Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
File: KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft (raw, json)
Hash identifier: jjEFFK1JtKABsjwD+bfyCSbfiCxr1H8sqXs4GcR+DLo=
Subject key identifier: 77:0B:25:5D:BB:5E:B2:D8:9F:49:D5:14:1F:1D:E0:6D:BC:58:76:78
Authority key identifier: 2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
Certificate issuer: /CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Certificate serial: 019649A2147593837E81B889B1000D163E2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
Manifest number: 0A13
Signing time: Fri 18 Apr 2025 16:01:20 +0000
Manifest this update: Fri 18 Apr 2025 16:01:20 +0000
Manifest next update: Sat 19 Apr 2025 16:01:20 +0000
Files and hashes: 1: HDOhzz0jBa_Gp9AJUMy27D9Cjlg.roa (hash: lm71x5ibbc8ZUL32IG9cJWwnD/vjqa8xr80jq2AaleE=)
2: KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl (hash: 9zxcGg2b9DGh3o49r0qZwC+EVJycFhvi38YQhDLGUlE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:49:a2:14:75:93:83:7e:81:b8:89:b1:00:0d:16:3e:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a21b1abe787e25464391fad61d00e3f376b98cf
Validity
Not Before: Apr 18 16:01:20 2025 GMT
Not After : Apr 19 16:01:20 2025 GMT
Subject: CN=770b255dbb5eb2d89f49d5141f1de06dbc587678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:70:ce:0e:15:70:95:92:a6:2a:42:37:16:e4:
81:b6:d0:a4:39:64:75:f0:dd:66:f3:e7:51:18:ad:
53:64:82:68:48:ab:82:5f:1d:0d:d3:40:f3:78:64:
89:f2:6e:88:01:2f:f4:93:da:47:fc:1c:bb:7d:ef:
46:16:64:82:71:9e:0a:0f:cb:bc:24:ef:c6:12:c8:
23:9d:3e:75:2c:82:a4:b7:2a:bb:3c:b4:66:84:9a:
e5:34:3d:e4:be:b1:4b:c2:1a:d9:95:85:b6:ce:c6:
bd:dc:8a:ca:f5:36:d0:6d:be:25:a9:f1:ce:c1:ba:
a8:9a:c1:6c:ea:14:21:af:07:42:2e:30:b7:4c:95:
6c:43:58:b5:79:84:2a:dc:4e:8b:b0:85:cb:28:de:
71:4c:45:df:9a:ba:17:20:ca:b5:bb:dd:e4:20:01:
32:e7:a3:44:b9:35:5c:19:bc:09:b3:bb:1f:07:c1:
92:04:57:8d:4a:34:e2:82:1c:a3:e4:6b:37:af:c0:
03:b5:a9:8f:0d:94:30:08:63:8b:14:f2:8a:f7:51:
af:5a:56:f4:2f:cb:06:4a:6d:56:49:61:61:ed:a6:
01:0e:73:49:d4:26:99:29:ef:d3:ce:b6:74:76:f5:
1a:5e:48:ad:07:43:fc:97:eb:c3:65:d5:f7:c8:30:
03:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0B:25:5D:BB:5E:B2:D8:9F:49:D5:14:1F:1D:E0:6D:BC:58:76:78
X509v3 Authority Key Identifier:
keyid:2A:21:B1:AB:E7:87:E2:54:64:39:1F:AD:61:D0:0E:3F:37:6B:98:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiGxq-eH4lRkOR-tYdAOPzdrmM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/ed0654-724c-4e90-81ff-99f5cb7a3ca5/1/KiGxq-eH4lRkOR-tYdAOPzdrmM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:49:07:a8:7e:97:b9:77:76:83:0b:e5:6f:ae:90:db:b1:2e:
96:94:3d:62:80:4e:d2:9a:87:0c:2a:14:67:01:b2:74:15:a2:
cb:cc:f9:ec:20:59:5d:f2:58:85:4b:49:0f:8c:e0:68:f8:7a:
3b:a4:9e:9a:cf:3f:9a:c0:02:e8:fa:7c:fb:cf:94:53:c2:6a:
8e:d2:25:2e:4c:40:69:86:02:19:23:97:9b:59:98:2b:12:a8:
9d:40:7e:25:0c:58:9e:aa:52:41:50:1f:b9:1d:5e:cd:d1:47:
54:fd:67:c8:0b:5a:7c:54:d9:3c:83:3b:34:ef:ec:09:95:c0:
5c:a4:5a:b1:17:89:26:83:ea:ca:c9:a6:a8:0a:9b:4b:04:cb:
32:a7:56:02:8a:b3:80:ad:34:cc:c4:ed:0e:05:00:31:f9:26:
be:e8:a1:2b:70:6e:de:73:89:19:0b:0a:d2:43:82:c8:95:5e:
ed:f8:18:0b:d0:80:84:0b:ce:7b:91:31:f2:33:23:2d:9d:87:
17:82:52:36:7c:f2:b2:fd:ca:04:49:8a:5f:86:e3:dd:3f:80:
60:bf:af:2b:b0:b5:3b:17:7a:d7:93:59:e0:ed:4a:c7:94:80:
27:27:78:d8:73:8b:d8:2c:f2:2f:d5:b5:57:1e:00:48:b1:50:
9e:43:38:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZJohR1k4N+gbiJsQANFj4tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMjFiMWFiZTc4N2UyNTQ2NDM5MWZhZDYxZDAwZTNmMzc2
Yjk4Y2YwHhcNMjUwNDE4MTYwMTIwWhcNMjUwNDE5MTYwMTIwWjAzMTEwLwYDVQQD
Eyg3NzBiMjU1ZGJiNWViMmQ4OWY0OWQ1MTQxZjFkZTA2ZGJjNTg3Njc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3DODhVwlZKmKkI3FuSBttCkOWR1
8N1m8+dRGK1TZIJoSKuCXx0N00DzeGSJ8m6IAS/0k9pH/By7fe9GFmSCcZ4KD8u8
JO/GEsgjnT51LIKktyq7PLRmhJrlND3kvrFLwhrZlYW2zsa93IrK9TbQbb4lqfHO
wbqomsFs6hQhrwdCLjC3TJVsQ1i1eYQq3E6LsIXLKN5xTEXfmroXIMq1u93kIAEy
56NEuTVcGbwJs7sfB8GSBFeNSjTighyj5Gs3r8ADtamPDZQwCGOLFPKK91GvWlb0
L8sGSm1WSWFh7aYBDnNJ1CaZKe/TzrZ0dvUaXkitB0P8l+vDZdX3yDADmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHcLJV27XrLYn0nVFB8d4G28WHZ4MB8GA1UdIwQY
MBaAFCohsavnh+JUZDkfrWHQDj83a5jPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZDA2NTQtNzI0Yy00ZTkwLTgxZmYt
OTlmNWNiN2EzY2E1LzEvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9lZDA2NTQtNzI0Yy00ZTkwLTgxZmYtOTlmNWNiN2EzY2E1
LzEvS2lHeHEtZUg0bFJrT1ItdFlkQU9QemRybU04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfUkHqH6X
uXd2gwvlb66Q27EulpQ9YoBO0pqHDCoUZwGydBWiy8z57CBZXfJYhUtJD4zgaPh6
O6Sems8/msAC6Pp8+8+UU8JqjtIlLkxAaYYCGSOXm1mYKxKonUB+JQxYnqpSQVAf
uR1ezdFHVP1nyAtafFTZPIM7NO/sCZXAXKRasReJJoPqysmmqAqbSwTLMqdWAoqz
gK00zMTtDgUAMfkmvuihK3Bu3nOJGQsK0kOCyJVe7fgYC9CAhAvOe5Ex8jMjLZ2H
F4JSNnzysv3KBEmKX4bj3T+AYL+vK7C1Oxd615NZ4O1Kx5SAJyd42HOL2CzyL9W1
Vx4ASLFQnkM4dg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:59:40 2025 by rpki-client