Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
File: KFJhMsT89rTN_3QCVWAsz53LBC8.mft (raw, json)
Hash identifier: WAd3cKRN3HrwUEZDWtG45ED7s7rfiU4qUD3IQyB37UE=
Subject key identifier: CB:4D:F4:D1:53:B3:4D:29:7B:AC:10:28:C6:CA:99:04:A8:64:64:53
Authority key identifier: 28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
Certificate issuer: /CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Certificate serial: 0196BA7F1A3F8F1019DA1A511097AA035FFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
Manifest number: 1533
Signing time: Sat 10 May 2025 14:00:13 +0000
Manifest this update: Sat 10 May 2025 14:00:13 +0000
Manifest next update: Sun 11 May 2025 14:00:13 +0000
Files and hashes: 1: KFJhMsT89rTN_3QCVWAsz53LBC8.crl (hash: 4I9q3qfFhrvNTSJII30piHDuhJ1ScZv7s7/AtmLhXe0=)
2: ZhfTjFWerubW-wXYF5uHcQImBi0.roa (hash: ETJfKBPXF5SBOehYcFURbCVWhceZCDiTMb0cVW0YkTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:7f:1a:3f:8f:10:19:da:1a:51:10:97:aa:03:5f:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Validity
Not Before: May 10 14:00:13 2025 GMT
Not After : May 11 14:00:13 2025 GMT
Subject: CN=cb4df4d153b34d297bac1028c6ca9904a8646453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a3:a3:8a:7b:20:0b:48:cf:59:75:02:1e:77:
4c:6a:6f:a9:cf:d0:1a:a9:91:e3:48:6d:91:c3:be:
03:88:c5:31:a3:41:cd:41:5a:50:c3:29:30:ae:9e:
2f:e5:aa:bf:c7:cb:c9:1a:a7:63:48:21:9c:94:04:
bb:b1:3f:da:82:c4:fe:33:b7:ba:92:5f:a3:84:59:
72:e8:a4:33:50:59:cc:50:0a:c6:40:31:d4:64:0f:
94:36:81:ed:4d:bc:db:54:22:3d:28:bf:c1:27:7e:
c0:bc:96:92:4c:d8:e2:ec:3a:9e:c9:83:f5:09:b2:
b7:d2:69:d4:1b:82:a1:0b:c4:78:18:4b:07:f4:7a:
93:00:9e:63:be:13:0c:4d:b2:55:98:34:4a:ff:78:
a7:c3:55:a1:53:1c:32:bc:7c:0a:23:c1:ef:75:c5:
e1:e7:fa:e2:04:d4:83:a8:ce:f7:7c:b4:57:be:c3:
c6:52:cf:a6:05:1c:5c:c6:35:91:52:de:84:62:78:
cd:54:ea:1e:f1:15:2a:1d:bf:7e:1a:40:0b:ba:e9:
be:89:45:f9:72:7d:75:64:2d:d1:ae:44:de:1f:0c:
06:d7:bb:2d:51:7e:04:e5:cb:1c:ee:ff:08:4c:b6:
80:44:f7:17:11:53:2a:7b:17:23:63:4e:b3:7a:56:
cf:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:4D:F4:D1:53:B3:4D:29:7B:AC:10:28:C6:CA:99:04:A8:64:64:53
X509v3 Authority Key Identifier:
keyid:28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:3a:1d:b7:6e:c9:7c:82:c4:cc:4c:d2:92:56:38:9a:49:28:
0d:26:5f:87:69:47:be:fd:55:28:1a:d1:a4:51:83:26:6d:ae:
84:17:b3:55:39:bb:58:c7:a4:f7:40:4a:2e:f1:22:06:de:2c:
31:19:04:cb:c9:52:62:dc:35:98:7d:ba:2b:c6:42:ea:1f:8b:
bb:fd:a2:6e:5e:be:00:8b:c7:d6:a3:41:03:5b:09:62:1e:a3:
5e:3c:ab:30:54:ac:2e:a9:ad:c2:4f:0a:be:70:e1:c7:5d:74:
1c:f5:78:17:8a:12:f2:3a:82:e7:4c:f7:bc:34:9e:2a:7a:4e:
7d:eb:e6:bb:76:ed:40:9a:23:e3:82:3f:a5:96:38:e4:53:cb:
5e:4d:b2:7c:57:9a:ce:56:78:fd:f3:af:d2:41:24:38:ea:01:
80:da:58:83:09:42:e5:ac:61:f3:93:b4:a5:06:5b:02:5a:27:
4d:dd:3c:f8:8d:70:3f:60:9a:a0:69:98:ef:a1:e1:9b:b2:69:
2e:30:6d:9e:a0:cb:f4:83:82:d0:21:6d:b6:f6:55:4e:eb:13:
d4:3a:bc:10:a3:e0:57:b3:b9:ea:71:bb:18:f0:12:03:bb:f4:
57:1e:49:7a:f3:bb:60:49:5d:cb:cc:af:23:4f:4b:2f:6e:1c:
4d:94:c0:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa6fxo/jxAZ2hpREJeqA1/9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4NTI2MTMyYzRmY2Y2YjRjZGZmNzQwMjU1NjAyY2NmOWRj
YjA0MmYwHhcNMjUwNTEwMTQwMDEzWhcNMjUwNTExMTQwMDEzWjAzMTEwLwYDVQQD
EyhjYjRkZjRkMTUzYjM0ZDI5N2JhYzEwMjhjNmNhOTkwNGE4NjQ2NDUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3aOjinsgC0jPWXUCHndMam+pz9Aa
qZHjSG2Rw74DiMUxo0HNQVpQwykwrp4v5aq/x8vJGqdjSCGclAS7sT/agsT+M7e6
kl+jhFly6KQzUFnMUArGQDHUZA+UNoHtTbzbVCI9KL/BJ37AvJaSTNji7DqeyYP1
CbK30mnUG4KhC8R4GEsH9HqTAJ5jvhMMTbJVmDRK/3inw1WhUxwyvHwKI8HvdcXh
5/riBNSDqM73fLRXvsPGUs+mBRxcxjWRUt6EYnjNVOoe8RUqHb9+GkALuum+iUX5
cn11ZC3RrkTeHwwG17stUX4E5csc7v8ITLaARPcXEVMqexcjY06zelbPVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMtN9NFTs00pe6wQKMbKmQSoZGRTMB8GA1UdIwQY
MBaAFChSYTLE/Pa0zf90AlVgLM+dywQvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC84MzE2OGItNmI0MC00ZDEyLThlZDct
MWY5OTMxN2M2Yzk0LzEvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC84MzE2OGItNmI0MC00ZDEyLThlZDctMWY5OTMxN2M2Yzk0
LzEvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdTodt27J
fILEzEzSklY4mkkoDSZfh2lHvv1VKBrRpFGDJm2uhBezVTm7WMek90BKLvEiBt4s
MRkEy8lSYtw1mH26K8ZC6h+Lu/2ibl6+AIvH1qNBA1sJYh6jXjyrMFSsLqmtwk8K
vnDhx110HPV4F4oS8jqC50z3vDSeKnpOfevmu3btQJoj44I/pZY45FPLXk2yfFea
zlZ4/fOv0kEkOOoBgNpYgwlC5axh85O0pQZbAlonTd08+I1wP2CaoGmY76Hhm7Jp
LjBtnqDL9IOC0CFttvZVTusT1Dq8EKPgV7O56nG7GPASA7v0Vx5JevO7YEldy8yv
I09LL24cTZTAmw==
-----END CERTIFICATE-----
Generated at Sat May 10 20:46:17 2025 by rpki-client