Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: lo8aP8GkGcRXqImdM7ZwKaYmcSsdkKqOfBxIhXKtjUE=
Subject key identifier: A0:A4:04:6D:63:EA:0C:28:9E:90:E6:B2:F7:F1:A3:6A:1D:E9:BF:E5
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 0196C5A784C3145EFD62159558A0063F47CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1542
Signing time: Mon 12 May 2025 18:00:11 +0000
Manifest this update: Mon 12 May 2025 18:00:11 +0000
Manifest next update: Tue 13 May 2025 18:00:11 +0000
Files and hashes: 1: ilS2lsd8DxPgLbZs_X1sPQAL8N0.roa (hash: vSc5dfCsLO+hXfyAs9GPwS0Zy6mZg/XFfwZE4YVpN/k=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: PzHBUIrEp65J4ujQ8GTgCTOWMPrzwugV9e726BOeNgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:a7:84:c3:14:5e:fd:62:15:95:58:a0:06:3f:47:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: May 12 18:00:11 2025 GMT
Not After : May 13 18:00:11 2025 GMT
Subject: CN=a0a4046d63ea0c289e90e6b2f7f1a36a1de9bfe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0f:b0:cf:38:ef:27:b0:82:4b:72:8f:52:19:
f8:b4:5f:08:00:69:5c:61:e4:b3:2d:4d:28:f4:d5:
2a:19:67:cb:05:be:d7:d0:5d:b3:ff:a4:af:8a:05:
30:e3:47:2c:15:42:9b:85:25:4b:a0:99:f6:f3:d7:
94:40:0b:bc:25:42:93:ee:e5:4d:80:10:6e:40:b0:
91:87:28:bf:c8:a4:0e:76:cc:d8:dd:b6:f2:fd:e8:
b1:47:a7:55:ee:8f:8a:3f:d3:aa:84:ef:4b:87:30:
0d:ac:20:b8:07:f0:79:b8:19:7c:15:74:52:73:d7:
f2:99:be:1e:f0:27:56:a5:8d:8d:05:2c:7a:c4:2d:
f6:40:f2:a5:34:22:6f:a7:f5:c7:62:60:3f:33:33:
ea:ee:da:71:d7:8c:57:b9:42:f4:1b:2b:56:81:cf:
c6:31:27:0f:e9:e6:ab:6c:c8:aa:43:65:0e:cb:e8:
5a:ac:d3:26:0c:d5:d5:3e:fd:db:95:b4:9d:33:bd:
94:11:38:5c:17:88:4b:16:66:e8:8f:d4:71:6f:aa:
c3:ef:a4:ee:52:8e:67:09:ab:17:3e:0d:87:59:8f:
26:db:59:82:a6:54:38:e3:5f:e3:3a:8b:0a:d1:20:
b3:a0:c8:98:43:5d:0a:d8:0f:0c:c9:02:07:16:36:
20:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A4:04:6D:63:EA:0C:28:9E:90:E6:B2:F7:F1:A3:6A:1D:E9:BF:E5
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:65:68:11:cf:d6:72:11:9d:41:63:7c:05:40:3c:09:7d:7f:
67:a0:28:92:c2:27:c4:de:1f:a6:26:dc:5f:23:cd:08:4d:02:
39:7d:bb:51:24:14:39:cd:c2:65:5a:8b:fe:6b:81:42:5b:48:
ae:c2:95:f1:96:1b:90:09:36:81:b8:92:0a:7e:cc:e6:46:73:
f6:52:1d:6d:fe:25:2b:57:38:c9:f3:3c:d3:88:16:81:34:2e:
18:83:58:22:f0:a4:0a:08:11:3b:39:58:8b:2f:67:0b:58:4c:
cd:34:d8:47:a5:cb:97:2a:70:48:a3:9e:e8:c4:a4:2b:75:17:
b2:aa:17:af:6e:2c:d3:c4:c3:d5:db:0d:f1:49:8e:85:9f:b5:
6f:db:a0:de:ac:f9:95:10:cb:af:8c:a5:3a:c4:45:0e:4f:64:
df:d8:60:54:0a:8f:4b:4a:90:82:e7:70:bb:c9:fe:42:2b:cd:
02:3d:af:30:45:00:59:ca:b5:13:c0:00:64:03:13:00:cd:9b:
97:17:d3:26:45:3f:b7:05:9c:d6:b0:ea:b9:b0:eb:99:94:74:
f2:82:ab:ac:ce:c6:30:aa:05:5f:31:a3:47:38:2a:37:5a:2b:
71:c6:85:4d:ec:07:ea:65:6b:51:15:75:d5:d8:bf:53:66:ed:
e6:0c:de:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFp4TDFF79YhWVWKAGP0fLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYzFjODViZjVjNTM0NzFhOTk3ZWY5ZmE5OTlkMGMxNmJl
ODU0NDQwHhcNMjUwNTEyMTgwMDExWhcNMjUwNTEzMTgwMDExWjAzMTEwLwYDVQQD
EyhhMGE0MDQ2ZDYzZWEwYzI4OWU5MGU2YjJmN2YxYTM2YTFkZTliZmU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2A+wzzjvJ7CCS3KPUhn4tF8IAGlc
YeSzLU0o9NUqGWfLBb7X0F2z/6SvigUw40csFUKbhSVLoJn289eUQAu8JUKT7uVN
gBBuQLCRhyi/yKQOdszY3bby/eixR6dV7o+KP9OqhO9LhzANrCC4B/B5uBl8FXRS
c9fymb4e8CdWpY2NBSx6xC32QPKlNCJvp/XHYmA/MzPq7tpx14xXuUL0GytWgc/G
MScP6earbMiqQ2UOy+harNMmDNXVPv3blbSdM72UEThcF4hLFmboj9Rxb6rD76Tu
Uo5nCasXPg2HWY8m21mCplQ441/jOosK0SCzoMiYQ10K2A8MyQIHFjYgiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKCkBG1j6gwonpDmsvfxo2od6b/lMB8GA1UdIwQY
MBaAFJHByFv1xTRxqZfvn6mZ0MFr6FREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2Et
NDUxNDM3NGU2ZmZhLzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2EtNDUxNDM3NGU2ZmZh
LzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArGVoEc/W
chGdQWN8BUA8CX1/Z6AoksInxN4fpibcXyPNCE0COX27USQUOc3CZVqL/muBQltI
rsKV8ZYbkAk2gbiSCn7M5kZz9lIdbf4lK1c4yfM804gWgTQuGINYIvCkCggROzlY
iy9nC1hMzTTYR6XLlypwSKOe6MSkK3UXsqoXr24s08TD1dsN8UmOhZ+1b9ug3qz5
lRDLr4ylOsRFDk9k39hgVAqPS0qQgudwu8n+QivNAj2vMEUAWcq1E8AAZAMTAM2b
lxfTJkU/twWc1rDqubDrmZR08oKrrM7GMKoFXzGjRzgqN1orccaFTewH6mVrURV1
1di/U2bt5gze7Q==
-----END CERTIFICATE-----
Generated at Mon May 12 21:36:01 2025 by rpki-client