjUwOTA3MDgwMDU1WhcNMjUwOTA4MDgwMDU1WjAzMTEwLwYDVQQD
Eyg0Mzc4YmY2ODU1ZWU4MWEyMDc2OGQyM2NmYmZjZTRlYzkwZWQ5ZjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vsrOnoCZhBsFhJmmndy3nAuPloN
tu7kkkX8vglTZd+jfU6KOW/unBdpCQQLAFUGD+MRlnJR/TQBn+2u41Tk+kn5xCKp
BQvtMZ2RVfzj64do6qJOWvAdS7Nxn5wU70A6OAS1Q7q7B+vLNcedbDh5wlyayLMK
yT0Dl7uKP+GuPHZIYbelUbKws5sbrc33G0J0Hz+umTM5t3asyFnjo873blKziv+z
gsoJIaDajTFX3d05Z2PzKo9S0N8WzBOGzGZkFznR7yNwSuLgO26EPkGcSsszuADH
oA757YA7vCI257ivY4QTF5Geo+T3cyze3hUw/d1f3lfdJUX9SOOYi2EjpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEN4v2hV7oGiB2jSPPv85OyQ7Z8QMB8GA1UdIwQY
MBaAFCh+HJf3HzVYZ+P7h38hqlEwts9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEt
OWViM2M2ODJiMDA5LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEtOWViM2M2ODJiMDA5
LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcZ/Rw8gv
KZ9NPHqhNhLUpVfTdyPkx33/XHQzTCh6UTvQEHqcpnFx0lQfXtszSajbOebRrFg0
Om7H5Xrvh/jOZNJ/TsiVWnFbcyQq1AyJVpcQT0+VbefyLx/X7DI9+AjzRFNFuy3Z
zwCQz+O3a8fKBp6ps0deJMGq6x3dVenaVhan5zvsq6IsF5QvMMH3CPHolRwwccYy
If+85lsGFfnORnq+AdCgqbNbdO70++4BGP95n1mkOE0A0cQ2FqpVdLCnGsGIr8KX
fKBFxnNk8RQOhJAwIi63ze12QVdQ5hChk573qDndRGmDPg4RLZemc2GhBpas3JqB
/Oqk/FSmcHen/A==
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:31:04 2025 by rpki-client