Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
File: KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft (raw, json)
Hash identifier: 6iTKiun5HKqRP9AotpgBcQN3I0AMOiFE5sRj0qgapno=
Subject key identifier: F2:CA:93:60:1A:32:F0:92:10:32:7F:1C:C5:D0:D7:69:16:35:A0:E3
Authority key identifier: 28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84
Certificate issuer: /CN=28fa456d1c23678621954ffbf493a323de2c4484
Certificate serial: 019657270F7E33AB88D7DB4F1404FCAFF5B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
Manifest number: 0A3A
Signing time: Mon 21 Apr 2025 07:01:39 +0000
Manifest this update: Mon 21 Apr 2025 07:01:39 +0000
Manifest next update: Tue 22 Apr 2025 07:01:39 +0000
Files and hashes: 1: KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl (hash: UczF5Stp4sEmiiiGFsjAmz+D80yG8LYZBBsZCJ+eJLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:27:0f:7e:33:ab:88:d7:db:4f:14:04:fc:af:f5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fa456d1c23678621954ffbf493a323de2c4484
Validity
Not Before: Apr 21 07:01:39 2025 GMT
Not After : Apr 22 07:01:39 2025 GMT
Subject: CN=f2ca93601a32f09210327f1cc5d0d7691635a0e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1b:85:ec:ec:49:3d:21:17:bf:0d:6d:b2:71:
9b:39:76:e8:c9:d8:d0:1e:54:87:2e:7d:ad:22:fb:
aa:a3:0f:81:0e:c6:aa:00:02:62:e1:5e:62:7d:ad:
b2:55:c2:d0:37:75:c2:c4:65:ff:40:64:b2:79:ee:
b7:f1:c1:62:7a:75:2e:9a:ab:cf:2d:6d:df:1e:30:
ee:fd:ba:8c:d2:d2:93:e3:96:6c:ab:ae:e4:54:fd:
69:32:fd:50:ae:cc:a7:66:05:ba:fb:19:ae:d3:6c:
c0:c3:28:15:73:2e:2b:ac:57:52:2e:f8:e2:9a:4d:
98:8f:11:f6:90:1b:73:8e:e7:60:79:ce:40:cb:53:
ed:42:04:12:0f:f2:d1:3d:50:f8:29:e7:8d:dc:88:
f3:75:7b:77:8a:93:94:61:ae:9a:1a:cc:1e:38:26:
53:d9:d3:4a:34:b8:fc:e0:f6:ec:45:f4:2f:49:56:
60:fa:02:46:93:47:0c:7d:8e:64:94:8a:0d:37:15:
c9:0a:c9:87:dc:be:4d:f8:b5:3f:7e:6d:c3:61:e8:
ef:65:7a:88:20:fc:51:f2:02:9e:66:be:b5:ee:1f:
c1:ff:2e:53:9a:2a:15:d4:e4:44:bf:83:eb:6a:56:
0f:00:f6:fe:41:28:5d:5a:90:ea:26:f0:da:91:a5:
4f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:CA:93:60:1A:32:F0:92:10:32:7F:1C:C5:D0:D7:69:16:35:A0:E3
X509v3 Authority Key Identifier:
keyid:28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:cb:2d:dc:e5:d6:51:46:7e:c7:cd:b7:53:83:e2:8d:ff:0c:
51:75:6f:ed:75:db:da:9e:00:1e:0b:aa:b5:87:31:41:f8:f5:
cb:6c:3a:19:9a:78:de:10:ee:30:4e:9a:db:fc:8c:95:a9:69:
72:9b:b5:e0:5c:b4:c7:be:96:67:84:d8:51:76:ee:87:33:38:
be:50:7d:c3:da:45:d7:6f:b3:03:fa:55:75:b3:49:1d:b4:6b:
cf:d2:af:c4:07:1a:ff:17:92:e1:28:4e:f2:6e:31:47:02:ac:
3a:d7:5c:5a:3d:cb:fd:c6:a9:a4:e5:ad:e5:c5:60:31:29:21:
ad:ff:be:7f:63:7a:55:ce:76:71:3a:01:82:d8:e9:43:4b:af:
98:c3:e8:0e:31:b0:ca:be:cd:10:f0:ab:77:f7:aa:25:b4:fd:
59:60:be:de:0a:56:5a:9f:d5:86:67:5d:27:1f:9a:26:9c:6a:
82:4c:bf:08:7e:47:67:c4:91:74:3a:b6:bc:8b:6b:96:76:6f:
11:4b:c6:ac:c6:bc:3b:b1:ae:86:e7:ff:8f:96:82:43:ba:c4:
c2:24:82:ca:58:e3:f4:92:13:da:51:96:a3:73:aa:92:84:3f:
5d:76:82:33:6d:87:fc:94:bf:4d:f0:4c:18:43:10:2d:ac:c3:
d8:fd:c3:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZXJw9+M6uI19tPFAT8r/W0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ZmE0NTZkMWMyMzY3ODYyMTk1NGZmYmY0OTNhMzIzZGUy
YzQ0ODQwHhcNMjUwNDIxMDcwMTM5WhcNMjUwNDIyMDcwMTM5WjAzMTEwLwYDVQQD
EyhmMmNhOTM2MDFhMzJmMDkyMTAzMjdmMWNjNWQwZDc2OTE2MzVhMGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3huF7OxJPSEXvw1tsnGbOXboydjQ
HlSHLn2tIvuqow+BDsaqAAJi4V5ifa2yVcLQN3XCxGX/QGSyee638cFienUumqvP
LW3fHjDu/bqM0tKT45Zsq67kVP1pMv1QrsynZgW6+xmu02zAwygVcy4rrFdSLvji
mk2YjxH2kBtzjudgec5Ay1PtQgQSD/LRPVD4KeeN3IjzdXt3ipOUYa6aGsweOCZT
2dNKNLj84PbsRfQvSVZg+gJGk0cMfY5klIoNNxXJCsmH3L5N+LU/fm3DYejvZXqI
IPxR8gKeZr617h/B/y5TmioV1OREv4PralYPAPb+QShdWpDqJvDakaVPcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPLKk2AaMvCSEDJ/HMXQ12kWNaDjMB8GA1UdIwQY
MBaAFCj6RW0cI2eGIZVP+/SToyPeLESEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iMWFjYWItOWE4Yi00MjNlLWIwYmMt
ZjQ1YTJhNjM0NzA0LzEvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iMWFjYWItOWE4Yi00MjNlLWIwYmMtZjQ1YTJhNjM0NzA0
LzEvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMsst3OXW
UUZ+x823U4Pijf8MUXVv7XXb2p4AHguqtYcxQfj1y2w6GZp43hDuME6a2/yMlalp
cpu14Fy0x76WZ4TYUXbuhzM4vlB9w9pF12+zA/pVdbNJHbRrz9KvxAca/xeS4ShO
8m4xRwKsOtdcWj3L/cappOWt5cVgMSkhrf++f2N6Vc52cToBgtjpQ0uvmMPoDjGw
yr7NEPCrd/eqJbT9WWC+3gpWWp/VhmddJx+aJpxqgky/CH5HZ8SRdDq2vItrlnZv
EUvGrMa8O7Guhuf/j5aCQ7rEwiSCyljj9JIT2lGWo3OqkoQ/XXaCM22H/JS/TfBM
GEMQLazD2P3DhA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 10:43:32 2025 by rpki-client