Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: NuKPccYc017gm9ZaDV/j5eALf03Aq9yxeE3q4pJwqyI=
Subject key identifier: 85:39:A5:53:8B:86:5C:85:6E:0F:CE:FE:4E:56:22:36:97:6F:E5:B1
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 0197BA7E09917B80F9BFE2162BDD46E5E985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 04B2
Signing time: Sun 29 Jun 2025 07:01:51 +0000
Manifest this update: Sun 29 Jun 2025 07:01:51 +0000
Manifest next update: Mon 30 Jun 2025 07:01:51 +0000
Files and hashes: 1: U5Y7YWVXNPPm9KoqmwsivloXzrs.roa (hash: ca5vcs2GJ+zXpmrDaBzBSEBE+1Vnejqdln+cTCo9uxU=)
2: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: LvVV7KbXg1zLNq2VHp45CwUKCi3sdHm9xDWIWvTqET4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ba:7e:09:91:7b:80:f9:bf:e2:16:2b:dd:46:e5:e9:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: Jun 29 07:01:51 2025 GMT
Not After : Jun 30 07:01:51 2025 GMT
Subject: CN=8539a5538b865c856e0fcefe4e562236976fe5b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:34:16:fd:cd:c8:14:53:aa:7f:dd:a5:94:e2:
d0:c1:a7:74:c0:da:57:c0:7a:e8:ad:b6:fc:83:60:
9b:0a:12:0c:56:52:22:52:0a:c3:ec:ea:ca:38:37:
8a:7a:f8:b1:7b:d7:86:0a:a2:e1:de:af:e2:cd:27:
d2:ac:e6:1b:08:36:6e:1d:79:63:2e:bd:13:8f:e5:
a7:03:a3:8f:e8:cd:2e:88:cd:b7:e0:87:10:85:2f:
8f:ac:58:30:a7:30:04:2c:46:7c:81:ed:fa:3f:fa:
e2:5a:33:21:69:c4:99:71:af:2a:99:af:27:25:41:
4e:87:8f:d6:86:44:1e:e3:ca:4b:17:13:24:8e:03:
fd:2d:d9:37:19:e1:1c:86:62:59:73:a2:13:89:89:
b8:1e:8e:b6:32:7a:50:cc:f3:e2:81:77:b6:72:25:
45:27:85:5e:e6:05:fa:52:ac:d2:9f:8b:90:a9:1b:
8f:3c:ec:44:cb:75:5c:52:1a:6c:b8:38:ea:85:54:
d2:3e:e1:68:03:12:a1:a9:2c:5e:76:12:48:06:1d:
58:de:78:53:1e:21:72:d3:43:93:64:a5:c1:fc:49:
96:d0:a7:18:0e:56:97:dc:a8:80:a3:a5:c3:3a:f3:
b7:fa:63:7e:c3:64:e1:d0:ce:f8:80:80:5a:55:cc:
39:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:39:A5:53:8B:86:5C:85:6E:0F:CE:FE:4E:56:22:36:97:6F:E5:B1
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:1e:4f:8f:65:cb:31:48:58:7c:34:22:da:90:fd:38:8b:78:
a7:b4:ba:2d:a5:c7:ac:f2:b0:af:6f:6c:ed:7d:e1:56:04:2f:
4f:4e:fb:09:76:9d:84:ca:50:9c:be:5d:2d:ed:4e:5b:09:c3:
cb:a4:69:5b:60:41:56:85:3b:7f:8a:0c:a0:9c:59:6d:54:ba:
f5:00:d8:84:2b:80:d3:86:f0:04:83:18:2c:bf:10:81:a1:f9:
97:ea:74:51:a5:78:f4:78:69:ef:8e:4f:7d:73:77:3d:9f:f2:
e1:01:55:fc:8b:ad:0b:32:d3:9b:12:8b:b4:44:bc:07:ec:7a:
6d:d1:54:78:03:2d:7d:c2:8c:c0:a3:cf:7f:da:30:39:09:41:
e1:f3:75:9f:4a:58:99:09:b4:f5:ec:bc:a3:83:88:a0:81:fc:
50:cd:a9:9a:4d:01:23:c0:48:74:40:49:46:8b:d1:71:4a:9e:
ec:6e:b3:7f:e9:51:20:9c:17:7f:5a:61:02:3d:d0:29:d3:19:
39:81:64:ae:b9:15:27:6c:84:41:bb:b6:a8:52:33:5d:22:1c:
33:ed:40:8d:50:91:31:8c:ef:d9:65:68:30:2d:32:5c:ac:5c:
d7:a6:c6:af:8d:35:91:35:f9:25:7a:3c:d4:06:59:db:0e:fc:
09:70:4e:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fgmRe4D5v+IWK91G5emFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm
NjI1MzEwHhcNMjUwNjI5MDcwMTUxWhcNMjUwNjMwMDcwMTUxWjAzMTEwLwYDVQQD
Eyg4NTM5YTU1MzhiODY1Yzg1NmUwZmNlZmU0ZTU2MjIzNjk3NmZlNWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDQW/c3IFFOqf92llOLQwad0wNpX
wHrorbb8g2CbChIMVlIiUgrD7OrKODeKevixe9eGCqLh3q/izSfSrOYbCDZuHXlj
Lr0Tj+WnA6OP6M0uiM234IcQhS+PrFgwpzAELEZ8ge36P/riWjMhacSZca8qma8n
JUFOh4/WhkQe48pLFxMkjgP9Ldk3GeEchmJZc6ITiYm4Ho62MnpQzPPigXe2ciVF
J4Ve5gX6UqzSn4uQqRuPPOxEy3VcUhpsuDjqhVTSPuFoAxKhqSxedhJIBh1Y3nhT
HiFy00OTZKXB/EmW0KcYDlaX3KiAo6XDOvO3+mN+w2Th0M74gIBaVcw5PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIU5pVOLhlyFbg/O/k5WIjaXb+WxMB8GA1UdIwQY
MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt
OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1
LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnB5Pj2XL
MUhYfDQi2pD9OIt4p7S6LaXHrPKwr29s7X3hVgQvT077CXadhMpQnL5dLe1OWwnD
y6RpW2BBVoU7f4oMoJxZbVS69QDYhCuA04bwBIMYLL8QgaH5l+p0UaV49Hhp745P
fXN3PZ/y4QFV/IutCzLTmxKLtES8B+x6bdFUeAMtfcKMwKPPf9owOQlB4fN1n0pY
mQm09ey8o4OIoIH8UM2pmk0BI8BIdEBJRovRcUqe7G6zf+lRIJwXf1phAj3QKdMZ
OYFkrrkVJ2yEQbu2qFIzXSIcM+1AjVCRMYzv2WVoMC0yXKxc16bGr401kTX5JXo8
1AZZ2w78CXBOfA==
-----END CERTIFICATE-----
Generated at Sun Jun 29 10:21:15 2025 by rpki-client