Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: 36D2RiebDFPtJY3RI3e+d9I8UGHAAOPusjH58DlSFls=
Subject key identifier: 8F:12:19:02:EE:09:38:F3:29:A5:0E:A0:20:E2:FE:86:5F:8F:75:2F
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 0196C5DE9531655675EADC74E92232882D68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 0705
Signing time: Mon 12 May 2025 19:00:20 +0000
Manifest this update: Mon 12 May 2025 19:00:20 +0000
Manifest next update: Tue 13 May 2025 19:00:20 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: OaOxm1Q/jRaHkGqNEfE3TEr4OzdhJUyksRERw3JhueU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:de:95:31:65:56:75:ea:dc:74:e9:22:32:88:2d:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: May 12 19:00:20 2025 GMT
Not After : May 13 19:00:20 2025 GMT
Subject: CN=8f121902ee0938f329a50ea020e2fe865f8f752f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c7:16:65:cd:b3:ab:17:dc:e1:09:4f:7f:28:
45:ca:2a:f7:55:ef:e3:cf:fc:fd:63:46:86:42:82:
ee:be:23:a9:1b:05:62:f0:08:53:de:ff:63:7c:3d:
49:6b:f1:98:69:75:c8:87:f3:91:d9:3e:51:5c:59:
c0:b3:d0:f3:91:1c:a4:7c:34:7a:84:2b:85:e0:5b:
fe:b7:0a:07:68:a3:67:c5:6e:aa:60:0f:e2:ad:f9:
ad:cb:63:3c:75:6e:ea:c8:90:b6:5b:32:3e:7b:96:
3c:b4:cb:c4:b7:6d:0f:0d:06:34:33:08:ad:de:5a:
29:48:e4:c0:65:e8:30:60:c7:62:4b:3e:57:80:38:
12:cc:e4:a5:e2:b5:31:6b:32:bc:b3:ce:b7:a5:43:
3c:d5:72:24:9e:17:6d:e0:fa:74:ef:a6:ac:bd:d9:
e9:6b:80:60:68:df:0e:91:a0:cb:79:c9:01:60:7a:
2d:c9:52:29:00:fb:49:60:65:11:11:df:92:50:ba:
0c:2a:66:38:cf:9f:d2:06:51:e1:7a:fa:46:0d:88:
f6:52:d2:7c:99:80:83:54:90:21:43:e6:21:2f:73:
18:65:c1:7b:4b:7e:cf:ea:95:e3:9a:72:cd:d1:a5:
ae:72:8e:6b:84:a3:8b:65:83:74:78:35:15:9d:9f:
5c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:12:19:02:EE:09:38:F3:29:A5:0E:A0:20:E2:FE:86:5F:8F:75:2F
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:99:ea:1b:57:60:3d:07:67:3f:38:cc:c0:c8:7e:ff:28:da:
ec:b6:e8:f0:2c:b0:e6:2d:01:fe:d5:e4:1d:48:d3:6a:91:2e:
63:a7:e0:db:e9:35:6e:be:02:fc:40:ba:f3:83:ff:92:a2:ce:
e7:d2:65:4b:ef:b6:b9:f6:49:ad:d8:f4:5c:7d:6d:75:8b:a2:
26:0d:bb:9e:31:b7:33:4a:ac:b5:45:6e:c2:83:24:e5:5c:3f:
22:c2:d5:e6:51:52:32:9c:b4:2c:5f:ea:77:07:19:7c:d1:36:
78:ab:85:78:8f:f6:95:47:5e:4f:f1:c3:8e:fb:4f:41:3f:9b:
e2:c3:e0:d2:93:38:f6:75:92:49:7c:98:9b:1a:62:28:23:94:
02:70:f1:10:da:21:34:c6:21:fe:03:97:b8:84:82:d3:62:45:
8c:18:91:12:1e:ae:21:7b:a2:4a:81:ca:1c:b7:c9:f8:4e:8a:
7b:47:09:b9:f9:f8:6d:19:8d:1f:37:47:47:70:79:b3:26:a4:
14:ee:9b:07:1b:b6:aa:a2:8a:f1:48:75:7c:d9:99:3a:59:84:
69:26:d7:3d:4f:1e:7e:e2:21:0b:62:a6:9e:de:4f:05:2e:2a:
cb:4d:8b:c6:0b:0d:86:0f:37:fc:b8:bd:92:d1:20:7b:71:c0:
73:43:06:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbF3pUxZVZ16tx06SIyiC1oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYjJkMDIzNDFjMTE5NDlhOGM4NzE1M2Y4NjZjMGY2OGYx
YmJkNzMwHhcNMjUwNTEyMTkwMDIwWhcNMjUwNTEzMTkwMDIwWjAzMTEwLwYDVQQD
Eyg4ZjEyMTkwMmVlMDkzOGYzMjlhNTBlYTAyMGUyZmU4NjVmOGY3NTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMcWZc2zqxfc4QlPfyhFyir3Ve/j
z/z9Y0aGQoLuviOpGwVi8AhT3v9jfD1Ja/GYaXXIh/OR2T5RXFnAs9DzkRykfDR6
hCuF4Fv+twoHaKNnxW6qYA/irfmty2M8dW7qyJC2WzI+e5Y8tMvEt20PDQY0Mwit
3lopSOTAZegwYMdiSz5XgDgSzOSl4rUxazK8s863pUM81XIknhdt4Pp076asvdnp
a4BgaN8OkaDLeckBYHotyVIpAPtJYGUREd+SULoMKmY4z5/SBlHhevpGDYj2UtJ8
mYCDVJAhQ+YhL3MYZcF7S37P6pXjmnLN0aWuco5rhKOLZYN0eDUVnZ9cjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI8SGQLuCTjzKaUOoCDi/oZfj3UvMB8GA1UdIwQY
MBaAFCuy0CNBwRlJqMhxU/hmwPaPG71zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kN2E3OTQtNWUzOC00ZTg0LTgxNTYt
NDYwNjU2ZmUzYWI1LzEvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9kN2E3OTQtNWUzOC00ZTg0LTgxNTYtNDYwNjU2ZmUzYWI1
LzEvSzdMUUkwSEJHVW1veUhGVC1HYkE5bzhidlhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAapnqG1dg
PQdnPzjMwMh+/yja7Lbo8Cyw5i0B/tXkHUjTapEuY6fg2+k1br4C/EC684P/kqLO
59JlS++2ufZJrdj0XH1tdYuiJg27njG3M0qstUVuwoMk5Vw/IsLV5lFSMpy0LF/q
dwcZfNE2eKuFeI/2lUdeT/HDjvtPQT+b4sPg0pM49nWSSXyYmxpiKCOUAnDxENoh
NMYh/gOXuISC02JFjBiREh6uIXuiSoHKHLfJ+E6Ke0cJufn4bRmNHzdHR3B5syak
FO6bBxu2qqKK8Uh1fNmZOlmEaSbXPU8efuIhC2Kmnt5PBS4qy02LxgsNhg83/Li9
ktEge3HAc0MGqw==
-----END CERTIFICATE-----
Generated at Mon May 12 21:23:16 2025 by rpki-client