Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.mft
File: K5X2grxtV338PBDs7icYOB_uOyM.mft (raw, json)
Hash identifier: EiS8TKTr9SKIAqE2gtbsE+ipVDwk8rR8Qrwy7wf9R/w=
Subject key identifier: F7:53:05:C1:15:2A:EE:76:21:B2:50:87:EB:83:75:01:58:D2:0E:B1
Authority key identifier: 2B:95:F6:82:BC:6D:57:7D:FC:3C:10:EC:EE:27:18:38:1F:EE:3B:23
Certificate issuer: /CN=2b95f682bc6d577dfc3c10ecee2718381fee3b23
Certificate serial: 01965537953B57EC84D40AD9CED1C331F416
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5X2grxtV338PBDs7icYOB_uOyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 22:00:28 +0000
Manifest this update: Sun 20 Apr 2025 22:00:28 +0000
Manifest next update: Mon 21 Apr 2025 22:00:28 +0000
Files and hashes: 1: IRjrM71OJM5QObnZgNNrFRUyuDg.roa (hash: KDXjEC5+jgnVgR7YLpm66IF8Y8cfv8DKQxOxQp+OnTk=)
2: K5X2grxtV338PBDs7icYOB_uOyM.crl (hash: JW8qDo1nDNtebI+2CN4q8baKo3F4G19hkjUeYVWxZLQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K5X2grxtV338PBDs7icYOB_uOyM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:95:3b:57:ec:84:d4:0a:d9:ce:d1:c3:31:f4:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b95f682bc6d577dfc3c10ecee2718381fee3b23
Validity
Not Before: Apr 20 22:00:28 2025 GMT
Not After : Apr 21 22:00:28 2025 GMT
Subject: CN=f75305c1152aee7621b25087eb83750158d20eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:84:0b:38:c4:4f:05:3c:e9:1f:fb:16:3e:7f:
4b:c7:0c:31:56:9e:9d:73:51:ca:76:19:b0:da:80:
2f:f6:c4:30:65:e4:7b:0b:a7:9b:7f:56:42:9f:26:
a1:c4:f2:24:3b:a5:77:61:90:7b:75:6b:9b:84:7d:
f5:9f:53:19:eb:b4:38:9d:f4:9a:79:e7:1b:2c:fc:
73:c2:06:15:74:3f:ce:89:91:ae:57:2c:ba:24:d3:
0c:0a:17:80:72:02:10:6b:30:43:52:64:f1:b4:a2:
3f:3b:23:05:b1:90:c9:dc:4e:4b:a5:6e:1d:b6:a8:
b1:a0:df:23:01:85:79:b5:d9:71:d5:a8:8d:d6:cb:
87:89:2a:c6:d4:81:c6:6a:94:28:19:6f:27:69:a3:
56:1e:30:46:5e:bc:ce:46:f7:8e:fb:48:5a:fc:2f:
5c:41:b3:f3:2e:0b:cd:25:8e:24:21:af:c1:60:41:
07:07:92:09:95:d2:9a:92:4e:52:44:fa:09:7a:e2:
db:7b:2a:13:b9:a6:ae:4c:50:45:e9:36:1c:4b:6c:
57:ff:ad:33:10:12:fc:0d:24:34:04:bc:49:47:43:
dd:b3:94:5b:31:b2:75:1b:6d:9b:b3:96:59:cc:c8:
40:5e:92:c6:7c:4a:a8:ce:f7:cf:ab:95:b1:e7:a1:
64:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:53:05:C1:15:2A:EE:76:21:B2:50:87:EB:83:75:01:58:D2:0E:B1
X509v3 Authority Key Identifier:
keyid:2B:95:F6:82:BC:6D:57:7D:FC:3C:10:EC:EE:27:18:38:1F:EE:3B:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5X2grxtV338PBDs7icYOB_uOyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/780e0b-4f02-4cd2-a4e3-e01a56f58d37/1/K5X2grxtV338PBDs7icYOB_uOyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:56:da:e6:f2:61:e9:0f:bd:cf:b4:48:51:d1:30:d9:54:0e:
29:1c:c3:4e:e9:f7:90:04:ba:99:ab:76:3b:a7:66:e0:80:42:
e6:96:7b:32:34:8d:a8:49:84:e1:97:f0:08:26:a9:19:08:94:
e0:f5:25:b9:3c:3e:db:17:cd:d3:99:21:0b:07:f4:72:2a:ae:
a0:d9:c5:59:61:5d:7b:8f:53:a5:7a:f6:a6:99:e1:ca:12:5f:
23:e6:e8:69:b8:96:77:f7:75:af:42:f1:82:19:79:ee:18:45:
a2:11:6d:d6:79:d9:51:32:18:52:09:ea:51:25:4d:c6:a0:eb:
ee:94:ed:a9:1d:99:19:a0:b0:05:f5:26:75:3f:02:6b:5f:31:
8c:ca:6e:a8:ef:c2:71:d7:ff:d3:c2:f0:5f:86:78:a1:de:5b:
3a:3f:a8:d5:ec:5d:ed:8f:e7:aa:a3:b8:57:3b:a5:a9:bb:47:
19:98:65:06:43:e1:15:05:75:68:4f:8d:e8:02:4b:f6:57:ea:
72:c3:51:d7:f2:c1:ed:97:ba:c7:46:01:75:bb:46:f3:e4:3b:
13:88:85:e0:da:71:c7:80:ce:50:05:81:f8:b6:62:2f:36:ad:
06:df:78:ba:df:cb:dc:91:4f:4a:1d:03:e2:91:d4:75:c7:03:
8f:07:a3:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVN5U7V+yE1ArZztHDMfQWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiOTVmNjgyYmM2ZDU3N2RmYzNjMTBlY2VlMjcxODM4MWZl
ZTNiMjMwHhcNMjUwNDIwMjIwMDI4WhcNMjUwNDIxMjIwMDI4WjAzMTEwLwYDVQQD
EyhmNzUzMDVjMTE1MmFlZTc2MjFiMjUwODdlYjgzNzUwMTU4ZDIwZWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4QLOMRPBTzpH/sWPn9LxwwxVp6d
c1HKdhmw2oAv9sQwZeR7C6ebf1ZCnyahxPIkO6V3YZB7dWubhH31n1MZ67Q4nfSa
eecbLPxzwgYVdD/OiZGuVyy6JNMMCheAcgIQazBDUmTxtKI/OyMFsZDJ3E5LpW4d
tqixoN8jAYV5tdlx1aiN1suHiSrG1IHGapQoGW8naaNWHjBGXrzORveO+0ha/C9c
QbPzLgvNJY4kIa/BYEEHB5IJldKakk5SRPoJeuLbeyoTuaauTFBF6TYcS2xX/60z
EBL8DSQ0BLxJR0Pds5RbMbJ1G22bs5ZZzMhAXpLGfEqozvfPq5Wx56FkBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPdTBcEVKu52IbJQh+uDdQFY0g6xMB8GA1UdIwQY
MBaAFCuV9oK8bVd9/DwQ7O4nGDgf7jsjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzVYMmdyeHRWMzM4UEJEczdpY1lPQl91T3lNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS83ODBlMGItNGYwMi00Y2QyLWE0ZTMt
ZTAxYTU2ZjU4ZDM3LzEvSzVYMmdyeHRWMzM4UEJEczdpY1lPQl91T3lNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS83ODBlMGItNGYwMi00Y2QyLWE0ZTMtZTAxYTU2ZjU4ZDM3
LzEvSzVYMmdyeHRWMzM4UEJEczdpY1lPQl91T3lNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWVba5vJh
6Q+9z7RIUdEw2VQOKRzDTun3kAS6mat2O6dm4IBC5pZ7MjSNqEmE4ZfwCCapGQiU
4PUluTw+2xfN05khCwf0ciquoNnFWWFde49TpXr2ppnhyhJfI+boabiWd/d1r0Lx
ghl57hhFohFt1nnZUTIYUgnqUSVNxqDr7pTtqR2ZGaCwBfUmdT8Ca18xjMpuqO/C
cdf/08LwX4Z4od5bOj+o1exd7Y/nqqO4VzulqbtHGZhlBkPhFQV1aE+N6AJL9lfq
csNR1/LB7Ze6x0YBdbtG8+Q7E4iF4Npxx4DOUAWB+LZiLzatBt94ut/L3JFPSh0D
4pHUdccDjwejmQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:25:58 2025 by rpki-client