Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
File: kN_zHRsERNQgTeFYTQDd-WjQsBI.mft (raw, json)
Hash identifier: SI4SOUAbmd60OcVgO+sukERjlZjKvBUTHXACNNoNiAU=
Subject key identifier: C9:53:B9:A1:8B:05:8A:07:FB:58:15:BE:C6:54:74:51:AE:36:FB:3F
Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Certificate serial: 0197C6817881D2797A4BA3ED848DFB106ED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
Manifest number: 0A32
Signing time: Tue 01 Jul 2025 15:01:03 +0000
Manifest this update: Tue 01 Jul 2025 15:01:03 +0000
Manifest next update: Wed 02 Jul 2025 15:01:03 +0000
Files and hashes: 1: fhqhrm_dY2gYWI5oCp04pibtM_o.roa (hash: s8FH9ikZ8P5QdYR5uDaZwWuPJb6gYAb8hHHjeN9RXKc=)
2: kN_zHRsERNQgTeFYTQDd-WjQsBI.crl (hash: fwYoYPus/y1TsYusknXfyeTCyxazKKapzK7NdOUruPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 02 Jul 2025 15:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:c6:81:78:81:d2:79:7a:4b:a3:ed:84:8d:fb:10:6e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Validity
Not Before: Jul 1 15:01:03 2025 GMT
Not After : Jul 2 15:01:03 2025 GMT
Subject: CN=c953b9a18b058a07fb5815bec6547451ae36fb3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:51:2b:2d:9a:93:63:ad:23:ae:e1:03:57:c2:
4d:b2:da:18:46:29:e6:ff:ab:0e:ce:a9:51:85:bc:
bb:c2:33:9c:69:0c:82:1b:46:55:b7:dd:4d:eb:d2:
7d:ab:6f:f9:67:4a:13:e9:2f:8f:88:ab:19:81:6f:
09:9f:e0:a6:db:45:d4:99:fd:5c:f1:1e:a8:9b:f9:
f2:6e:57:64:cb:79:a1:83:2b:65:dc:ab:94:10:d2:
7f:66:38:e2:70:79:83:25:3f:69:02:2b:87:ab:81:
7c:2a:64:b3:ec:fe:44:cd:b0:59:21:9b:39:52:43:
4b:fc:29:3d:6b:52:bb:00:0c:2d:63:69:dd:27:b0:
95:da:fd:d3:52:bf:14:d4:9b:f5:69:1f:85:0b:74:
8a:da:67:c6:f7:c4:38:67:d2:37:21:bb:91:ee:0d:
7f:44:b8:51:9d:9f:0e:58:ab:8f:89:89:c2:ae:f5:
e3:c0:ef:5d:bd:e2:01:78:c7:33:25:8e:98:49:53:
fb:92:01:19:5d:3d:54:c2:c0:f6:3b:51:ae:6e:95:
99:eb:12:e1:24:38:6a:58:ef:b1:8b:83:20:57:2c:
45:a7:4a:79:d9:3c:6f:27:99:8d:7e:ea:12:c8:a0:
d1:a0:f3:61:df:c6:d9:54:02:3c:1a:6b:98:ca:0c:
76:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:53:B9:A1:8B:05:8A:07:FB:58:15:BE:C6:54:74:51:AE:36:FB:3F
X509v3 Authority Key Identifier:
keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:c2:5f:0b:88:d9:a6:b8:b7:8a:1c:4c:db:cd:df:76:ca:c2:
fb:90:3f:ea:b7:0d:58:61:1f:70:b5:2e:f9:ab:d7:6e:63:71:
30:84:83:d5:ed:91:e6:d5:1d:cc:ec:14:f8:01:41:c8:aa:6f:
bb:ea:47:cf:1d:3d:0b:f5:1f:f5:a9:5e:a0:5c:ef:2d:74:ff:
fb:d6:c8:61:e6:45:55:19:7f:91:88:f1:7c:f2:6f:e5:a8:d1:
fd:33:84:74:d3:c2:c1:33:3b:42:60:c9:0a:7e:c9:35:1c:fb:
fd:ed:2c:40:9c:44:4d:6a:e8:4a:f5:f3:69:24:ca:a6:fb:35:
9f:80:03:f1:3f:5a:32:e8:ae:d4:57:fc:68:8d:ae:6b:0d:72:
07:93:20:6c:ad:c4:43:e6:e0:06:75:07:b8:f5:1c:5f:5b:f0:
4e:26:28:a1:dd:9e:81:4f:56:92:5c:90:e2:b5:24:a3:fa:ec:
39:36:af:e9:37:9f:cf:3c:31:67:a1:56:5d:ed:df:ae:07:4c:
01:28:16:e3:c0:fc:52:5e:e0:3c:e4:9c:22:75:65:e5:13:76:
c1:fc:61:89:94:d4:cd:14:80:5b:cf:81:0a:64:4d:79:db:3c:
f3:44:cf:49:d3:ab:72:96:59:e1:2e:b4:be:04:0c:bc:b4:7a:
f0:f9:cd:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfGgXiB0nl6S6PthI37EG7TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwZGZmMzFkMWIwNDQ0ZDQyMDRkZTE1ODRkMDBkZGY5Njhk
MGIwMTIwHhcNMjUwNzAxMTUwMTAzWhcNMjUwNzAyMTUwMTAzWjAzMTEwLwYDVQQD
EyhjOTUzYjlhMThiMDU4YTA3ZmI1ODE1YmVjNjU0NzQ1MWFlMzZmYjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlErLZqTY60jruEDV8JNstoYRinm
/6sOzqlRhby7wjOcaQyCG0ZVt91N69J9q2/5Z0oT6S+PiKsZgW8Jn+Cm20XUmf1c
8R6om/nybldky3mhgytl3KuUENJ/ZjjicHmDJT9pAiuHq4F8KmSz7P5EzbBZIZs5
UkNL/Ck9a1K7AAwtY2ndJ7CV2v3TUr8U1Jv1aR+FC3SK2mfG98Q4Z9I3IbuR7g1/
RLhRnZ8OWKuPiYnCrvXjwO9dveIBeMczJY6YSVP7kgEZXT1UwsD2O1GubpWZ6xLh
JDhqWO+xi4MgVyxFp0p52TxvJ5mNfuoSyKDRoPNh38bZVAI8GmuYygx27wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMlTuaGLBYoH+1gVvsZUdFGuNvs/MB8GA1UdIwQY
MBaAFJDf8x0bBETUIE3hWE0A3flo0LASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC85OWEzY2EtN2U1Yy00OGQ0LWI5NzUt
OWYyMTRkMWJhOTM0LzEva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC85OWEzY2EtN2U1Yy00OGQ0LWI5NzUtOWYyMTRkMWJhOTM0
LzEva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh8JfC4jZ
pri3ihxM283fdsrC+5A/6rcNWGEfcLUu+avXbmNxMISD1e2R5tUdzOwU+AFByKpv
u+pHzx09C/Uf9aleoFzvLXT/+9bIYeZFVRl/kYjxfPJv5ajR/TOEdNPCwTM7QmDJ
Cn7JNRz7/e0sQJxETWroSvXzaSTKpvs1n4AD8T9aMuiu1Ff8aI2uaw1yB5MgbK3E
Q+bgBnUHuPUcX1vwTiYood2egU9WklyQ4rUko/rsOTav6TefzzwxZ6FWXe3frgdM
ASgW48D8Ul7gPOScInVl5RN2wfxhiZTUzRSAW8+BCmRNeds880TPSdOrcpZZ4S60
vgQMvLR68PnN3A==
-----END CERTIFICATE-----
Generated at Tue Jul 1 20:37:44 2025 by rpki-client