Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
File: kkecrihHZdYoBEEZAJiA0op1YLE.mft (raw, json)
Hash identifier: HTWxy9JgknIR/DKvvjX/3yuUehTuN/fJO8rIC+xT5jI=
Subject key identifier: 72:53:3E:73:EB:97:CA:76:45:F1:6C:AE:8F:5F:CF:24:F6:55:38:8B
Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1
Certificate serial: 0196BA118E3128D42AEB409DC3CBC8839632
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
Manifest number: 1531
Signing time: Sat 10 May 2025 12:00:34 +0000
Manifest this update: Sat 10 May 2025 12:00:34 +0000
Manifest next update: Sun 11 May 2025 12:00:34 +0000
Files and hashes: 1: kkecrihHZdYoBEEZAJiA0op1YLE.crl (hash: 5AQFzkootYtNcWfClkWfAjpk5ZSEV84gudMneRQGDaU=)
2: x9d_ZYOPUgUTIG_dU1aWLhzD7L0.roa (hash: Eoi/Kjhf2x+MudONjVV9qJBRoFTzvMFaOuh/XyvvI1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:8e:31:28:d4:2a:eb:40:9d:c3:cb:c8:83:96:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92479cae284765d628044119009880d28a7560b1
Validity
Not Before: May 10 12:00:34 2025 GMT
Not After : May 11 12:00:34 2025 GMT
Subject: CN=72533e73eb97ca7645f16cae8f5fcf24f655388b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8b:95:75:07:c8:c8:7a:c9:95:79:46:01:66:
b8:ec:fd:df:45:99:84:f1:4e:1b:ec:2d:54:c1:29:
ac:9d:88:99:76:b2:5d:2a:43:49:5c:8f:76:28:de:
53:c5:68:d9:65:60:70:38:fa:c7:60:29:3e:20:63:
60:65:9e:86:46:1c:a0:f8:fc:db:07:93:83:cf:f4:
28:b8:7c:10:89:2e:97:dd:06:ed:d4:b7:1c:3a:88:
b2:21:72:6b:75:7b:9a:2f:4a:0c:a7:b4:ba:be:f9:
1e:cf:69:c4:db:07:80:d0:91:22:31:b0:ee:91:a5:
11:0d:ff:1a:61:c2:a2:b5:e6:fe:01:e6:3c:9c:46:
13:db:16:0c:d4:bb:9c:7b:b9:47:ad:8c:fa:04:b2:
35:4c:20:c1:c1:f3:52:c4:07:bf:71:95:a4:0f:bc:
0d:ce:a5:ff:f1:14:04:8c:82:91:00:82:2b:a9:0f:
1c:ff:65:ce:bf:5e:4f:64:86:41:80:7d:50:59:1e:
29:1d:fb:f6:ad:72:74:58:fd:f6:cb:dc:36:fc:4a:
34:4f:08:31:27:20:1e:de:22:18:90:00:10:fc:02:
cb:67:bb:e6:95:9e:47:9c:a8:82:4a:ed:90:98:f3:
12:f7:82:59:ae:df:7e:ea:d1:f2:89:5f:1c:64:a7:
7c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:53:3E:73:EB:97:CA:76:45:F1:6C:AE:8F:5F:CF:24:F6:55:38:8B
X509v3 Authority Key Identifier:
keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:6a:4a:b2:a1:2a:5a:8e:c4:05:9b:45:5b:df:50:fb:2f:a4:
c8:10:73:dc:f9:0f:3f:27:14:34:e3:9c:a3:a4:5c:ae:e4:93:
0b:ee:4a:fe:01:5a:2d:28:d5:26:c2:76:33:11:a8:f1:33:2e:
d0:f3:ed:b3:a4:1c:4b:70:24:34:56:59:1a:28:65:98:d9:1f:
0c:2b:fe:e4:d1:ca:06:cf:b6:2d:c5:8b:7a:59:c8:6f:6a:fb:
cf:cc:ff:9f:f2:32:08:36:4f:54:36:51:df:d4:37:c6:48:f1:
c6:62:93:89:60:f2:8f:40:57:61:fa:1e:08:d9:cc:cb:25:00:
11:2c:36:c7:06:f9:8e:5c:b2:15:72:b5:6f:61:18:54:1e:41:
bb:c3:d1:5c:fb:d4:c2:4e:17:75:68:33:cc:60:f1:35:5b:6f:
50:35:b1:4e:94:1d:4e:d2:ee:a4:5d:cb:4f:13:ff:a6:38:cf:
29:28:70:27:eb:b3:b2:c3:6f:16:69:3f:31:c8:9e:b5:b4:83:
ed:57:67:97:bf:f3:50:4c:3a:0e:29:b5:c3:d6:f0:ee:09:76:
96:96:a6:6c:78:86:45:6c:ed:4d:c4:a0:7a:2a:e4:da:c0:3f:
a4:97:43:3a:66:04:23:b6:29:e3:15:60:bd:1c:68:97:4c:dc:
68:91:eb:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa6EY4xKNQq60Cdw8vIg5YyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNDc5Y2FlMjg0NzY1ZDYyODA0NDExOTAwOTg4MGQyOGE3
NTYwYjEwHhcNMjUwNTEwMTIwMDM0WhcNMjUwNTExMTIwMDM0WjAzMTEwLwYDVQQD
Eyg3MjUzM2U3M2ViOTdjYTc2NDVmMTZjYWU4ZjVmY2YyNGY2NTUzODhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIuVdQfIyHrJlXlGAWa47P3fRZmE
8U4b7C1UwSmsnYiZdrJdKkNJXI92KN5TxWjZZWBwOPrHYCk+IGNgZZ6GRhyg+Pzb
B5ODz/QouHwQiS6X3Qbt1LccOoiyIXJrdXuaL0oMp7S6vvkez2nE2weA0JEiMbDu
kaURDf8aYcKiteb+AeY8nEYT2xYM1Luce7lHrYz6BLI1TCDBwfNSxAe/cZWkD7wN
zqX/8RQEjIKRAIIrqQ8c/2XOv15PZIZBgH1QWR4pHfv2rXJ0WP32y9w2/Eo0Twgx
JyAe3iIYkAAQ/ALLZ7vmlZ5HnKiCSu2QmPMS94JZrt9+6tHyiV8cZKd8GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHJTPnPrl8p2RfFsro9fzyT2VTiLMB8GA1UdIwQY
MBaAFJJHnK4oR2XWKARBGQCYgNKKdWCxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8wNTgyMjAtNTk2ZS00ODBhLWEwNTgt
MDI0Njg2OGFhMGVkLzEva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy8wNTgyMjAtNTk2ZS00ODBhLWEwNTgtMDI0Njg2OGFhMGVk
LzEva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL2pKsqEq
Wo7EBZtFW99Q+y+kyBBz3PkPPycUNOOco6RcruSTC+5K/gFaLSjVJsJ2MxGo8TMu
0PPts6QcS3AkNFZZGihlmNkfDCv+5NHKBs+2LcWLelnIb2r7z8z/n/IyCDZPVDZR
39Q3xkjxxmKTiWDyj0BXYfoeCNnMyyUAESw2xwb5jlyyFXK1b2EYVB5Bu8PRXPvU
wk4XdWgzzGDxNVtvUDWxTpQdTtLupF3LTxP/pjjPKShwJ+uzssNvFmk/McietbSD
7Vdnl7/zUEw6Dim1w9bw7gl2lpambHiGRWztTcSgeirk2sA/pJdDOmYEI7Yp4xVg
vRxol0zcaJHrfQ==
-----END CERTIFICATE-----
Generated at Sat May 10 21:05:16 2025 by rpki-client