Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
File: KfzfdinE4A6QbxQ19EndEJ9BC2w.mft (raw, json)
Hash identifier: 7jYK0lFxbGANEwgXOfhSoAs5ihm4JS0hbTCurUR7oZU=
Subject key identifier: 8D:59:7F:0B:96:49:E7:13:5A:5F:34:87:33:52:29:71:C2:F9:0A:1D
Authority key identifier: 29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
Certificate issuer: /CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Certificate serial: 0196C72895334A3953E0FD001351C6B95485
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
Manifest number: 1216
Signing time: Tue 13 May 2025 01:00:47 +0000
Manifest this update: Tue 13 May 2025 01:00:47 +0000
Manifest next update: Wed 14 May 2025 01:00:47 +0000
Files and hashes: 1: KfzfdinE4A6QbxQ19EndEJ9BC2w.crl (hash: LRj+bA6IlOhMXaXlVaVY433JnIjA52SQmSdYkJ0aGUg=)
2: lKv_MpftntPeWIBfQDo4EvQnOCE.roa (hash: v96JNz5ZiqAWk2kEUzYU+IVtwUC39vYGpp2p54BaFZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:28:95:33:4a:39:53:e0:fd:00:13:51:c6:b9:54:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Validity
Not Before: May 13 01:00:47 2025 GMT
Not After : May 14 01:00:47 2025 GMT
Subject: CN=8d597f0b9649e7135a5f348733522971c2f90a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f8:fe:0c:29:a8:c8:ab:7b:a0:47:93:e5:af:
e3:b2:93:61:68:74:af:45:99:68:d8:12:c7:18:f6:
0f:03:68:df:6e:e1:95:03:51:b8:86:bf:81:07:25:
03:65:97:af:a6:53:c5:36:a4:48:81:b0:cb:71:9e:
39:3a:64:06:e7:2e:c4:07:78:1f:22:87:2f:fa:b4:
e0:e9:ea:83:90:88:83:e0:ad:5f:6c:76:b0:55:27:
1a:11:c5:27:55:d0:ee:57:16:f0:0d:11:d4:c4:66:
32:6a:6c:1c:90:b6:b2:2e:b0:31:88:17:d7:07:72:
55:63:9c:f9:14:eb:a7:2c:e2:d1:78:3f:28:b2:87:
f8:af:12:68:27:da:9f:80:eb:8f:03:9a:8a:5e:20:
cc:9b:71:d6:74:47:d9:7a:8a:d4:28:eb:3f:a6:ef:
d6:37:22:80:5b:1d:2f:c2:5a:7d:14:18:9b:b0:18:
6d:0a:b0:d7:5b:c2:8f:82:79:28:fa:96:c0:ae:78:
24:b5:70:51:e2:93:e4:1f:67:79:8c:1e:48:a8:9c:
d9:7d:54:af:7e:cb:ee:95:68:2a:69:4b:cc:78:53:
71:00:4e:8a:55:10:8d:53:c2:0f:3f:00:9b:c5:43:
4b:03:aa:86:35:10:22:e0:fd:50:31:d6:2c:84:96:
7c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:59:7F:0B:96:49:E7:13:5A:5F:34:87:33:52:29:71:C2:F9:0A:1D
X509v3 Authority Key Identifier:
keyid:29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:06:5f:e6:9d:dd:73:e3:62:1e:b7:14:51:6e:ad:4b:34:8a:
03:3d:91:bd:2e:b4:ef:76:9d:ab:33:e2:83:24:ea:25:96:df:
39:bc:21:2a:23:80:4b:f7:04:f5:b7:6f:b6:92:95:03:e0:04:
fd:47:b3:7f:c5:23:2b:47:94:b5:b6:d7:a4:81:72:43:0d:33:
7e:e2:ec:d8:3a:f2:27:b1:a0:87:9f:cb:5d:e2:c3:dc:54:e4:
ad:28:5f:db:16:5e:e9:af:61:b8:c5:63:ee:5b:a8:b3:fd:30:
91:78:db:2f:74:55:d8:4e:eb:7a:8c:9e:c3:b8:0d:a6:9f:c2:
24:7e:2b:98:b6:3e:49:1e:bc:5a:d7:f5:d5:91:63:1b:d4:e8:
68:d0:ae:7f:06:07:3d:46:14:47:02:1b:bd:a8:93:0e:a3:98:
b5:af:bb:9d:bd:87:e8:fb:52:65:32:1b:d8:dd:66:cc:16:3d:
d3:e8:2f:27:99:02:56:0b:03:3f:ba:c3:9a:9f:75:81:e4:d6:
56:df:9c:a1:6d:39:6a:6d:1e:5c:37:4e:8e:fe:4d:c6:18:11:
05:92:7b:07:48:83:b3:d8:83:17:5c:03:9e:e4:c7:08:e3:cf:
9a:37:fb:f8:cb:f0:50:1e:8a:17:16:c4:1a:a2:33:a1:b7:8e:
ca:f5:29:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbHKJUzSjlT4P0AE1HGuVSFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZmNkZjc2MjljNGUwMGU5MDZmMTQzNWY0NDlkZDEwOWY0
MTBiNmMwHhcNMjUwNTEzMDEwMDQ3WhcNMjUwNTE0MDEwMDQ3WjAzMTEwLwYDVQQD
Eyg4ZDU5N2YwYjk2NDllNzEzNWE1ZjM0ODczMzUyMjk3MWMyZjkwYTFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/j+DCmoyKt7oEeT5a/jspNhaHSv
RZlo2BLHGPYPA2jfbuGVA1G4hr+BByUDZZevplPFNqRIgbDLcZ45OmQG5y7EB3gf
Iocv+rTg6eqDkIiD4K1fbHawVScaEcUnVdDuVxbwDRHUxGYyamwckLayLrAxiBfX
B3JVY5z5FOunLOLReD8osof4rxJoJ9qfgOuPA5qKXiDMm3HWdEfZeorUKOs/pu/W
NyKAWx0vwlp9FBibsBhtCrDXW8KPgnko+pbArngktXBR4pPkH2d5jB5IqJzZfVSv
fsvulWgqaUvMeFNxAE6KVRCNU8IPPwCbxUNLA6qGNRAi4P1QMdYshJZ8zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI1ZfwuWSecTWl80hzNSKXHC+QodMB8GA1UdIwQY
MBaAFCn833YpxOAOkG8UNfRJ3RCfQQtsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2Z6ZmRpbkU0QTZRYnhRMTlFbmRFSjlCQzJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kNDdiZTgtMmZmMC00YzkzLWI5MTIt
OTA1ZTc2M2YwNDhkLzEvS2Z6ZmRpbkU0QTZRYnhRMTlFbmRFSjlCQzJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9kNDdiZTgtMmZmMC00YzkzLWI5MTItOTA1ZTc2M2YwNDhk
LzEvS2Z6ZmRpbkU0QTZRYnhRMTlFbmRFSjlCQzJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwQZf5p3d
c+NiHrcUUW6tSzSKAz2RvS6073adqzPigyTqJZbfObwhKiOAS/cE9bdvtpKVA+AE
/Uezf8UjK0eUtbbXpIFyQw0zfuLs2DryJ7Ggh5/LXeLD3FTkrShf2xZe6a9huMVj
7luos/0wkXjbL3RV2E7reoyew7gNpp/CJH4rmLY+SR68Wtf11ZFjG9ToaNCufwYH
PUYURwIbvaiTDqOYta+7nb2H6PtSZTIb2N1mzBY90+gvJ5kCVgsDP7rDmp91geTW
Vt+coW05am0eXDdOjv5NxhgRBZJ7B0iDs9iDF1wDnuTHCOPPmjf7+MvwUB6KFxbE
GqIzobeOyvUpFA==
-----END CERTIFICATE-----
Generated at Tue May 13 05:47:38 2025 by rpki-client