Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
File: _kFOohqRFtLN-PXALQhnOvpXaJM.mft (raw, json)
Hash identifier: p64HFNfPE0RA5w6P1N9kNfIwsBzMwEMV/U16dLVUPFk=
Subject key identifier: 3F:A0:E3:F3:A2:26:5F:F3:07:D9:AF:7B:C9:4A:B6:A8:76:0F:96:89
Authority key identifier: FE:41:4E:A2:1A:91:16:D2:CD:F8:F5:C0:2D:08:67:3A:FA:57:68:93
Certificate issuer: /CN=fe414ea21a9116d2cdf8f5c02d08673afa576893
Certificate serial: 0196C98532D592A659222D9A64DE03435955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
Manifest number: 02D5
Signing time: Tue 13 May 2025 12:01:11 +0000
Manifest this update: Tue 13 May 2025 12:01:11 +0000
Manifest next update: Wed 14 May 2025 12:01:11 +0000
Files and hashes: 1: 0MAgU7sTLhp2qbqkuMgBEoG1GaM.roa (hash: qBfT5pIrk1/WlfhHIXDzrsxZlkpu9JZ5SsEtvG7MW+c=)
2: _kFOohqRFtLN-PXALQhnOvpXaJM.crl (hash: miiOwxS4jcfi+r8mok7lM21gHojPqjA3LoFxNK5HZEQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 12:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:85:32:d5:92:a6:59:22:2d:9a:64:de:03:43:59:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe414ea21a9116d2cdf8f5c02d08673afa576893
Validity
Not Before: May 13 12:01:11 2025 GMT
Not After : May 14 12:01:11 2025 GMT
Subject: CN=3fa0e3f3a2265ff307d9af7bc94ab6a8760f9689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:fc:da:da:01:d7:59:6c:01:7f:0a:d9:91:
8b:33:f1:26:fc:2f:19:18:64:2b:42:b9:74:40:4c:
02:d5:95:38:fc:d1:ca:89:cd:75:d8:7e:b1:44:56:
a8:7d:88:f8:22:da:28:42:4a:d6:5e:27:74:3c:05:
7e:43:22:14:72:dd:07:18:77:1d:99:23:c7:5b:01:
3d:e2:94:44:58:7f:99:70:c6:ff:c8:55:7d:80:a7:
6c:06:8f:ea:49:09:37:f5:f6:98:e6:56:e0:81:1d:
05:f6:a9:c3:38:30:99:56:64:64:71:4f:1f:27:ca:
21:ef:07:63:2a:89:f5:7d:98:9d:a7:c4:2e:03:1f:
d0:9a:6c:de:9a:95:f0:5f:c7:93:41:da:fe:bd:2b:
c9:56:d1:62:f4:62:9e:a6:2d:a2:8e:68:54:4b:b0:
8a:11:42:43:45:6f:e2:c0:2b:50:26:fc:f6:89:51:
ea:17:6a:bb:91:c4:c1:fd:cb:f1:23:ab:1a:40:60:
60:c3:8d:5c:d2:cd:2c:fa:27:4f:0c:4e:4f:2d:46:
a5:c8:3e:df:af:85:b9:e1:22:0c:ab:79:14:0a:30:
bd:d3:9f:18:9b:8e:d2:70:c2:2c:9c:03:ae:05:b0:
81:36:85:a0:9e:53:62:84:30:ec:8e:8b:d6:bb:0c:
34:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A0:E3:F3:A2:26:5F:F3:07:D9:AF:7B:C9:4A:B6:A8:76:0F:96:89
X509v3 Authority Key Identifier:
keyid:FE:41:4E:A2:1A:91:16:D2:CD:F8:F5:C0:2D:08:67:3A:FA:57:68:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:4f:b5:3a:3e:20:7c:9a:00:63:82:7c:7c:6d:27:f4:b7:9e:
c4:93:54:f2:15:5e:07:7b:e6:ea:77:6f:9f:b2:b2:eb:e2:c2:
ff:17:61:67:c7:87:47:43:08:32:dd:77:c9:06:5a:0b:9b:7b:
91:29:16:39:45:00:cf:4a:49:87:d3:31:e8:b3:01:4b:5e:6f:
3b:f8:c2:5d:11:96:73:86:a2:bb:b9:c4:bb:18:5c:ab:8c:f3:
26:2b:f7:bd:9c:d2:dd:1a:5a:d6:82:f1:3e:a7:ed:2d:9e:bc:
43:bb:fd:6b:fd:6d:f2:ce:72:02:39:59:2c:cc:b5:ce:d7:b1:
89:1d:0e:ef:91:e4:8f:82:f9:98:6f:5a:33:a0:78:92:f4:bd:
0a:77:74:e5:b6:1c:ad:a1:da:1b:58:4d:01:d9:19:b8:7d:16:
91:5e:93:35:d1:45:f6:0d:b1:31:ac:ed:ea:17:cf:cb:5e:01:
03:d9:89:5c:95:d9:6f:a9:2b:c9:39:a7:2d:2b:c7:f8:be:09:
44:a0:9a:ca:00:b4:ce:96:9d:c9:d0:3c:c2:88:11:96:48:36:
3c:10:26:c3:48:41:94:83:8d:c3:fb:e1:3d:42:5b:dd:36:10:
80:f1:fb:47:50:44:2e:91:57:50:af:54:b4:87:1d:15:66:b6:
e6:65:2a:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbJhTLVkqZZIi2aZN4DQ1lVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlNDE0ZWEyMWE5MTE2ZDJjZGY4ZjVjMDJkMDg2NzNhZmE1
NzY4OTMwHhcNMjUwNTEzMTIwMTExWhcNMjUwNTE0MTIwMTExWjAzMTEwLwYDVQQD
EygzZmEwZTNmM2EyMjY1ZmYzMDdkOWFmN2JjOTRhYjZhODc2MGY5Njg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEb82toB11lsAX8K2ZGLM/Em/C8Z
GGQrQrl0QEwC1ZU4/NHKic112H6xRFaofYj4ItooQkrWXid0PAV+QyIUct0HGHcd
mSPHWwE94pREWH+ZcMb/yFV9gKdsBo/qSQk39faY5lbggR0F9qnDODCZVmRkcU8f
J8oh7wdjKon1fZidp8QuAx/QmmzempXwX8eTQdr+vSvJVtFi9GKepi2ijmhUS7CK
EUJDRW/iwCtQJvz2iVHqF2q7kcTB/cvxI6saQGBgw41c0s0s+idPDE5PLUalyD7f
r4W54SIMq3kUCjC9058Ym47ScMIsnAOuBbCBNoWgnlNihDDsjovWuww0lQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD+g4/OiJl/zB9mve8lKtqh2D5aJMB8GA1UdIwQY
MBaAFP5BTqIakRbSzfj1wC0IZzr6V2iTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2tGT29ocVJGdExOLVBYQUxRaG5PdnBYYUpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9lNzFkMjEtYTM2MC00NTc5LTgxYTAt
YmNjYTI2ZmM4OTQ1LzEvX2tGT29ocVJGdExOLVBYQUxRaG5PdnBYYUpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9lNzFkMjEtYTM2MC00NTc5LTgxYTAtYmNjYTI2ZmM4OTQ1
LzEvX2tGT29ocVJGdExOLVBYQUxRaG5PdnBYYUpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALU+1Oj4g
fJoAY4J8fG0n9LeexJNU8hVeB3vm6ndvn7Ky6+LC/xdhZ8eHR0MIMt13yQZaC5t7
kSkWOUUAz0pJh9Mx6LMBS15vO/jCXRGWc4aiu7nEuxhcq4zzJiv3vZzS3Rpa1oLx
PqftLZ68Q7v9a/1t8s5yAjlZLMy1ztexiR0O75Hkj4L5mG9aM6B4kvS9Cnd05bYc
raHaG1hNAdkZuH0WkV6TNdFF9g2xMazt6hfPy14BA9mJXJXZb6kryTmnLSvH+L4J
RKCaygC0zpadydA8wogRlkg2PBAmw0hBlIONw/vhPUJb3TYQgPH7R1BELpFXUK9U
tIcdFWa25mUqTA==
-----END CERTIFICATE-----
Generated at Tue May 13 19:28:45 2025 by rpki-client