Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: y7IVs24XmDNPxvL4jW2qzEni7BEAmJ3y3GzeMQGZoOI=
Subject key identifier: 56:0A:71:8D:89:21:8D:7A:64:9A:6B:15:BB:B9:75:31:F7:4D:17:59
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 0198CCB91C9FF40AD4162A6CC929BBF04429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 1646
Signing time: Thu 21 Aug 2025 13:02:20 +0000
Manifest this update: Thu 21 Aug 2025 13:02:20 +0000
Manifest next update: Fri 22 Aug 2025 13:02:20 +0000
Files and hashes: 1: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: /awt/yLqEYXKtKlsmqMbHNuervdzGG6xdT/2JsJqZ5g=)
2: r4bjJ2cCOInhIlG1f9hIdTm3g6M.roa (hash: aZToxg96BEY8Qvj4uVJxCXKyOgQmRt2zg6OKjNY/eQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Aug 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:cc:b9:1c:9f:f4:0a:d4:16:2a:6c:c9:29:bb:f0:44:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Aug 21 13:02:20 2025 GMT
Not After : Aug 22 13:02:20 2025 GMT
Subject: CN=560a718d89218d7a649a6b15bbb97531f74d1759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4e:3f:6a:89:63:79:b4:80:bc:46:73:b2:4c:
6d:83:9d:c7:f2:c8:c9:e8:3c:8e:88:3f:37:09:dd:
2b:3e:7a:a2:e5:f9:f6:f7:64:65:a0:d0:66:f7:00:
95:c7:2d:8e:9e:d9:dc:09:eb:23:7e:0d:35:d3:9b:
58:da:c7:75:23:73:57:b1:40:40:fa:d2:f4:6d:fb:
2c:ed:b4:ad:5b:7e:dc:b6:9d:4b:89:40:94:02:78:
79:4a:a8:2b:6f:75:33:9f:26:1e:af:c2:0a:73:ce:
05:31:51:5a:92:f0:c0:79:f2:d2:87:e2:f7:64:1b:
fa:c8:7e:35:5c:99:8a:be:1c:2b:9b:87:ed:09:8e:
da:82:14:42:ea:68:6a:c4:12:c7:10:c1:5b:8f:bd:
23:1a:1b:73:be:63:af:58:0e:9b:11:69:44:86:9f:
e5:eb:bc:55:19:1b:56:b1:4b:5e:00:11:48:24:dc:
72:96:3b:03:83:ce:83:2b:57:37:42:b5:3b:4f:c0:
ac:34:30:80:63:a6:c8:37:77:f6:6c:c7:d9:fc:ea:
38:5f:c2:94:09:b4:4b:e8:16:4f:5b:73:1d:bd:b6:
b7:34:1e:6d:f8:ea:00:5c:8f:b8:97:de:80:bc:c8:
0c:e3:fb:76:58:3c:7d:5b:87:a5:57:d3:6b:a7:8b:
40:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:0A:71:8D:89:21:8D:7A:64:9A:6B:15:BB:B9:75:31:F7:4D:17:59
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:52:47:6d:ae:1f:a6:a1:c3:50:56:db:14:dd:21:10:93:e7:
e7:85:17:80:11:a0:3d:dc:86:bd:a8:e1:84:96:d4:84:9f:7a:
55:d1:87:1b:0e:32:5e:43:57:ec:c2:87:48:b9:22:3d:c4:7c:
33:0c:5c:d6:d9:07:de:a9:aa:5a:be:07:34:0b:42:88:4d:d4:
1e:d0:4a:64:aa:7e:e1:ad:90:b5:66:20:1b:15:9f:13:50:8f:
a7:58:b8:1a:8e:3e:45:ca:4c:35:81:37:05:7e:3a:d2:c3:df:
ad:f7:02:96:0d:01:a1:be:82:52:db:72:4d:39:e2:12:a8:77:
32:f2:fa:5d:2c:c2:19:41:a8:99:65:15:a0:bc:c5:c0:5b:64:
d8:4b:a7:0d:ef:ac:c9:a0:d3:64:f1:6e:c5:8a:44:7a:57:02:
bc:1a:16:ae:a9:26:59:3c:1b:3a:be:79:06:35:c0:9f:b5:d1:
a8:3d:a3:1c:b5:2b:bd:e4:d0:ee:2c:5a:c0:37:6c:f8:ec:d2:
94:12:da:bf:39:94:c0:f6:a2:cd:78:62:7b:34:50:c7:5b:51:
f8:da:ef:23:9b:d0:e2:a7:b2:55:60:f0:d1:bd:3f:44:8f:d1:
a4:91:90:39:25:ce:e5:74:db:c8:fe:fe:da:b1:2b:31:b6:f9:
42:1f:64:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjMuRyf9ArUFipsySm78EQpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyOTZkODRlNjRkNTVlYzgxMjQ3NmZiODA2ZjBmZTc1YTA4
YmZiMmIwHhcNMjUwODIxMTMwMjIwWhcNMjUwODIyMTMwMjIwWjAzMTEwLwYDVQQD
Eyg1NjBhNzE4ZDg5MjE4ZDdhNjQ5YTZiMTViYmI5NzUzMWY3NGQxNzU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzE4/aoljebSAvEZzskxtg53H8sjJ
6DyOiD83Cd0rPnqi5fn292RloNBm9wCVxy2OntncCesjfg0105tY2sd1I3NXsUBA
+tL0bfss7bStW37ctp1LiUCUAnh5Sqgrb3UznyYer8IKc84FMVFakvDAefLSh+L3
ZBv6yH41XJmKvhwrm4ftCY7aghRC6mhqxBLHEMFbj70jGhtzvmOvWA6bEWlEhp/l
67xVGRtWsUteABFIJNxyljsDg86DK1c3QrU7T8CsNDCAY6bIN3f2bMfZ/Oo4X8KU
CbRL6BZPW3Mdvba3NB5t+OoAXI+4l96AvMgM4/t2WDx9W4elV9Nrp4tAjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFYKcY2JIY16ZJprFbu5dTH3TRdZMB8GA1UdIwQY
MBaAFJKW2E5k1V7IEkdvuAbw/nWgi/srMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEt
ZjM0OTI4NDUwOWI3LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEtZjM0OTI4NDUwOWI3
LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl1JHba4f
pqHDUFbbFN0hEJPn54UXgBGgPdyGvajhhJbUhJ96VdGHGw4yXkNX7MKHSLkiPcR8
Mwxc1tkH3qmqWr4HNAtCiE3UHtBKZKp+4a2QtWYgGxWfE1CPp1i4Go4+RcpMNYE3
BX460sPfrfcClg0Bob6CUttyTTniEqh3MvL6XSzCGUGomWUVoLzFwFtk2EunDe+s
yaDTZPFuxYpEelcCvBoWrqkmWTwbOr55BjXAn7XRqD2jHLUrveTQ7ixawDds+OzS
lBLavzmUwPaizXhiezRQx1tR+NrvI5vQ4qeyVWDw0b0/RI/RpJGQOSXO5XTbyP7+
2rErMbb5Qh9kWA==
-----END CERTIFICATE-----
Generated at Thu Aug 21 17:00:53 2025 by rpki-client