Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
File: K_CgGXhoxtjDTdFrP0TezF5CNvU.mft (raw, json)
Hash identifier: xUdJApbSSlAfZEh6QeR0GwFGwQ/lVCoZUXQ09fgZ2Ms=
Subject key identifier: BF:7C:73:22:CA:01:2E:D0:A2:FD:CE:81:95:34:80:03:93:65:EC:F8
Authority key identifier: 2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
Certificate issuer: /CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Certificate serial: 0196CACDF34770C78BA026C0B169A75AB588
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
Manifest number: 0CF3
Signing time: Tue 13 May 2025 18:00:16 +0000
Manifest this update: Tue 13 May 2025 18:00:16 +0000
Manifest next update: Wed 14 May 2025 18:00:16 +0000
Files and hashes: 1: K_CgGXhoxtjDTdFrP0TezF5CNvU.crl (hash: kTOBDVkIugDleVrzitXCe2b9NRtdCGY7fS2l5zsw9uk=)
2: cwewYqqUz_DTY7N101NBNvby5-A.roa (hash: 12Ilbr32JYBfPHCal30nzRY5XUe8GWiDmB7OIucWhgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 18:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ca:cd:f3:47:70:c7:8b:a0:26:c0:b1:69:a7:5a:b5:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Validity
Not Before: May 13 18:00:16 2025 GMT
Not After : May 14 18:00:16 2025 GMT
Subject: CN=bf7c7322ca012ed0a2fdce81953480039365ecf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9e:ca:a3:60:d7:d3:47:ee:f5:de:41:9d:0c:
90:0b:44:08:82:a3:ff:ac:91:96:7a:97:17:c6:c1:
b2:5e:45:ab:a8:6a:56:b4:bd:59:a9:bf:ee:ae:79:
83:c0:3b:0b:72:85:66:4f:ff:2c:fc:d0:a6:1c:65:
ca:01:78:d1:0c:19:5b:a5:ae:81:31:b9:8e:bd:2b:
ad:16:f6:de:bf:f5:e2:71:6d:01:96:75:88:7d:5f:
78:66:eb:f7:f7:c9:dc:80:27:c2:18:10:d4:18:e1:
03:37:58:1c:90:62:be:4d:49:83:85:06:b6:43:ce:
7f:8a:e2:ae:28:a2:65:e7:40:42:66:7e:67:7a:0f:
ba:f4:07:d5:d0:0b:6e:8f:7e:cd:49:b6:84:85:ff:
6f:88:10:ca:1d:0d:9d:29:c4:de:d7:32:3a:e6:3b:
ea:8f:ea:90:3d:11:63:60:e1:ad:2a:21:ec:b6:0e:
24:f5:a1:ac:1a:d7:65:9e:d3:59:79:ac:c1:3b:3d:
09:43:63:ee:b1:19:3b:8c:c5:05:b2:33:0d:f2:e6:
c6:da:b6:d8:86:f3:8d:76:d3:1e:07:a5:50:06:74:
df:98:50:eb:9b:e5:88:e6:3f:bf:25:fd:15:bf:c1:
86:93:c1:a4:07:10:d4:7b:2b:b5:a1:d1:28:b1:4e:
7e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7C:73:22:CA:01:2E:D0:A2:FD:CE:81:95:34:80:03:93:65:EC:F8
X509v3 Authority Key Identifier:
keyid:2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:c3:f4:f2:6b:ab:be:c3:40:bd:2e:f9:5c:ce:ef:db:9c:69:
fc:9d:ba:a5:6b:af:dc:de:b9:6b:08:1d:53:5d:72:43:5b:2a:
8f:1e:ef:9d:77:e4:a9:73:7e:0d:1e:1b:91:09:80:5a:6c:b6:
4b:46:31:20:79:4a:66:7c:a0:a5:5c:7f:fa:ca:5c:f3:f3:97:
36:fd:a8:b5:a1:73:dc:8a:23:99:10:95:d6:e8:70:36:b7:2b:
2e:38:5f:48:0d:c6:ce:d4:08:b8:ae:80:31:34:41:a9:9f:d8:
1f:db:b4:3f:94:bd:3e:73:fb:dc:6b:9a:e9:c4:0e:0c:b4:c9:
46:85:bb:aa:0e:4b:61:47:c1:63:96:97:70:40:3c:af:e9:c1:
5b:17:d0:cf:e2:f2:76:57:3b:ee:ef:a9:39:bc:09:99:d9:30:
5e:13:cc:ab:0a:20:8b:b0:99:2a:b2:96:39:40:e0:42:9f:69:
26:4d:51:31:e5:8a:4b:fa:fe:ef:1a:88:fe:3c:58:57:66:9d:
e2:66:f9:c3:fb:e7:86:1a:21:dc:47:af:d5:12:5f:c3:1f:1b:
6c:0d:c6:3d:07:af:35:a5:5e:f8:8d:0f:31:94:a9:9f:30:f1:
e1:64:3d:ab:5f:28:d7:fe:be:ee:b3:2e:cf:31:73:52:47:75:
5e:14:f9:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbKzfNHcMeLoCbAsWmnWrWIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiZjBhMDE5Nzg2OGM2ZDhjMzRkZDE2YjNmNDRkZWNjNWU0
MjM2ZjUwHhcNMjUwNTEzMTgwMDE2WhcNMjUwNTE0MTgwMDE2WjAzMTEwLwYDVQQD
EyhiZjdjNzMyMmNhMDEyZWQwYTJmZGNlODE5NTM0ODAwMzkzNjVlY2Y4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJ7Ko2DX00fu9d5BnQyQC0QIgqP/
rJGWepcXxsGyXkWrqGpWtL1Zqb/urnmDwDsLcoVmT/8s/NCmHGXKAXjRDBlbpa6B
MbmOvSutFvbev/XicW0BlnWIfV94Zuv398ncgCfCGBDUGOEDN1gckGK+TUmDhQa2
Q85/iuKuKKJl50BCZn5neg+69AfV0Atuj37NSbaEhf9viBDKHQ2dKcTe1zI65jvq
j+qQPRFjYOGtKiHstg4k9aGsGtdlntNZeazBOz0JQ2PusRk7jMUFsjMN8ubG2rbY
hvONdtMeB6VQBnTfmFDrm+WI5j+/Jf0Vv8GGk8GkBxDUeyu1odEosU5+6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL98cyLKAS7Qov3OgZU0gAOTZez4MB8GA1UdIwQY
MBaAFCvwoBl4aMbYw03Raz9E3sxeQjb1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80MGQyMjAtNjIxZC00NmZiLWFjOWMt
NDhiODM2NmZmMjNlLzEvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80MGQyMjAtNjIxZC00NmZiLWFjOWMtNDhiODM2NmZmMjNl
LzEvS19DZ0dYaG94dGpEVGRGclAwVGV6RjVDTnZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc8P08mur
vsNAvS75XM7v25xp/J26pWuv3N65awgdU11yQ1sqjx7vnXfkqXN+DR4bkQmAWmy2
S0YxIHlKZnygpVx/+spc8/OXNv2otaFz3IojmRCV1uhwNrcrLjhfSA3GztQIuK6A
MTRBqZ/YH9u0P5S9PnP73Gua6cQODLTJRoW7qg5LYUfBY5aXcEA8r+nBWxfQz+Ly
dlc77u+pObwJmdkwXhPMqwogi7CZKrKWOUDgQp9pJk1RMeWKS/r+7xqI/jxYV2ad
4mb5w/vnhhoh3Eev1RJfwx8bbA3GPQevNaVe+I0PMZSpnzDx4WQ9q18o1/6+7rMu
zzFzUkd1XhT5NA==
-----END CERTIFICATE-----
Generated at Wed May 14 02:36:33 2025 by rpki-client