Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: soU4s+kLbAREUmn+AbQ0LUml81RYoa9qVbfDnZVCfFQ=
Subject key identifier: DF:DB:F6:49:44:21:76:95:29:6F:21:55:83:FF:1C:81:D9:B8:83:FD
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 0199033852B474986D841853816C0E23DE82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1661
Signing time: Mon 01 Sep 2025 03:00:46 +0000
Manifest this update: Mon 01 Sep 2025 03:00:46 +0000
Manifest next update: Tue 02 Sep 2025 03:00:46 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: D+XYXxVXOW+V8JKdkJWoH07cVGmWS0mpzJ5ZkNVTR6A=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Sep 2025 22:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:03:38:52:b4:74:98:6d:84:18:53:81:6c:0e:23:de:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Sep 1 03:00:46 2025 GMT
Not After : Sep 2 03:00:46 2025 GMT
Subject: CN=dfdbf64944217695296f215583ff1c81d9b883fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:1c:3d:89:44:54:40:47:e1:e6:73:ab:d7:
24:cb:90:55:3b:0e:5d:6e:44:6b:43:c0:b1:60:dd:
0e:b7:3b:cb:01:b5:52:be:cb:3d:86:e1:4c:eb:a3:
44:35:6f:7a:d0:4e:cf:27:cb:1a:b1:bd:be:27:c7:
2b:d5:33:10:11:fc:c3:64:7e:2a:23:2b:42:5d:ef:
83:2f:88:66:20:9a:25:67:a5:4f:5f:8a:42:61:c3:
f1:b3:8e:88:33:0c:4d:ef:4c:32:a4:14:ff:6c:ce:
05:8d:14:3b:9e:67:e2:17:77:c6:5e:f9:0d:6e:3e:
0d:5e:14:56:4e:36:47:83:77:0d:2a:23:d4:5f:c1:
d6:89:9f:a3:7d:4a:53:e1:91:81:8f:58:91:f2:9a:
b0:75:1e:f2:20:59:7a:09:2b:3f:89:11:18:a3:00:
04:44:9c:7f:cc:3b:23:9c:43:f8:a9:3f:c1:a7:a2:
8b:fe:0b:bb:b3:f5:16:3f:43:fe:7a:96:f9:77:88:
be:de:ed:e4:72:a0:36:44:0e:74:b9:93:a7:02:a1:
bc:5d:7b:e2:fb:02:ac:6b:54:71:02:9a:90:b9:6e:
cd:5d:55:a4:44:91:c7:a6:60:10:ac:0e:7d:91:05:
0a:69:2e:9e:ce:97:11:d7:b0:18:58:0e:8a:5c:57:
31:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DB:F6:49:44:21:76:95:29:6F:21:55:83:FF:1C:81:D9:B8:83:FD
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:21:57:b2:83:cc:dc:8a:f5:60:9d:f6:bb:51:04:e9:f4:d3:
5f:4e:0f:07:78:1c:6e:1f:dd:ac:2c:ff:b6:d4:86:40:a2:2c:
3a:3b:69:a5:92:0d:ec:b7:f7:cd:c6:8d:53:27:b6:fb:99:06:
11:ea:c0:d2:67:e7:85:e6:fd:4a:88:ce:ed:a4:b2:6b:53:ca:
9b:23:41:d8:95:a1:bc:09:94:d1:9b:28:5d:21:96:d6:50:fb:
be:04:e0:43:b6:f8:a0:48:41:07:64:55:29:11:c7:68:22:d6:
8c:ec:e3:a1:41:71:a9:12:36:5e:84:11:af:3b:60:ec:5d:c4:
0b:6f:b9:34:3b:40:90:e9:c2:49:db:3d:ac:45:2d:05:06:3c:
9c:6c:32:92:2d:86:5c:6d:cb:c2:fe:1c:0b:d2:45:0a:37:c8:
12:32:f4:7c:cc:1a:15:08:2f:12:38:73:c8:3d:ab:85:04:b2:
fd:16:03:d9:88:69:0c:5d:05:93:2d:26:96:8c:64:a9:87:85:
c4:99:af:5d:e8:35:c4:9d:fa:3a:1f:76:66:0d:8e:b4:85:83:
16:b8:48:bf:bd:f5:59:01:de:d8:44:27:9e:ce:8e:a2:25:d9:
46:2d:92:18:a0:a0:ce:d8:11:bf:2d:ff:9a:d2:0b:24:8a:11:
48:dc:bf:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkDOFK0dJhthBhTgWwOI96CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjUwOTAxMDMwMDQ2WhcNMjUwOTAyMDMwMDQ2WjAzMTEwLwYDVQQD
EyhkZmRiZjY0OTQ0MjE3Njk1Mjk2ZjIxNTU4M2ZmMWM4MWQ5Yjg4M2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPccPYlEVEBH4eZzq9cky5BVOw5d
bkRrQ8CxYN0OtzvLAbVSvss9huFM66NENW960E7PJ8sasb2+J8cr1TMQEfzDZH4q
IytCXe+DL4hmIJolZ6VPX4pCYcPxs46IMwxN70wypBT/bM4FjRQ7nmfiF3fGXvkN
bj4NXhRWTjZHg3cNKiPUX8HWiZ+jfUpT4ZGBj1iR8pqwdR7yIFl6CSs/iREYowAE
RJx/zDsjnEP4qT/Bp6KL/gu7s/UWP0P+epb5d4i+3u3kcqA2RA50uZOnAqG8XXvi
+wKsa1RxApqQuW7NXVWkRJHHpmAQrA59kQUKaS6ezpcR17AYWA6KXFcx1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN/b9klEIXaVKW8hVYP/HIHZuIP9MB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAByFXsoPM
3Ir1YJ32u1EE6fTTX04PB3gcbh/drCz/ttSGQKIsOjtppZIN7Lf3zcaNUye2+5kG
EerA0mfnheb9SojO7aSya1PKmyNB2JWhvAmU0ZsoXSGW1lD7vgTgQ7b4oEhBB2RV
KRHHaCLWjOzjoUFxqRI2XoQRrztg7F3EC2+5NDtAkOnCSds9rEUtBQY8nGwyki2G
XG3Lwv4cC9JFCjfIEjL0fMwaFQgvEjhzyD2rhQSy/RYD2YhpDF0Fky0mloxkqYeF
xJmvXeg1xJ36Oh92Zg2OtIWDFrhIv731WQHe2EQnns6OoiXZRi2SGKCgztgRvy3/
mtILJIoRSNy/HA==
-----END CERTIFICATE-----
Generated at Mon Sep 1 04:13:54 2025 by rpki-client