Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
File: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft (raw, json)
Hash identifier: qrvi+RfMXrGygJDfmBXGs0cwv1QBHXyiA37pHdpet0E=
Subject key identifier: 5B:B8:87:6B:29:0A:7B:2C:E0:A9:B4:36:67:5B:97:59:34:9D:98:79
Authority key identifier: 28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67
Certificate issuer: /CN=2858d2f131715cbaf3cdd920645924f53508e067
Certificate serial: 0197485513A515B47DE703F1DC058E825234
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
Manifest number: 0A1B
Signing time: Sat 07 Jun 2025 03:00:24 +0000
Manifest this update: Sat 07 Jun 2025 03:00:24 +0000
Manifest next update: Sun 08 Jun 2025 03:00:24 +0000
Files and hashes: 1: Gxa8ZTehusQ__zJKE-EIDPUx7f0.roa (hash: D3bg8s9LSpHww0XiOamb2fTNkB0scUvbSEDIBYdOll4=)
2: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl (hash: c+gPptfZlrBrFDspTr03agBnZkgMpfiDe39Mvkt/1Q0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:13:a5:15:b4:7d:e7:03:f1:dc:05:8e:82:52:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2858d2f131715cbaf3cdd920645924f53508e067
Validity
Not Before: Jun 7 03:00:24 2025 GMT
Not After : Jun 8 03:00:24 2025 GMT
Subject: CN=5bb8876b290a7b2ce0a9b436675b9759349d9879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bf:c5:4d:6d:e1:2d:3c:e7:0e:a2:d5:91:9c:
0c:98:55:f5:fa:29:97:48:82:85:2b:48:28:3a:54:
41:6d:7f:7a:17:2c:bf:c4:8c:7f:e5:af:4c:49:6c:
80:af:69:bb:e9:cb:ad:47:f4:fd:c3:bf:93:35:d6:
3f:95:08:cb:27:1e:28:bc:d7:c5:e7:6a:12:f9:26:
0e:90:db:34:28:9f:30:75:32:52:fe:e7:a2:07:14:
69:e7:c3:ae:8b:ec:4d:56:84:a9:37:bc:3f:33:66:
d2:be:43:be:34:ce:20:c7:d7:ff:a2:70:4f:9f:c1:
4e:9d:c2:ad:4c:10:3d:7d:2f:08:66:31:72:e5:5c:
d8:69:a5:a8:0a:75:9a:54:ca:d7:86:ea:1d:8b:4b:
cf:3c:39:fe:34:54:53:5b:53:82:8e:37:cb:fc:75:
0d:14:3e:88:a7:f4:0c:93:4c:bd:a2:a3:bd:b0:2d:
bb:cb:a8:9b:80:3f:14:9e:7a:51:c8:6f:5e:65:e9:
ee:ab:7e:aa:ac:d5:2a:5b:92:59:ca:27:5b:39:3c:
08:f4:f6:55:8f:8e:20:7c:de:b7:53:ef:b2:5a:26:
95:4d:17:c7:cc:73:a8:86:15:e4:1e:17:33:56:63:
29:d7:52:ac:4e:b4:98:d2:3e:12:0c:50:a1:ec:48:
32:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B8:87:6B:29:0A:7B:2C:E0:A9:B4:36:67:5B:97:59:34:9D:98:79
X509v3 Authority Key Identifier:
keyid:28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:10:e3:12:58:a8:21:52:2a:6e:dc:5c:21:b6:1a:f0:60:5b:
01:d3:da:59:f6:5a:2a:cd:e3:2b:20:85:7e:8b:e5:01:0a:f2:
6d:f6:49:e7:07:ac:ac:e9:d1:78:aa:0d:e6:7e:a1:81:f7:0f:
2d:d3:b7:d3:d4:41:ce:4d:66:26:df:10:ee:7f:71:e7:df:44:
fc:77:3e:ed:b5:3a:0e:02:96:dd:91:16:a1:28:88:33:e6:2c:
3a:94:a0:c5:da:f4:63:19:1f:2f:a6:00:d0:f1:bb:ed:57:c9:
1d:5a:11:0e:12:27:d8:4e:d0:b3:7c:b3:dc:18:52:90:7c:8b:
81:39:75:de:5c:63:aa:13:4b:91:ca:04:fd:ad:97:52:c9:93:
d7:da:36:72:6c:26:db:21:d3:22:cf:cb:7a:ad:24:00:f1:a9:
d9:1f:f6:72:5f:2d:0e:6f:39:66:2f:49:4e:8b:b3:6d:bf:f7:
c2:2f:ff:6f:25:95:7d:60:11:29:04:0c:da:25:24:b3:81:25:
39:32:41:b3:e6:73:e5:c6:1a:1d:f9:87:fe:b4:32:54:2c:d6:
11:43:ce:31:e0:8f:7c:0f:1f:26:0c:12:46:b6:12:54:3b:ac:
3a:9d:4a:b8:d9:ed:17:3c:5b:eb:11:67:fe:16:7d:03:09:33:
70:80:c8:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIVROlFbR95wPx3AWOglI0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4NThkMmYxMzE3MTVjYmFmM2NkZDkyMDY0NTkyNGY1MzUw
OGUwNjcwHhcNMjUwNjA3MDMwMDI0WhcNMjUwNjA4MDMwMDI0WjAzMTEwLwYDVQQD
Eyg1YmI4ODc2YjI5MGE3YjJjZTBhOWI0MzY2NzViOTc1OTM0OWQ5ODc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxL/FTW3hLTznDqLVkZwMmFX1+imX
SIKFK0goOlRBbX96Fyy/xIx/5a9MSWyAr2m76cutR/T9w7+TNdY/lQjLJx4ovNfF
52oS+SYOkNs0KJ8wdTJS/ueiBxRp58Oui+xNVoSpN7w/M2bSvkO+NM4gx9f/onBP
n8FOncKtTBA9fS8IZjFy5VzYaaWoCnWaVMrXhuodi0vPPDn+NFRTW1OCjjfL/HUN
FD6Ip/QMk0y9oqO9sC27y6ibgD8UnnpRyG9eZenuq36qrNUqW5JZyidbOTwI9PZV
j44gfN63U++yWiaVTRfHzHOohhXkHhczVmMp11KsTrSY0j4SDFCh7EgyoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFu4h2spCnss4Km0Nmdbl1k0nZh5MB8GA1UdIwQY
MBaAFChY0vExcVy6883ZIGRZJPU1COBnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi83NWRiYzQtYWUyMi00OTcxLTllZjUt
YTNmMzU1YmVlZWRkLzEvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi83NWRiYzQtYWUyMi00OTcxLTllZjUtYTNmMzU1YmVlZWRk
LzEvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQBDjElio
IVIqbtxcIbYa8GBbAdPaWfZaKs3jKyCFfovlAQrybfZJ5wesrOnReKoN5n6hgfcP
LdO309RBzk1mJt8Q7n9x599E/Hc+7bU6DgKW3ZEWoSiIM+YsOpSgxdr0YxkfL6YA
0PG77VfJHVoRDhIn2E7Qs3yz3BhSkHyLgTl13lxjqhNLkcoE/a2XUsmT19o2cmwm
2yHTIs/Leq0kAPGp2R/2cl8tDm85Zi9JTouzbb/3wi//byWVfWARKQQM2iUks4El
OTJBs+Zz5cYaHfmH/rQyVCzWEUPOMeCPfA8fJgwSRrYSVDusOp1KuNntFzxb6xFn
/hZ9AwkzcIDI9g==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:07:07 2025 by rpki-client