Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
File: kmhshS82--n8i-d8QJtSJqbuVNU.mft (raw, json)
Hash identifier: it0cdkWf0jV2V8M8fIVmTbioWE4PyKyZ8SGeKpsIJRY=
Subject key identifier: DA:58:A7:39:CB:9B:47:EE:32:19:95:03:5E:D1:03:01:61:6C:96:69
Authority key identifier: 92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
Certificate issuer: /CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Certificate serial: 019659B952EC9F2FBCD3EE68369A5012FF2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
Manifest number: 1503
Signing time: Mon 21 Apr 2025 19:00:39 +0000
Manifest this update: Mon 21 Apr 2025 19:00:39 +0000
Manifest next update: Tue 22 Apr 2025 19:00:39 +0000
Files and hashes: 1: IvJ7HvT-6tCK5GKbaPNyk54ml9M.roa (hash: 7zWh/VLAgd5GsVxZJpmQ4YamOZV0jGAf5fVHM29zO30=)
2: kmhshS82--n8i-d8QJtSJqbuVNU.crl (hash: E1Jx65QS5d6CLa3+afoUnkqfaxrU5Q/vowOyVvm3PnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 13:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:52:ec:9f:2f:bc:d3:ee:68:36:9a:50:12:ff:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Validity
Not Before: Apr 21 19:00:39 2025 GMT
Not After : Apr 22 19:00:39 2025 GMT
Subject: CN=da58a739cb9b47ee321995035ed10301616c9669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:23:9a:44:80:f2:17:82:10:ab:75:d7:08:db:
21:77:ea:63:7c:bc:44:b5:ce:59:3b:29:bf:2c:f4:
67:06:7a:9d:59:28:f3:49:f9:bb:74:47:19:d5:f0:
31:b2:8f:29:de:29:62:98:42:1a:a5:98:b6:df:9b:
3e:e4:1e:67:98:a3:2e:65:8f:5a:27:8a:af:92:84:
86:ea:82:b4:9b:5b:8c:00:e5:2a:a7:e7:49:2c:ad:
7a:a5:15:9c:2a:f5:dd:8a:7a:0a:80:1a:c7:87:46:
e4:75:31:3b:87:2b:b0:b7:00:3c:03:ef:4c:9f:ea:
08:41:ec:21:3c:8f:28:55:7a:06:79:61:7b:13:f0:
aa:f0:9b:cf:0c:76:a9:2d:7b:5d:52:44:e0:d0:fe:
dc:f7:08:48:85:0d:21:5a:5c:21:f4:60:ae:55:b1:
08:73:f5:44:46:cc:0a:0b:2a:84:c4:9a:3e:e7:f6:
89:99:ee:c8:ba:11:bc:9d:ec:a5:bd:2e:3a:57:04:
e0:61:19:bb:b1:ed:54:8d:29:be:30:29:fe:75:9f:
0a:ba:f3:e7:d1:09:52:a0:0a:7e:d1:13:fc:57:6d:
c3:c4:5f:05:12:eb:b5:74:b1:cd:db:2b:50:60:d9:
cb:dc:b2:91:97:28:20:49:58:01:bf:fe:b2:82:0b:
cd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:58:A7:39:CB:9B:47:EE:32:19:95:03:5E:D1:03:01:61:6C:96:69
X509v3 Authority Key Identifier:
keyid:92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b6:ac:6b:04:af:cd:1b:f2:71:38:28:69:9f:60:55:ac:92:
f4:0c:20:32:64:f3:cc:bd:fb:91:2f:a7:bd:7a:ca:30:69:ad:
ff:97:7c:ef:ce:10:4c:ce:f3:71:0f:56:9e:01:86:97:64:65:
75:74:f4:55:bf:21:15:e8:93:09:f4:eb:94:60:01:92:4a:33:
c1:15:1c:b4:0a:12:9c:00:da:d8:b1:d9:a8:ea:6a:24:41:5e:
5a:be:e4:60:0d:2f:f3:a3:44:06:43:70:0d:8a:a2:5f:f1:1e:
61:ce:65:e6:9c:2e:50:66:7b:1e:9f:73:c1:96:3b:38:6d:66:
0d:20:05:bb:d0:59:8e:c8:0f:05:65:a5:a4:04:7b:80:44:0e:
23:f6:e7:a2:1f:e9:17:4f:13:8a:d7:cc:04:5f:1b:34:cb:5d:
45:3d:bd:f5:9e:14:3e:e0:a1:df:29:6c:89:37:41:ee:bd:e8:
90:be:4e:74:81:f7:c2:1b:fc:e1:ab:23:ea:c8:17:ef:05:ac:
a7:f1:be:2e:85:cc:a8:f8:95:f9:27:dd:48:7b:17:74:67:46:
db:a6:09:ba:42:0a:24:59:14:1a:fb:54:b5:9e:e2:d7:03:c4:
a6:4b:db:a9:4b:bc:10:a2:73:f2:82:26:eb:6c:54:ef:61:41:
99:7b:03:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZZuVLsny+80+5oNppQEv8qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNjg2Yzg1MmYzNmZiZTlmYzhiZTc3YzQwOWI1MjI2YTZl
ZTU0ZDUwHhcNMjUwNDIxMTkwMDM5WhcNMjUwNDIyMTkwMDM5WjAzMTEwLwYDVQQD
EyhkYTU4YTczOWNiOWI0N2VlMzIxOTk1MDM1ZWQxMDMwMTYxNmM5NjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAryOaRIDyF4IQq3XXCNshd+pjfLxE
tc5ZOym/LPRnBnqdWSjzSfm7dEcZ1fAxso8p3ilimEIapZi235s+5B5nmKMuZY9a
J4qvkoSG6oK0m1uMAOUqp+dJLK16pRWcKvXdinoKgBrHh0bkdTE7hyuwtwA8A+9M
n+oIQewhPI8oVXoGeWF7E/Cq8JvPDHapLXtdUkTg0P7c9whIhQ0hWlwh9GCuVbEI
c/VERswKCyqExJo+5/aJme7IuhG8neylvS46VwTgYRm7se1UjSm+MCn+dZ8KuvPn
0QlSoAp+0RP8V23DxF8FEuu1dLHN2ytQYNnL3LKRlyggSVgBv/6yggvN5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNpYpznLm0fuMhmVA17RAwFhbJZpMB8GA1UdIwQY
MBaAFJJobIUvNvvp/IvnfECbUiam7lTVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva21oc2hTODItLW44aS1kOFFKdFNKcWJ1Vk5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9kNTU5YjItNGIzMy00ZjhkLTlkMjEt
YmE3MWZiZGIwMzc0LzEva21oc2hTODItLW44aS1kOFFKdFNKcWJ1Vk5VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC9kNTU5YjItNGIzMy00ZjhkLTlkMjEtYmE3MWZiZGIwMzc0
LzEva21oc2hTODItLW44aS1kOFFKdFNKcWJ1Vk5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH7asawSv
zRvycTgoaZ9gVayS9AwgMmTzzL37kS+nvXrKMGmt/5d8784QTM7zcQ9WngGGl2Rl
dXT0Vb8hFeiTCfTrlGABkkozwRUctAoSnADa2LHZqOpqJEFeWr7kYA0v86NEBkNw
DYqiX/EeYc5l5pwuUGZ7Hp9zwZY7OG1mDSAFu9BZjsgPBWWlpAR7gEQOI/bnoh/p
F08TitfMBF8bNMtdRT299Z4UPuCh3ylsiTdB7r3okL5OdIH3whv84asj6sgX7wWs
p/G+LoXMqPiV+SfdSHsXdGdG26YJukIKJFkUGvtUtZ7i1wPEpkvbqUu8EKJz8oIm
62xU72FBmXsD9A==
-----END CERTIFICATE-----
Generated at Mon Apr 21 22:23:05 2025 by rpki-client