Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
File: KHtQElUXlEJ0oUa7rNZOaRog-gY.mft (raw, json)
Hash identifier: sJF2b2iuGuwUWsl7pwl7z316fDAnciZjiL9gpSQRX3A=
Subject key identifier: 90:46:7C:18:39:AF:4D:48:52:12:02:CF:D1:73:FB:4A:00:60:68:2A
Authority key identifier: 28:7B:50:12:55:17:94:42:74:A1:46:BB:AC:D6:4E:69:1A:20:FA:06
Certificate issuer: /CN=287b50125517944274a146bbacd64e691a20fa06
Certificate serial: 0196C53A6013B3EC576F4A67D7492F0141BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
Manifest number: 0DE2
Signing time: Mon 12 May 2025 16:00:59 +0000
Manifest this update: Mon 12 May 2025 16:00:59 +0000
Manifest next update: Tue 13 May 2025 16:00:59 +0000
Files and hashes: 1: KHtQElUXlEJ0oUa7rNZOaRog-gY.crl (hash: foL6EBhPP8n4G2g0gXLPN3r6E9PxIsasQlLMZwgi1ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 16:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:3a:60:13:b3:ec:57:6f:4a:67:d7:49:2f:01:41:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287b50125517944274a146bbacd64e691a20fa06
Validity
Not Before: May 12 16:00:59 2025 GMT
Not After : May 13 16:00:59 2025 GMT
Subject: CN=90467c1839af4d48521202cfd173fb4a0060682a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:03:8e:c9:78:e6:82:44:e4:0a:94:57:db:c2:
ef:3f:61:b4:29:87:4f:87:ea:4d:18:06:cd:0c:e4:
35:e7:9f:5f:c9:d4:6e:67:3e:95:81:59:bf:b0:e4:
dc:4c:cb:98:e7:b9:48:5a:29:29:3c:2d:bd:22:91:
c5:ff:3d:ba:ec:07:39:c1:88:eb:18:8d:21:70:a7:
95:06:1e:77:70:01:57:de:5d:74:f8:68:51:7d:65:
c2:c5:13:16:63:d2:32:5f:5c:b3:87:7d:c4:61:7d:
e6:16:14:c5:b1:5c:44:26:6f:2f:35:1a:51:09:57:
4b:03:34:c7:10:0b:d8:fe:da:5d:60:78:16:7d:bb:
8b:18:1c:87:57:c6:e9:29:a9:07:dc:89:7e:60:8d:
8f:34:b2:49:48:3f:8d:aa:d1:2d:6f:a3:f3:9b:50:
95:e2:9c:0c:db:b5:29:1f:3d:3c:24:5c:97:49:ee:
e2:26:c0:8f:5a:7e:10:4d:2f:cd:e1:41:bb:94:a5:
e7:c6:33:ee:7c:3b:88:8e:1a:0b:86:f7:3a:09:dd:
20:87:19:cb:7c:05:8e:c1:9c:6b:3c:82:21:05:eb:
ac:8b:a3:17:5f:fc:1b:82:7d:f6:42:e0:18:41:e7:
4b:92:ef:5c:d8:03:a6:bc:82:6e:9e:4b:82:7b:3c:
9d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:46:7C:18:39:AF:4D:48:52:12:02:CF:D1:73:FB:4A:00:60:68:2A
X509v3 Authority Key Identifier:
keyid:28:7B:50:12:55:17:94:42:74:A1:46:BB:AC:D6:4E:69:1A:20:FA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:04:47:0a:0c:1e:5b:81:8a:a3:7d:fb:a1:97:f3:2e:2c:fa:
ad:34:bd:14:c9:00:6d:a6:2b:c3:f9:c8:12:e1:fe:31:f6:1c:
43:b3:25:3a:c0:26:4f:ec:26:2b:f4:b6:11:56:dd:f9:db:52:
4f:5a:f2:6a:51:17:38:af:66:33:af:64:39:9b:93:0e:db:c0:
4e:b4:94:72:26:52:a8:49:76:25:83:6b:b2:74:7f:eb:13:6d:
e4:ac:36:03:a3:83:07:fa:50:ad:dc:d3:d8:0f:18:24:dc:e5:
42:90:09:9e:9e:04:c7:30:44:7a:f6:0c:b5:a0:0c:ef:f0:7f:
c9:60:95:fe:7b:33:f6:f4:6e:9e:be:71:5a:90:31:94:0f:58:
d3:18:f5:63:34:5a:d4:ac:75:0d:ee:3e:db:f3:6b:56:d8:12:
a5:8d:78:ae:23:2e:a0:e5:e2:5c:bc:2f:69:7c:c3:41:6c:26:
25:2f:7c:e0:14:e7:81:ad:99:8a:d9:5f:f2:f8:0a:9a:68:76:
ee:00:aa:6c:74:56:d5:e2:34:22:1b:52:af:fe:ff:7f:46:ff:
e1:37:e9:d7:85:3c:33:5a:62:42:b5:0b:26:9c:93:22:c7:f2:
af:c6:61:54:54:e0:ca:1a:79:fb:73:4a:a2:6a:cd:81:41:1b:
9b:c0:ac:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbFOmATs+xXb0pn10kvAUG+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4N2I1MDEyNTUxNzk0NDI3NGExNDZiYmFjZDY0ZTY5MWEy
MGZhMDYwHhcNMjUwNTEyMTYwMDU5WhcNMjUwNTEzMTYwMDU5WjAzMTEwLwYDVQQD
Eyg5MDQ2N2MxODM5YWY0ZDQ4NTIxMjAyY2ZkMTczZmI0YTAwNjA2ODJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgOOyXjmgkTkCpRX28LvP2G0KYdP
h+pNGAbNDOQ1559fydRuZz6VgVm/sOTcTMuY57lIWikpPC29IpHF/z267Ac5wYjr
GI0hcKeVBh53cAFX3l10+GhRfWXCxRMWY9IyX1yzh33EYX3mFhTFsVxEJm8vNRpR
CVdLAzTHEAvY/tpdYHgWfbuLGByHV8bpKakH3Il+YI2PNLJJSD+NqtEtb6Pzm1CV
4pwM27UpHz08JFyXSe7iJsCPWn4QTS/N4UG7lKXnxjPufDuIjhoLhvc6Cd0ghxnL
fAWOwZxrPIIhBeusi6MXX/wbgn32QuAYQedLku9c2AOmvIJunkuCezydOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJBGfBg5r01IUhICz9Fz+0oAYGgqMB8GA1UdIwQY
MBaAFCh7UBJVF5RCdKFGu6zWTmkaIPoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0h0UUVsVVhsRUowb1VhN3JOWk9hUm9nLWdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC80MWE0NDMtZWUyYi00NjQ2LWJhNjgt
YWFiNmM4YmE1YmQ0LzEvS0h0UUVsVVhsRUowb1VhN3JOWk9hUm9nLWdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC80MWE0NDMtZWUyYi00NjQ2LWJhNjgtYWFiNmM4YmE1YmQ0
LzEvS0h0UUVsVVhsRUowb1VhN3JOWk9hUm9nLWdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJgRHCgwe
W4GKo337oZfzLiz6rTS9FMkAbaYrw/nIEuH+MfYcQ7MlOsAmT+wmK/S2EVbd+dtS
T1ryalEXOK9mM69kOZuTDtvATrSUciZSqEl2JYNrsnR/6xNt5Kw2A6ODB/pQrdzT
2A8YJNzlQpAJnp4ExzBEevYMtaAM7/B/yWCV/nsz9vRunr5xWpAxlA9Y0xj1YzRa
1Kx1De4+2/NrVtgSpY14riMuoOXiXLwvaXzDQWwmJS984BTnga2Zitlf8vgKmmh2
7gCqbHRW1eI0IhtSr/7/f0b/4Tfp14U8M1piQrULJpyTIsfyr8ZhVFTgyhp5+3NK
omrNgUEbm8Csyg==
-----END CERTIFICATE-----
Generated at Tue May 13 01:31:30 2025 by rpki-client