Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
File: KQzE0K1dr8J6pONC-oDjSBToRcM.mft (raw, json)
Hash identifier: ARFs9GICkVd+fDuaZIUXqbOtbrN4EkoA/wgvGV2sZoQ=
Subject key identifier: 0E:A8:DB:43:96:AE:FA:F5:EE:1B:96:7A:A7:09:EA:33:DD:BC:3B:D9
Authority key identifier: 29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
Certificate issuer: /CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Certificate serial: 019932A3A78F0A5BDE9F24A01F6206DDBE05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
Manifest number: 06B7
Signing time: Wed 10 Sep 2025 08:00:09 +0000
Manifest this update: Wed 10 Sep 2025 08:00:09 +0000
Manifest next update: Thu 11 Sep 2025 08:00:09 +0000
Files and hashes: 1: 187N4PB5lNzYnkhVyKxTgG2ufTQ.roa (hash: nnFT2Pv1VSMMW5/AFw9H17xWytd4IEI7JaypDZR0hFg=)
2: KQzE0K1dr8J6pONC-oDjSBToRcM.crl (hash: OOqSCB0YUJlprhvWhUpOfJDedpWE8rNhr9CsY1qNpO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 08:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:32:a3:a7:8f:0a:5b:de:9f:24:a0:1f:62:06:dd:be:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Validity
Not Before: Sep 10 08:00:09 2025 GMT
Not After : Sep 11 08:00:09 2025 GMT
Subject: CN=0ea8db4396aefaf5ee1b967aa709ea33ddbc3bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a9:39:51:1b:60:90:9d:dc:61:8f:86:0d:fd:
1a:21:2f:be:e0:d9:82:f3:88:be:ae:ff:e4:a3:72:
ce:dd:d7:f4:93:f4:e1:23:d7:df:af:46:3b:bc:2c:
60:3f:7b:09:83:e7:77:b4:ef:24:12:94:95:aa:35:
d7:ca:a6:7f:b9:71:9c:31:41:c7:f3:28:40:a2:5a:
69:f8:dc:b0:7b:68:0c:5f:09:d8:bc:87:b9:21:e4:
dc:f2:6c:16:21:a9:53:be:80:d1:71:d9:42:8c:60:
79:64:20:a5:f2:06:53:8a:34:50:7c:7e:59:5d:31:
5f:ad:8c:bb:d6:56:10:50:8f:70:e7:ae:03:cf:ca:
b4:92:ee:e1:4c:8b:cc:c8:4e:7a:69:21:5c:1b:75:
3b:1e:14:6f:fd:f3:5f:79:9a:bd:97:a0:58:d8:80:
d0:3d:80:47:8b:21:bb:46:69:c6:47:2d:93:40:af:
91:03:cd:40:81:90:d7:e2:c1:48:7b:0a:d0:c8:da:
2e:24:eb:e5:a1:a8:f6:ac:e1:50:9c:13:0e:26:17:
02:3a:a2:25:af:32:be:27:69:42:83:41:f2:70:fc:
0f:85:a0:e9:86:94:09:0f:b8:cd:f8:ba:83:ef:13:
a0:36:a1:98:10:a5:4b:d4:44:3e:33:f4:b8:10:db:
f4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A8:DB:43:96:AE:FA:F5:EE:1B:96:7A:A7:09:EA:33:DD:BC:3B:D9
X509v3 Authority Key Identifier:
keyid:29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:5c:c3:32:85:f5:4b:bf:08:4e:98:85:0e:14:d2:18:50:c4:
83:45:93:72:73:31:36:d0:eb:4e:e8:be:87:97:93:f5:06:f9:
45:98:53:b7:9d:d4:58:b5:92:d3:90:cf:bd:c5:01:56:c9:00:
87:c6:36:71:eb:4d:fd:c7:6d:c5:bc:ef:a5:a3:9c:03:e3:73:
22:29:52:e7:74:f9:2a:2d:d3:e7:6c:5c:d5:da:41:c1:83:4f:
29:05:b7:61:eb:73:fe:5d:21:92:45:8d:f4:99:01:3a:fc:39:
14:c5:5e:43:bd:bb:68:42:bc:76:52:fd:11:d0:d1:cb:64:61:
8c:83:0f:c9:4e:9d:a5:f9:10:86:aa:5c:4e:72:00:34:da:e0:
03:7b:a9:22:d0:b8:9e:6e:80:4e:77:e2:93:19:e5:bf:85:d7:
61:67:16:5b:c5:98:48:b8:8a:5e:82:bb:f7:83:4b:f9:a3:2f:
59:52:d6:46:a9:f7:ba:44:62:ca:78:65:22:3a:33:45:cb:71:
14:5b:09:16:17:ff:2b:8a:fe:11:b3:29:4c:23:4d:a4:b6:d6:
8e:e7:5f:29:b7:0c:8a:3c:5f:ff:ec:70:95:60:74:24:8a:d7:
9f:5b:b3:5a:42:25:b8:bb:94:7b:f4:ff:4c:dc:50:b7:31:78:
c5:3e:fb:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkyo6ePClvenySgH2IG3b4FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MGNjNGQwYWQ1ZGFmYzI3YWE0ZTM0MmZhODBlMzQ4MTRl
ODQ1YzMwHhcNMjUwOTEwMDgwMDA5WhcNMjUwOTExMDgwMDA5WjAzMTEwLwYDVQQD
EygwZWE4ZGI0Mzk2YWVmYWY1ZWUxYjk2N2FhNzA5ZWEzM2RkYmMzYmQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyak5URtgkJ3cYY+GDf0aIS++4NmC
84i+rv/ko3LO3df0k/ThI9ffr0Y7vCxgP3sJg+d3tO8kEpSVqjXXyqZ/uXGcMUHH
8yhAolpp+Nywe2gMXwnYvIe5IeTc8mwWIalTvoDRcdlCjGB5ZCCl8gZTijRQfH5Z
XTFfrYy71lYQUI9w564Dz8q0ku7hTIvMyE56aSFcG3U7HhRv/fNfeZq9l6BY2IDQ
PYBHiyG7RmnGRy2TQK+RA81AgZDX4sFIewrQyNouJOvloaj2rOFQnBMOJhcCOqIl
rzK+J2lCg0HycPwPhaDphpQJD7jN+LqD7xOgNqGYEKVL1EQ+M/S4ENv03wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA6o20OWrvr17huWeqcJ6jPdvDvZMB8GA1UdIwQY
MBaAFCkMxNCtXa/CeqTjQvqA40gU6EXDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1F6RTBLMWRyOEo2cE9OQy1vRGpTQlRvUmNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS85MjM1MmYtNDA1MS00NTBlLWIzYTYt
MmUwMDc4Y2VlMTgyLzEvS1F6RTBLMWRyOEo2cE9OQy1vRGpTQlRvUmNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS85MjM1MmYtNDA1MS00NTBlLWIzYTYtMmUwMDc4Y2VlMTgy
LzEvS1F6RTBLMWRyOEo2cE9OQy1vRGpTQlRvUmNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYFzDMoX1
S78ITpiFDhTSGFDEg0WTcnMxNtDrTui+h5eT9Qb5RZhTt53UWLWS05DPvcUBVskA
h8Y2cetN/cdtxbzvpaOcA+NzIilS53T5Ki3T52xc1dpBwYNPKQW3Yetz/l0hkkWN
9JkBOvw5FMVeQ727aEK8dlL9EdDRy2RhjIMPyU6dpfkQhqpcTnIANNrgA3upItC4
nm6ATnfikxnlv4XXYWcWW8WYSLiKXoK794NL+aMvWVLWRqn3ukRiynhlIjozRctx
FFsJFhf/K4r+EbMpTCNNpLbWjudfKbcMijxf/+xwlWB0JIrXn1uzWkIluLuUe/T/
TNxQtzF4xT77Tg==
-----END CERTIFICATE-----
Generated at Wed Sep 10 15:10:38 2025 by rpki-client