Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: LFIKx3J/c3xH5WacuuHsHoYNNBk5kTgJeHZ+riUfGrU=
Subject key identifier: AE:1C:D9:15:56:CF:9F:33:AB:8E:5E:19:F0:C9:24:1A:0C:FD:7C:E8
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 0199233139E9B99D931AE6790ECDE3812444
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 1673
Signing time: Sun 07 Sep 2025 08:00:52 +0000
Manifest this update: Sun 07 Sep 2025 08:00:52 +0000
Manifest next update: Mon 08 Sep 2025 08:00:52 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: 23Y3CCogviaLIkoaPA/6NyRCKiK50bmgKTUQhVyei1o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:39:e9:b9:9d:93:1a:e6:79:0e:cd:e3:81:24:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Sep 7 08:00:52 2025 GMT
Not After : Sep 8 08:00:52 2025 GMT
Subject: CN=ae1cd91556cf9f33ab8e5e19f0c9241a0cfd7ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:44:1b:cc:31:c1:a1:b4:bb:da:18:eb:32:d7:
5b:9d:b7:e6:47:4f:73:41:d1:61:9e:9b:27:67:55:
d2:68:d0:95:7e:ba:f1:f3:f5:df:a9:78:3d:37:e9:
2c:0b:f9:ba:77:c3:ff:23:a9:78:e0:34:45:98:ce:
db:fc:b6:d4:16:86:70:93:b0:c5:1b:d3:47:40:11:
d9:9a:b3:09:63:0a:94:b5:50:f6:18:ba:f8:76:fa:
ae:58:23:4c:0f:07:54:e9:5f:f8:3f:3f:14:7a:f4:
25:48:0a:80:70:21:dc:8a:3f:62:fd:34:b9:4b:14:
8e:ff:ec:d1:c5:97:aa:b4:27:5c:9c:0e:35:0e:af:
ce:66:cf:94:0d:a6:f9:28:1c:80:86:03:fb:89:9a:
ad:5a:d8:f7:51:f5:2c:7d:4e:c3:62:39:f7:8e:e3:
e8:db:cc:5e:14:d1:c4:60:5b:9b:64:91:88:a1:fd:
00:80:3f:2a:d8:de:c6:32:1b:84:d8:27:eb:a5:d4:
f1:d3:a0:27:3d:08:45:a2:bd:e5:cc:41:7f:f6:09:
e0:98:0a:53:d8:a3:55:8c:12:85:13:a7:03:ac:9e:
1d:1c:26:bd:eb:37:87:51:85:7b:c7:ae:14:97:20:
4d:5c:1e:d3:37:4f:48:de:5f:53:26:a9:ea:e0:37:
ef:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:1C:D9:15:56:CF:9F:33:AB:8E:5E:19:F0:C9:24:1A:0C:FD:7C:E8
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:49:6e:bd:07:67:30:91:cf:8a:f2:c6:b2:e8:2a:c9:52:64:
1c:59:bc:45:43:d4:14:c0:8c:d5:51:b5:0d:bf:bd:11:47:3c:
3d:71:7d:41:4d:2e:3d:ef:35:60:f9:c3:6b:a2:a2:3a:51:a2:
9d:3e:41:48:91:16:07:2f:4c:40:2a:10:3c:22:17:41:2b:bb:
9e:24:b0:7b:69:7f:eb:5d:bf:2a:92:86:fa:84:3b:52:8b:e3:
1b:db:39:ec:2f:fc:e5:33:7a:ef:ab:a7:ec:f0:d9:3d:02:a9:
87:86:fc:d4:21:9c:4b:21:92:1c:ec:85:a0:3d:2d:d8:00:a0:
80:a1:20:ed:83:b0:99:4a:10:26:f3:39:16:ba:a5:8c:8c:5a:
36:8f:13:15:65:33:6f:7e:59:2b:b7:23:ff:06:c6:87:be:ea:
1d:03:93:91:ef:36:30:61:05:fc:ce:09:22:92:70:98:2b:bf:
fc:6d:fa:5e:8f:44:bf:9d:9b:6d:bf:af:9e:83:a4:a5:d6:cc:
7b:fb:cd:89:ea:28:16:58:17:eb:b8:7b:f4:b1:ef:26:4e:aa:
6b:db:c3:3b:62:c6:04:77:5b:58:0d:ce:03:6f:35:62:3e:c8:
ca:92:ef:c0:41:52:c4:33:34:27:4a:8c:ba:47:01:a3:0a:67:
05:85:1b:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMTnpuZ2TGuZ5Ds3jgSREMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNGQ0YTNiNzQ3ZmNhNzAxMDNiMTdmM2RiZGM1MDQ1Y2Fj
ZTMyZGYwHhcNMjUwOTA3MDgwMDUyWhcNMjUwOTA4MDgwMDUyWjAzMTEwLwYDVQQD
EyhhZTFjZDkxNTU2Y2Y5ZjMzYWI4ZTVlMTlmMGM5MjQxYTBjZmQ3Y2U4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3UQbzDHBobS72hjrMtdbnbfmR09z
QdFhnpsnZ1XSaNCVfrrx8/XfqXg9N+ksC/m6d8P/I6l44DRFmM7b/LbUFoZwk7DF
G9NHQBHZmrMJYwqUtVD2GLr4dvquWCNMDwdU6V/4Pz8UevQlSAqAcCHcij9i/TS5
SxSO/+zRxZeqtCdcnA41Dq/OZs+UDab5KByAhgP7iZqtWtj3UfUsfU7DYjn3juPo
28xeFNHEYFubZJGIof0AgD8q2N7GMhuE2CfrpdTx06AnPQhFor3lzEF/9gngmApT
2KNVjBKFE6cDrJ4dHCa96zeHUYV7x64UlyBNXB7TN09I3l9TJqnq4Dfv1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK4c2RVWz58zq45eGfDJJBoM/XzoMB8GA1UdIwQY
MBaAFNNNSjt0f8pwEDsX89vcUEXKzjLfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDIt
NDM3OTM0YzU4NDUzLzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDItNDM3OTM0YzU4NDUz
LzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAekluvQdn
MJHPivLGsugqyVJkHFm8RUPUFMCM1VG1Db+9EUc8PXF9QU0uPe81YPnDa6KiOlGi
nT5BSJEWBy9MQCoQPCIXQSu7niSwe2l/612/KpKG+oQ7UovjG9s57C/85TN676un
7PDZPQKph4b81CGcSyGSHOyFoD0t2ACggKEg7YOwmUoQJvM5FrqljIxaNo8TFWUz
b35ZK7cj/wbGh77qHQOTke82MGEF/M4JIpJwmCu//G36Xo9Ev52bbb+vnoOkpdbM
e/vNieooFlgX67h79LHvJk6qa9vDO2LGBHdbWA3OA281Yj7IypLvwEFSxDM0J0qM
ukcBowpnBYUbCA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:09:25 2025 by rpki-client