Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
File: KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft (raw, json)
Hash identifier: ySTdfpXauXSR5JUVGhuNSGvzjzdPxyXsys45a8PRPBI=
Subject key identifier: 8A:40:E5:59:DA:DB:4C:4D:C2:D1:09:B4:76:27:0B:C9:7E:95:0D:E7
Authority key identifier: 2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
Certificate issuer: /CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Certificate serial: 0196B4B4369F62131350DB3775172BBF1AE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
Manifest number: 0D29
Signing time: Fri 09 May 2025 11:00:31 +0000
Manifest this update: Fri 09 May 2025 11:00:31 +0000
Manifest next update: Sat 10 May 2025 11:00:31 +0000
Files and hashes: 1: 3tVWAqpuhZmIvirALPURMbWbRUo.roa (hash: 8vZgncUoPoI0S65ff9n3cIU9sKbrNMXpH1mUnl/CdOM=)
2: GerACxDWw1b6KGz6kGs5iVp2ois.roa (hash: 4GcODZKqecND9v8xjlb0j4xGLtBy9xZhAi6ymZShRcQ=)
3: KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl (hash: MEsM6lqIlswvu/rqZSc6tqf/TrjyddEMbZt3q0zkGlI=)
4: LEyJ2WNBj9cTPetK4hsEfLcBcEI.roa (hash: WmOLEifdPoH/joG2SNYp6mcbI8myXya9UUZozRyBF44=)
5: Qy3Q7lh00t0205L0nhmAvt2uoOs.roa (hash: a4ie5/FL3GVO5YHgzPjyXYH6PIkYqfX1mb+x+F8lR9c=)
6: X35BdP6fZcPzqxMLjnciq7uISgs.roa (hash: X6IFONVs0ZqJ9lk+Np5sgqP+DTo255gzewtTiaP3PC0=)
7: eGuHIFNh-O-K6vz68gcxBeLPa18.roa (hash: G6cEnCf7JWL4wnvSWWO7ELeSvpGDDJYGerFFAWSt9CA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:b4:36:9f:62:13:13:50:db:37:75:17:2b:bf:1a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3
Validity
Not Before: May 9 11:00:31 2025 GMT
Not After : May 10 11:00:31 2025 GMT
Subject: CN=8a40e559dadb4c4dc2d109b476270bc97e950de7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ec:a8:d2:55:a4:16:73:78:b1:e2:6b:79:ff:
d6:f1:62:59:fa:6b:71:cc:ed:d1:ad:0c:c1:46:68:
54:8d:8e:c7:73:3e:b8:1f:ad:04:a9:90:5d:d2:59:
81:71:35:5e:3a:4c:84:f5:04:78:5b:63:f5:76:43:
c8:b1:dc:2a:28:22:9a:1d:b3:15:55:39:e0:bb:22:
ee:0c:5c:59:8f:01:4f:af:44:e5:26:e6:e2:de:5f:
9a:a4:0e:df:dd:d6:e3:b8:fe:e9:c8:e2:a0:f0:35:
88:08:b6:43:45:02:b4:50:d8:d3:09:98:6d:16:14:
a8:24:68:a8:a6:82:49:2d:97:94:8c:9d:2f:a7:54:
2c:0d:d3:03:ec:a0:20:2d:90:e1:c0:93:57:a8:c9:
4f:c6:5c:f9:f8:fd:02:66:13:2a:26:2a:bb:16:0c:
03:5d:57:bc:32:da:d2:9b:43:1d:49:ed:ab:71:51:
6f:9f:32:9e:a3:04:20:e7:53:06:72:3b:8d:56:46:
ca:5b:a7:08:b3:b5:65:05:f2:93:10:f5:ba:3c:39:
77:e2:cb:d1:81:6e:73:2b:6b:ec:eb:92:2c:d1:07:
d8:ed:7d:d2:90:d9:76:75:7c:f5:e0:c5:77:83:16:
d9:73:a6:72:c7:6a:f4:19:ef:40:5e:ad:c2:64:18:
2a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:40:E5:59:DA:DB:4C:4D:C2:D1:09:B4:76:27:0B:C9:7E:95:0D:E7
X509v3 Authority Key Identifier:
keyid:2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:c7:1d:59:ca:b5:6d:b6:1b:fe:3d:89:a9:73:b6:5a:aa:e7:
25:d1:c8:32:fe:1f:ab:a7:05:30:b5:f8:d1:df:c0:1a:bb:5a:
43:de:51:fa:88:d5:60:57:4e:17:8e:6a:60:f4:bc:10:f4:0c:
1c:ec:e6:3b:1e:3b:6c:b1:dd:6f:e2:8e:25:d3:c5:6b:1b:95:
dc:d9:cf:1a:02:cb:34:f2:3c:e8:d3:9f:61:c8:00:32:c5:fc:
ca:32:8e:49:70:ce:5e:ef:ac:c5:50:d4:10:bc:be:b3:82:aa:
ef:f8:94:a8:be:24:53:db:8c:b2:c7:57:e4:c9:57:0f:c6:06:
ea:70:42:1e:99:bf:bd:b7:78:bc:94:81:4b:ef:d5:7d:24:1d:
c1:b3:ff:1d:03:2f:be:f3:47:1a:f1:41:2e:15:96:5b:71:12:
db:01:19:60:f0:75:c5:47:fe:ae:54:fa:cf:da:c0:cb:4c:e3:
bb:15:9d:92:d0:61:d1:bd:60:ca:a2:52:49:7d:6d:54:43:b1:
37:e0:f4:5d:70:77:7c:39:71:fa:fb:f1:8d:31:8c:f1:7a:fd:
27:2b:8c:ff:72:10:b0:f3:65:43:d9:eb:f4:78:a6:5c:9d:cb:
19:75:30:a0:05:79:7b:ad:0f:68:1b:3b:8d:99:fd:dd:ba:a7:
c2:11:83:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa0tDafYhMTUNs3dRcrvxrmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMjM3YzVhZmZlOTM1NDNhZTJmZTZlMWZmZWQxODIzOTZl
YjliYjMwHhcNMjUwNTA5MTEwMDMxWhcNMjUwNTEwMTEwMDMxWjAzMTEwLwYDVQQD
Eyg4YTQwZTU1OWRhZGI0YzRkYzJkMTA5YjQ3NjI3MGJjOTdlOTUwZGU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquyo0lWkFnN4seJref/W8WJZ+mtx
zO3RrQzBRmhUjY7Hcz64H60EqZBd0lmBcTVeOkyE9QR4W2P1dkPIsdwqKCKaHbMV
VTnguyLuDFxZjwFPr0TlJubi3l+apA7f3dbjuP7pyOKg8DWICLZDRQK0UNjTCZht
FhSoJGiopoJJLZeUjJ0vp1QsDdMD7KAgLZDhwJNXqMlPxlz5+P0CZhMqJiq7FgwD
XVe8MtrSm0MdSe2rcVFvnzKeowQg51MGcjuNVkbKW6cIs7VlBfKTEPW6PDl34svR
gW5zK2vs65Is0QfY7X3SkNl2dXz14MV3gxbZc6Zyx2r0Ge9AXq3CZBgqMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIpA5Vna20xNwtEJtHYnC8l+lQ3nMB8GA1UdIwQY
MBaAFCsjfFr/6TVDri/m4f/tGCOW65uzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3lOOFd2X3BOVU91TC1iaF8tMFlJNWJybTdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi82NGEwNTMtMjZmZi00OGE2LWFlZGEt
MTQ3MDJhNGQyNjYwLzEvS3lOOFd2X3BOVU91TC1iaF8tMFlJNWJybTdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi82NGEwNTMtMjZmZi00OGE2LWFlZGEtMTQ3MDJhNGQyNjYw
LzEvS3lOOFd2X3BOVU91TC1iaF8tMFlJNWJybTdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPMcdWcq1
bbYb/j2JqXO2WqrnJdHIMv4fq6cFMLX40d/AGrtaQ95R+ojVYFdOF45qYPS8EPQM
HOzmOx47bLHdb+KOJdPFaxuV3NnPGgLLNPI86NOfYcgAMsX8yjKOSXDOXu+sxVDU
ELy+s4Kq7/iUqL4kU9uMssdX5MlXD8YG6nBCHpm/vbd4vJSBS+/VfSQdwbP/HQMv
vvNHGvFBLhWWW3ES2wEZYPB1xUf+rlT6z9rAy0zjuxWdktBh0b1gyqJSSX1tVEOx
N+D0XXB3fDlx+vvxjTGM8Xr9JyuM/3IQsPNlQ9nr9HimXJ3LGXUwoAV5e60PaBs7
jZn93bqnwhGDsQ==
-----END CERTIFICATE-----
Generated at Fri May 9 18:44:49 2025 by rpki-client