Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: w+Wd1uZgL4Ll6uS+e+9UWwd/HnKV4VV8a4r/5EQ+2hU=
Subject key identifier: 76:0B:6A:15:68:7F:E1:16:98:6A:40:7D:72:14:D7:E9:6D:95:54:0F
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 0196BD12919EE14DF8AE075469CCC1849AD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 0127
Signing time: Sun 11 May 2025 02:00:32 +0000
Manifest this update: Sun 11 May 2025 02:00:32 +0000
Manifest next update: Mon 12 May 2025 02:00:32 +0000
Files and hashes: 1: 7RtSvYvJ-s26z4jJmihBpc9PPTg.roa (hash: +WPL+eLMOyDQbtRDqabesCoaqYzO2nUYgvkky6oLihM=)
2: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: hxJDFUTTZT+m3SQ1Qup+7jVSvnPoqyRrG54Z2nLmUi0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:12:91:9e:e1:4d:f8:ae:07:54:69:cc:c1:84:9a:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: May 11 02:00:32 2025 GMT
Not After : May 12 02:00:32 2025 GMT
Subject: CN=760b6a15687fe116986a407d7214d7e96d95540f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:45:f8:c9:e0:01:cd:87:05:c9:94:3a:cd:0c:
0c:ff:ab:79:ae:ce:c0:b9:91:a6:c5:92:11:03:e6:
b2:ea:63:63:cd:53:df:03:30:e8:12:d7:1d:aa:3e:
72:97:ee:ed:84:1c:cc:5e:be:8b:90:a1:79:62:42:
fc:d6:3c:5a:62:0a:fa:0c:29:f4:b5:19:c0:41:3c:
28:8f:4d:a2:6a:70:ec:7f:36:11:1d:6b:99:e1:1f:
f3:d9:d7:94:40:6d:10:80:c7:85:cf:0a:2e:98:b6:
cb:07:10:42:cc:67:4f:0c:b1:59:9d:5c:b5:36:e4:
d1:b4:90:a3:20:8a:dc:7f:08:a2:83:5b:13:85:fe:
49:37:25:53:8d:26:ae:d2:d9:9a:10:76:e7:d7:89:
4a:ec:61:4d:56:2d:38:24:79:56:73:15:67:1b:5f:
16:97:43:67:19:dd:54:7f:b3:91:9a:d6:47:90:3e:
b2:1d:03:16:7a:d1:9e:be:1f:45:d8:6e:4e:e1:2e:
ee:74:64:e7:d3:4f:2d:3d:3f:65:f4:94:37:2b:7e:
62:f1:1a:ae:6e:4f:29:ee:18:9c:1e:4c:4f:df:9d:
53:fc:ee:c8:f3:e8:f4:23:b6:93:ea:36:5b:d6:25:
34:05:02:53:e3:9e:99:5b:f4:a3:07:1e:b4:1b:9c:
66:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0B:6A:15:68:7F:E1:16:98:6A:40:7D:72:14:D7:E9:6D:95:54:0F
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:f4:b7:e0:4f:9e:a9:3a:f2:e6:c0:10:4c:45:40:5e:96:a1:
90:d0:d4:3a:6d:df:4a:59:89:4a:89:22:0d:81:f2:83:08:3f:
f8:b2:96:21:76:c6:c7:ef:e3:61:67:ef:ae:2c:2f:1a:8b:35:
07:01:19:2b:0f:3c:0a:80:da:bb:30:03:00:83:ab:fa:24:f6:
05:f0:63:11:01:cd:40:1b:73:29:d0:31:52:86:15:a3:39:87:
72:c7:ab:c9:d7:58:20:0e:54:27:1d:9f:af:dd:a8:71:75:e6:
5c:0d:c2:97:28:eb:6d:0a:f3:ed:73:aa:ef:a1:c7:c1:8f:ba:
b1:74:35:1a:12:09:57:76:ee:aa:06:ec:5f:2b:56:bf:02:ea:
0b:fe:c7:7a:b6:b5:b0:17:54:ff:6b:77:a6:d5:d1:2f:84:1a:
79:f4:f4:7e:ac:a2:29:50:0c:97:8a:67:7f:4d:83:aa:83:6a:
d3:1b:04:73:00:a7:e5:5d:55:f8:cc:20:7b:cf:e7:cd:fc:f3:
dc:80:49:81:f2:3c:0e:6d:9c:94:bb:e7:1d:1a:32:5a:7b:a2:
b8:0a:dd:04:83:f6:b7:bb:c0:6a:72:5c:6c:c3:b5:a1:1b:25:
30:2e:4d:13:c6:87:fe:e0:65:3d:14:97:fe:ff:29:52:5d:63:
bf:a5:7c:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa9EpGe4U34rgdUaczBhJrZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiM2Y2ZmE5ZjAzNzc2NWU3NGJkZjJhYzgyY2NiYWJjN2U0
ZmM4ZWQwHhcNMjUwNTExMDIwMDMyWhcNMjUwNTEyMDIwMDMyWjAzMTEwLwYDVQQD
Eyg3NjBiNmExNTY4N2ZlMTE2OTg2YTQwN2Q3MjE0ZDdlOTZkOTU1NDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3EX4yeABzYcFyZQ6zQwM/6t5rs7A
uZGmxZIRA+ay6mNjzVPfAzDoEtcdqj5yl+7thBzMXr6LkKF5YkL81jxaYgr6DCn0
tRnAQTwoj02ianDsfzYRHWuZ4R/z2deUQG0QgMeFzwoumLbLBxBCzGdPDLFZnVy1
NuTRtJCjIIrcfwiig1sThf5JNyVTjSau0tmaEHbn14lK7GFNVi04JHlWcxVnG18W
l0NnGd1Uf7ORmtZHkD6yHQMWetGevh9F2G5O4S7udGTn008tPT9l9JQ3K35i8Rqu
bk8p7hicHkxP351T/O7I8+j0I7aT6jZb1iU0BQJT456ZW/SjBx60G5xmgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHYLahVof+EWmGpAfXIU1+ltlVQPMB8GA1UdIwQY
MBaAFCs/b6nwN3ZedL3yrILMurx+T8jtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3o5dnFmQTNkbDUwdmZLc2dzeTZ2SDVQeU8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jNTRmNDItOTEyZi00YjgxLThiMDAt
NWMwMGZjZDczNjE5LzEvS3o5dnFmQTNkbDUwdmZLc2dzeTZ2SDVQeU8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jNTRmNDItOTEyZi00YjgxLThiMDAtNWMwMGZjZDczNjE5
LzEvS3o5dnFmQTNkbDUwdmZLc2dzeTZ2SDVQeU8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl/S34E+e
qTry5sAQTEVAXpahkNDUOm3fSlmJSokiDYHygwg/+LKWIXbGx+/jYWfvriwvGos1
BwEZKw88CoDauzADAIOr+iT2BfBjEQHNQBtzKdAxUoYVozmHcseryddYIA5UJx2f
r92ocXXmXA3ClyjrbQrz7XOq76HHwY+6sXQ1GhIJV3buqgbsXytWvwLqC/7Hera1
sBdU/2t3ptXRL4QaefT0fqyiKVAMl4pnf02DqoNq0xsEcwCn5V1V+Mwge8/nzfzz
3IBJgfI8Dm2clLvnHRoyWnuiuArdBIP2t7vAanJcbMO1oRslMC5NE8aH/uBlPRSX
/v8pUl1jv6V8FA==
-----END CERTIFICATE-----
Generated at Sun May 11 06:09:24 2025 by rpki-client