Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: qnAxV/IZiwviv41dhbvnMgeBsEL4dwMKttptjlIRoT8=
Subject key identifier: BA:68:4A:9F:D2:6A:03:2E:09:F9:01:31:92:4F:DD:C4:15:64:7B:15
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 0197DBC03D76970EFDFC45EC12D38964CEAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 15C8
Signing time: Sat 05 Jul 2025 18:01:38 +0000
Manifest this update: Sat 05 Jul 2025 18:01:38 +0000
Manifest next update: Sun 06 Jul 2025 18:01:38 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: TORFl8GjPQCYJP9UEPfZZTZ1l1ovPPpbN1V+2pukQQA=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:db:c0:3d:76:97:0e:fd:fc:45:ec:12:d3:89:64:ce:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 5 18:01:38 2025 GMT
Not After : Jul 6 18:01:38 2025 GMT
Subject: CN=ba684a9fd26a032e09f90131924fddc415647b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d6:39:81:6b:e4:7b:eb:8a:bc:f8:ab:ff:52:
3f:ae:b5:e2:51:75:6a:43:8f:23:54:7e:46:9c:9a:
df:c4:7d:4f:20:a1:eb:4b:7a:b4:57:bb:bb:91:d1:
a7:c8:76:14:fe:a6:94:40:f3:43:97:f6:3b:95:e4:
db:29:20:bc:b5:15:0b:2b:5f:0d:9a:cd:a8:0e:e5:
fe:a2:c1:e9:1c:8a:48:44:4b:dd:22:fb:c2:40:6a:
bf:07:a7:c1:ee:3a:32:99:2d:c9:7b:7a:e2:d4:8b:
0c:8c:af:e3:b6:c1:e2:5b:0c:0a:3e:13:35:e5:04:
8c:65:23:7f:3c:9a:80:25:ad:b8:75:e8:9d:8a:d9:
46:58:bd:76:03:cc:4c:db:8f:96:08:47:f1:a8:e4:
3f:57:12:64:60:27:e8:c6:29:4d:70:64:b4:38:d1:
cb:5b:3b:b8:89:aa:cd:98:d9:c9:a3:c5:49:dc:98:
9e:05:04:81:2a:50:17:23:b8:8b:55:68:24:ad:d3:
34:aa:5f:02:69:e7:f4:4e:6c:0d:18:20:76:5b:ad:
17:32:ae:8d:8e:e8:de:9b:af:e1:3c:ac:64:13:ef:
46:7e:ca:1e:a5:46:f6:24:85:76:27:0c:2d:92:e5:
19:7a:c0:95:e8:ad:76:f7:3d:1f:a0:1d:31:6c:a4:
d9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:68:4A:9F:D2:6A:03:2E:09:F9:01:31:92:4F:DD:C4:15:64:7B:15
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:8e:20:1a:79:b8:e2:19:8a:01:34:69:1a:e6:6a:ee:49:d4:
dd:c3:7c:ae:dc:b4:ad:5b:78:d6:6e:81:32:01:71:f9:8e:91:
c6:24:9a:f3:cb:41:11:0a:6a:dd:fe:2d:76:e9:26:26:6e:99:
f3:6e:26:b3:ae:58:a8:ee:15:c3:ad:e9:f5:7e:7b:92:d2:55:
8d:1f:f2:d0:32:25:7e:9e:af:75:26:57:f4:f1:86:ef:17:6b:
d4:e2:6d:fc:00:70:52:6c:0b:61:34:30:8f:0d:5e:06:f3:b2:
b5:a6:5e:a3:d4:a0:df:d4:f2:f5:88:b2:ba:9c:ca:f7:39:88:
0c:d8:03:6f:f1:f7:ad:6c:fd:00:4c:82:45:50:2a:0d:3f:39:
44:57:7d:b5:55:9b:44:c5:99:1f:69:92:2c:64:dd:91:d9:16:
59:44:99:89:22:49:79:ab:ff:91:5a:4a:eb:c0:c2:bc:a0:ad:
59:ab:80:e7:a2:4f:45:f1:59:e5:93:c6:07:40:1e:79:d0:59:
d3:b3:d3:bc:78:9a:47:21:de:7a:6d:3b:67:69:43:1b:16:a5:
11:1e:9f:62:be:91:b8:32:98:21:fc:4d:03:a3:70:8a:4a:31:
df:a5:3e:d3:e2:79:8f:0f:ee:ba:27:9d:56:aa:3b:76:88:01:
42:69:a8:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfbwD12lw79/EXsEtOJZM6qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjUwNzA1MTgwMTM4WhcNMjUwNzA2MTgwMTM4WjAzMTEwLwYDVQQD
EyhiYTY4NGE5ZmQyNmEwMzJlMDlmOTAxMzE5MjRmZGRjNDE1NjQ3YjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNY5gWvke+uKvPir/1I/rrXiUXVq
Q48jVH5GnJrfxH1PIKHrS3q0V7u7kdGnyHYU/qaUQPNDl/Y7leTbKSC8tRULK18N
ms2oDuX+osHpHIpIREvdIvvCQGq/B6fB7joymS3Je3ri1IsMjK/jtsHiWwwKPhM1
5QSMZSN/PJqAJa24deiditlGWL12A8xM24+WCEfxqOQ/VxJkYCfoxilNcGS0ONHL
Wzu4iarNmNnJo8VJ3JieBQSBKlAXI7iLVWgkrdM0ql8Caef0TmwNGCB2W60XMq6N
jujem6/hPKxkE+9GfsoepUb2JIV2JwwtkuUZesCV6K129z0foB0xbKTZFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLpoSp/SagMuCfkBMZJP3cQVZHsVMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk44gGnm4
4hmKATRpGuZq7knU3cN8rty0rVt41m6BMgFx+Y6RxiSa88tBEQpq3f4tdukmJm6Z
824ms65YqO4Vw63p9X57ktJVjR/y0DIlfp6vdSZX9PGG7xdr1OJt/ABwUmwLYTQw
jw1eBvOytaZeo9Sg39Ty9YiyupzK9zmIDNgDb/H3rWz9AEyCRVAqDT85RFd9tVWb
RMWZH2mSLGTdkdkWWUSZiSJJeav/kVpK68DCvKCtWauA56JPRfFZ5ZPGB0AeedBZ
07PTvHiaRyHeem07Z2lDGxalER6fYr6RuDKYIfxNA6Nwikox36U+0+J5jw/uuied
Vqo7dogBQmmomw==
-----END CERTIFICATE-----
Generated at Sat Jul 5 19:36:39 2025 by rpki-client