Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: +NuH+yrbjWjnSkE86NkVlV1vRBGgUjdqyFfLSI7YLfc=
Subject key identifier: BB:85:8F:06:6C:EC:D7:58:92:7C:1A:82:6B:E8:C0:5F:9C:5D:B9:76
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 0196BB927A5FC01CAFF9F7AE756A0C7BB96E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 02DD
Signing time: Sat 10 May 2025 19:01:01 +0000
Manifest this update: Sat 10 May 2025 19:01:01 +0000
Manifest next update: Sun 11 May 2025 19:01:01 +0000
Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=)
2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=)
3: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: JBOCbEznAyRIoLx+jSgQIp1wP2n7Vj3JYL9Ww4r7zuE=)
4: OdjteK9gKG4YNaSPtAZxPfbKTlg.roa (hash: C1n8BPEFHA0rRgZVDgK4q8CBrVeD5FeMnjLcyYE1XMw=)
5: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=)
6: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=)
7: xTf5pi1O1OBOL8Roy41K3aIww6Y.roa (hash: S2VqtYqj28mSbHWyl9+CNpKvGeC5wqTzL6SGHQbpvl4=)
8: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:7a:5f:c0:1c:af:f9:f7:ae:75:6a:0c:7b:b9:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: May 10 19:01:01 2025 GMT
Not After : May 11 19:01:01 2025 GMT
Subject: CN=bb858f066cecd758927c1a826be8c05f9c5db976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1d:12:0e:96:c2:26:c7:ad:19:78:50:b9:ec:
91:64:dd:94:19:21:af:fc:d6:65:b9:8b:ea:e2:31:
94:19:ac:c1:ec:89:ee:cc:97:4b:ca:3a:b5:57:00:
2f:cc:8e:9d:66:a0:25:a9:be:7b:b9:9a:e9:3e:4b:
9b:ba:bb:35:a9:cb:88:8b:53:78:7f:57:e9:de:13:
5f:4e:54:4d:a3:d7:32:74:c3:c5:f5:f2:5c:b4:6b:
93:31:d2:84:64:80:8d:40:a3:48:b9:88:67:57:1e:
f5:aa:d2:44:1d:de:66:e4:b3:73:f3:ea:9f:c1:c1:
a4:71:d0:08:09:cb:5e:ad:c4:e3:b5:a9:6b:8a:b9:
f8:10:b7:76:69:95:56:16:aa:d5:b0:56:d8:11:f1:
3c:0d:e4:cc:b3:26:9f:43:94:9c:9e:33:cf:28:12:
c9:c2:b7:60:ba:88:ab:4a:f2:8b:2a:91:d2:34:a4:
27:e7:c1:7b:c8:fe:c0:29:50:1e:7a:46:04:8f:35:
0d:71:23:5a:95:ba:c9:3d:e0:3c:ac:d1:5f:1d:aa:
02:84:8b:c8:d9:64:72:47:a3:28:8f:8e:64:3c:06:
a2:f3:4f:be:4c:2c:95:4c:46:53:51:d8:9c:0e:67:
d7:dd:ba:06:31:83:35:07:32:2d:be:e3:5a:08:24:
ad:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:85:8F:06:6C:EC:D7:58:92:7C:1A:82:6B:E8:C0:5F:9C:5D:B9:76
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:6f:b0:a5:3c:fb:36:6b:d9:08:01:8f:72:29:76:b6:12:80:
b4:19:8d:1c:52:e1:e7:e0:ab:5a:2d:d3:e0:a5:15:a2:1d:74:
c7:ea:01:df:3f:76:be:c9:ac:32:6a:5c:6f:78:af:ae:60:74:
23:7e:fb:9a:e0:27:28:3e:91:02:33:70:39:85:ae:c4:7e:e6:
c0:16:63:e6:b5:a5:ac:65:f2:71:0d:fc:72:13:58:c8:5a:57:
c3:a1:df:1a:c7:4f:55:66:fb:3e:94:9b:5b:27:af:48:84:00:
09:f7:5f:7b:78:9a:9c:5a:fa:90:1c:ea:fe:11:63:e2:e7:73:
00:c1:a0:b3:2c:bb:e6:f8:8a:3c:f8:47:f8:d3:e8:78:fd:02:
35:0e:c4:ae:3d:b7:fc:f9:c0:f5:50:3a:63:5a:57:d8:31:d8:
fe:cf:23:59:d7:b6:72:2a:e7:8e:c9:e3:c8:31:17:09:a5:e1:
99:6d:01:fe:c8:fe:a1:ec:6c:44:24:65:af:c5:47:88:e3:34:
cf:0e:a3:47:5d:d6:fe:57:5a:d7:fa:c3:63:0e:76:37:16:2d:
19:87:9a:76:59:40:27:bd:cc:2e:6e:de:99:85:c5:f6:a6:43:
1c:d6:a6:d3:63:13:d9:25:ac:7f:76:38:d2:8a:b5:84:fa:44:
96:38:84:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa7knpfwByv+feudWoMe7luMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh
NTI2ZDgwHhcNMjUwNTEwMTkwMTAxWhcNMjUwNTExMTkwMTAxWjAzMTEwLwYDVQQD
EyhiYjg1OGYwNjZjZWNkNzU4OTI3YzFhODI2YmU4YzA1ZjljNWRiOTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzB0SDpbCJsetGXhQueyRZN2UGSGv
/NZluYvq4jGUGazB7InuzJdLyjq1VwAvzI6dZqAlqb57uZrpPkuburs1qcuIi1N4
f1fp3hNfTlRNo9cydMPF9fJctGuTMdKEZICNQKNIuYhnVx71qtJEHd5m5LNz8+qf
wcGkcdAICctercTjtalrirn4ELd2aZVWFqrVsFbYEfE8DeTMsyafQ5ScnjPPKBLJ
wrdguoirSvKLKpHSNKQn58F7yP7AKVAeekYEjzUNcSNalbrJPeA8rNFfHaoChIvI
2WRyR6Moj45kPAai80++TCyVTEZTUdicDmfX3boGMYM1BzItvuNaCCStYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLuFjwZs7NdYknwagmvowF+cXbl2MB8GA1UdIwQY
MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt
MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh
LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH2+wpTz7
NmvZCAGPcil2thKAtBmNHFLh5+CrWi3T4KUVoh10x+oB3z92vsmsMmpcb3ivrmB0
I377muAnKD6RAjNwOYWuxH7mwBZj5rWlrGXycQ38chNYyFpXw6HfGsdPVWb7PpSb
WyevSIQACfdfe3ianFr6kBzq/hFj4udzAMGgsyy75viKPPhH+NPoeP0CNQ7Erj23
/PnA9VA6Y1pX2DHY/s8jWde2cirnjsnjyDEXCaXhmW0B/sj+oexsRCRlr8VHiOM0
zw6jR13W/lda1/rDYw52NxYtGYeadllAJ73MLm7emYXF9qZDHNam02MT2SWsf3Y4
0oq1hPpEljiEsg==
-----END CERTIFICATE-----
Generated at Sat May 10 21:12:30 2025 by rpki-client