Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: BMFjTCHVSxL9UjwFsQ9UdpAO9hiq2dWspS+FqL5MWGQ=
Subject key identifier: 72:44:AE:F0:F3:E8:83:16:C4:EF:69:AE:F8:92:8D:F8:1F:48:32:3E
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019922552AE45F1A45904EEE4C1871388FCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 022F
Signing time: Sun 07 Sep 2025 04:00:30 +0000
Manifest this update: Sun 07 Sep 2025 04:00:30 +0000
Manifest next update: Mon 08 Sep 2025 04:00:30 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: w5q8ChAMWCMG3Vi0spMVPA2jPGqvMMUUSRzKIdUX8UU=)
2: q2_sbJziOr7rwxyhvKWnkNjMans.roa (hash: 0BH7DATsPfSUKJPP/TZdwOG931UfHO+OV4ftBhPZrwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:2a:e4:5f:1a:45:90:4e:ee:4c:18:71:38:8f:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Sep 7 04:00:30 2025 GMT
Not After : Sep 8 04:00:30 2025 GMT
Subject: CN=7244aef0f3e88316c4ef69aef8928df81f48323e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f3:44:df:8b:17:cf:f2:b7:c6:ef:1c:f5:72:
a5:86:94:3e:7b:4e:a7:41:6f:f2:fd:02:c7:57:df:
3e:78:4f:3e:a6:73:02:1d:44:a4:69:84:5f:3e:15:
21:92:d7:09:32:ba:e9:50:f6:80:dc:b6:1c:dd:1d:
ec:19:89:d9:6e:83:17:f5:8c:bf:c3:42:19:fc:b8:
1a:c3:93:0c:0c:12:fa:e0:83:f5:56:3d:6e:8f:1f:
88:4c:24:ef:b3:f9:40:22:8f:95:01:cf:91:fa:9a:
14:26:2b:87:38:d1:f0:9f:97:33:60:2c:44:ae:de:
bd:28:80:88:fb:53:7a:c0:6d:07:92:be:72:d0:c0:
e6:50:e5:f1:29:ab:ac:b8:a2:27:81:ef:b6:e5:23:
26:96:23:47:73:cb:c1:7a:ca:3d:1b:a7:03:50:b3:
c2:f2:d9:f8:b0:e9:c8:cc:a1:79:9e:27:76:60:8a:
1a:19:e3:b5:2f:d3:52:d2:75:fd:95:97:0c:eb:ee:
6e:aa:6c:8c:96:ab:c8:6d:99:7d:fa:62:88:28:4f:
07:ab:c7:cf:ed:65:9c:d4:23:b2:76:9f:a5:a8:69:
f7:dd:d3:e4:3f:de:29:e0:a5:98:ed:b2:b9:99:ff:
e5:05:76:ba:43:ee:af:fb:e4:a2:3e:72:14:7e:6a:
ad:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:44:AE:F0:F3:E8:83:16:C4:EF:69:AE:F8:92:8D:F8:1F:48:32:3E
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:0b:1f:58:0e:ef:0b:44:0e:45:51:1e:6a:d0:f9:df:79:af:
e3:78:3f:63:26:35:ce:7d:1f:da:d3:74:28:41:fc:12:62:be:
6f:5b:91:d2:64:8a:a4:41:01:f6:8a:b0:cc:d0:82:b5:31:bc:
9a:b1:f8:be:77:d4:64:04:e5:3d:16:28:3d:f8:24:c6:08:25:
3d:a9:4b:62:d5:17:d2:7d:94:5f:d1:60:c5:ea:a4:3f:16:cc:
e8:20:35:77:74:71:5c:14:12:1d:15:ae:6c:2d:1e:22:df:61:
08:94:e3:9b:73:61:bc:d6:65:ac:15:d7:2a:d9:78:40:11:12:
32:8a:92:22:a5:61:4c:da:1f:be:f2:10:70:27:03:ef:48:08:
2a:e2:2b:2d:17:c5:b6:1f:da:8a:dc:36:d1:2c:3b:b6:b6:25:
3b:43:49:21:1f:19:a4:03:fc:78:b3:0d:ca:32:f4:2e:97:c2:
bb:5b:2e:b3:64:1c:45:06:6a:a8:d3:9f:9c:4d:96:e7:53:af:
6e:22:09:27:d7:04:5d:4c:bf:72:77:b9:5b:27:1b:21:dd:b4:
06:03:e8:25:92:3f:b8:11:51:2d:cb:37:27:6d:d3:5c:14:e6:
53:59:92:bc:61:85:fd:44:50:a4:5b:9b:8c:8b:19:26:c3:6a:
08:3f:03:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVSrkXxpFkE7uTBhxOI/OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODA0NzRhOTYxNjFkZGUyOTQyY2ZiOWYxODU2YzJmZmM4
ODA5MDQwHhcNMjUwOTA3MDQwMDMwWhcNMjUwOTA4MDQwMDMwWjAzMTEwLwYDVQQD
Eyg3MjQ0YWVmMGYzZTg4MzE2YzRlZjY5YWVmODkyOGRmODFmNDgzMjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPNE34sXz/K3xu8c9XKlhpQ+e06n
QW/y/QLHV98+eE8+pnMCHUSkaYRfPhUhktcJMrrpUPaA3LYc3R3sGYnZboMX9Yy/
w0IZ/Lgaw5MMDBL64IP1Vj1ujx+ITCTvs/lAIo+VAc+R+poUJiuHONHwn5czYCxE
rt69KICI+1N6wG0Hkr5y0MDmUOXxKausuKInge+25SMmliNHc8vBeso9G6cDULPC
8tn4sOnIzKF5nid2YIoaGeO1L9NS0nX9lZcM6+5uqmyMlqvIbZl9+mKIKE8Hq8fP
7WWc1COydp+lqGn33dPkP94p4KWY7bK5mf/lBXa6Q+6v++SiPnIUfmqtFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHJErvDz6IMWxO9prviSjfgfSDI+MB8GA1UdIwQY
MBaAFCiAR0qWFh3eKULPufGFbC/8iAkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAt
NzQ2MWE1NmNlOTVlLzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAtNzQ2MWE1NmNlOTVl
LzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcwsfWA7v
C0QORVEeatD533mv43g/YyY1zn0f2tN0KEH8EmK+b1uR0mSKpEEB9oqwzNCCtTG8
mrH4vnfUZATlPRYoPfgkxgglPalLYtUX0n2UX9FgxeqkPxbM6CA1d3RxXBQSHRWu
bC0eIt9hCJTjm3NhvNZlrBXXKtl4QBESMoqSIqVhTNofvvIQcCcD70gIKuIrLRfF
th/aitw20Sw7trYlO0NJIR8ZpAP8eLMNyjL0LpfCu1sus2QcRQZqqNOfnE2W51Ov
biIJJ9cEXUy/cne5WycbId20BgPoJZI/uBFRLcs3J23TXBTmU1mSvGGF/URQpFub
jIsZJsNqCD8Dwg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:43:29 2025 by rpki-client