Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
File: knEFydH7BpBVSXH0ZMoh9KRcEGo.mft (raw, json)
Hash identifier: he/iyFLqxcDA9XVn6ZkzBmraPZmB/a8GZFr9ItLRd9g=
Subject key identifier: 1E:D1:DE:9A:80:B9:8F:A3:45:D5:88:9D:9C:CC:ED:CF:C4:12:C1:4F
Authority key identifier: 92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
Certificate issuer: /CN=927105c9d1fb0690554971f464ca21f4a45c106a
Certificate serial: 0196AF570B76E3B510A65B441D6BB0DBBD2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
Manifest number: 0C03
Signing time: Thu 08 May 2025 10:00:39 +0000
Manifest this update: Thu 08 May 2025 10:00:39 +0000
Manifest next update: Fri 09 May 2025 10:00:39 +0000
Files and hashes: 1: ipQ4XqSuTpQi-re2ZW_sK3VHNnQ.roa (hash: poFgPveu8J3ZCztPp1XhAex84n6Kit4aGgJE9uzT+QM=)
2: knEFydH7BpBVSXH0ZMoh9KRcEGo.crl (hash: UTOpshH0GH35q41AxdxEtJoVvBWN4nrTgcXG1TdtAzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:af:57:0b:76:e3:b5:10:a6:5b:44:1d:6b:b0:db:bd:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927105c9d1fb0690554971f464ca21f4a45c106a
Validity
Not Before: May 8 10:00:39 2025 GMT
Not After : May 9 10:00:39 2025 GMT
Subject: CN=1ed1de9a80b98fa345d5889d9cccedcfc412c14f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:21:98:ba:70:40:7f:b1:79:8f:4a:81:eb:fe:
ca:30:86:a8:ec:4f:73:5d:0c:66:a4:96:2d:dc:80:
95:62:d2:1f:ae:03:ed:33:bc:5a:4f:07:05:06:a8:
05:78:ce:f2:71:49:32:93:db:dd:c2:68:d5:7a:68:
04:6d:c9:e0:cc:7b:ad:97:fd:60:e3:d7:81:95:cc:
61:28:f8:6b:96:09:19:5a:8b:fe:c7:87:83:1a:3c:
df:8b:64:85:67:84:18:38:cd:bd:87:e4:b5:f7:09:
44:64:3b:7e:10:8d:04:f3:49:9a:df:00:cb:cc:bf:
f8:cf:a6:99:9d:18:b7:7b:33:62:45:53:27:ef:c4:
fe:0b:59:d9:50:e5:9a:8e:97:97:78:e3:e1:d2:7d:
72:5a:c3:59:91:10:9f:55:59:04:12:35:93:18:83:
59:f6:19:00:ad:7a:b2:3f:ad:2c:73:c6:d1:c9:ba:
7e:2b:9c:a4:fe:8a:90:67:39:47:0b:f2:5b:ee:25:
16:5b:57:05:f8:a7:fc:88:36:9c:b3:f7:ca:c2:80:
00:f0:a3:91:b4:92:46:ba:23:22:c3:59:e7:c2:f5:
1a:44:0a:e2:8a:28:7f:f9:da:8b:8e:eb:3e:ea:2c:
36:26:82:1c:99:09:18:75:1e:9a:e9:6f:c9:7a:d0:
13:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D1:DE:9A:80:B9:8F:A3:45:D5:88:9D:9C:CC:ED:CF:C4:12:C1:4F
X509v3 Authority Key Identifier:
keyid:92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:26:eb:ef:12:4e:19:79:1c:78:3e:1b:9b:cc:3a:ae:be:fd:
65:3d:79:bf:d1:e1:e4:a9:d0:8b:0e:cb:62:90:fa:46:b3:7d:
5d:d7:c2:60:bd:49:a1:58:58:7d:2e:26:98:9b:3b:74:cd:27:
1d:fd:9e:e4:b5:66:23:c4:8d:49:7b:21:20:03:d5:10:7e:ec:
9c:a1:12:cd:a0:f1:66:73:55:2a:58:8f:df:d7:c4:72:d9:1f:
8f:d7:09:fe:14:19:31:42:b9:32:dd:2d:95:19:10:8f:50:ac:
69:4d:cc:6d:5a:5a:29:12:f3:91:4f:07:58:c6:79:ef:f9:7a:
b7:54:44:e6:fc:56:0d:a2:4c:ee:0f:96:3a:4d:59:fd:2e:a1:
95:2f:3a:84:77:42:ac:ca:47:eb:06:0d:74:2c:48:b9:4f:c0:
6b:3e:e2:31:e8:ed:66:30:7a:13:46:f1:9f:f8:48:f5:e5:28:
85:b4:db:b2:27:4f:a0:e8:fb:9f:a7:75:62:31:d6:f9:d1:66:
0f:39:cf:b4:20:4c:6a:65:d5:69:4d:90:20:ed:56:d0:95:e6:
4e:f6:2a:7d:cf:88:ea:2d:a9:a4:55:19:eb:91:d3:97:f3:24:
95:c1:ec:cc:f6:68:21:08:a5:91:ad:28:34:fb:cc:e6:a6:13:
1e:c2:06:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZavVwt247UQpltEHWuw270qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNzEwNWM5ZDFmYjA2OTA1NTQ5NzFmNDY0Y2EyMWY0YTQ1
YzEwNmEwHhcNMjUwNTA4MTAwMDM5WhcNMjUwNTA5MTAwMDM5WjAzMTEwLwYDVQQD
EygxZWQxZGU5YTgwYjk4ZmEzNDVkNTg4OWQ5Y2NjZWRjZmM0MTJjMTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAziGYunBAf7F5j0qB6/7KMIao7E9z
XQxmpJYt3ICVYtIfrgPtM7xaTwcFBqgFeM7ycUkyk9vdwmjVemgEbcngzHutl/1g
49eBlcxhKPhrlgkZWov+x4eDGjzfi2SFZ4QYOM29h+S19wlEZDt+EI0E80ma3wDL
zL/4z6aZnRi3ezNiRVMn78T+C1nZUOWajpeXeOPh0n1yWsNZkRCfVVkEEjWTGINZ
9hkArXqyP60sc8bRybp+K5yk/oqQZzlHC/Jb7iUWW1cF+Kf8iDacs/fKwoAA8KOR
tJJGuiMiw1nnwvUaRAriiih/+dqLjus+6iw2JoIcmQkYdR6a6W/JetATMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB7R3pqAuY+jRdWInZzM7c/EEsFPMB8GA1UdIwQY
MBaAFJJxBcnR+waQVUlx9GTKIfSkXBBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wYzlkODAtNDNhNS00NTNhLWFkMjUt
NGVlOTJlZTFlMGNkLzEva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wYzlkODAtNDNhNS00NTNhLWFkMjUtNGVlOTJlZTFlMGNk
LzEva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqybr7xJO
GXkceD4bm8w6rr79ZT15v9Hh5KnQiw7LYpD6RrN9XdfCYL1JoVhYfS4mmJs7dM0n
Hf2e5LVmI8SNSXshIAPVEH7snKESzaDxZnNVKliP39fEctkfj9cJ/hQZMUK5Mt0t
lRkQj1CsaU3MbVpaKRLzkU8HWMZ57/l6t1RE5vxWDaJM7g+WOk1Z/S6hlS86hHdC
rMpH6wYNdCxIuU/Aaz7iMejtZjB6E0bxn/hI9eUohbTbsidPoOj7n6d1YjHW+dFm
DznPtCBMamXVaU2QIO1W0JXmTvYqfc+I6i2ppFUZ65HTl/MklcHszPZoIQilka0o
NPvM5qYTHsIGXA==
-----END CERTIFICATE-----
Generated at Thu May 8 14:44:55 2025 by rpki-client