Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: F06pBa96mk9W3mOBQxIUN0lm1Z0kSkAjNz0PXTCH6UM=
Subject key identifier: 59:74:C4:72:7A:AB:8B:04:5F:10:12:48:7F:7F:44:5E:B1:F2:A8:9A
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 01964D7EED79AD079303C9BB245840F972C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 10:01:26 +0000
Manifest this update: Sat 19 Apr 2025 10:01:26 +0000
Manifest next update: Sun 20 Apr 2025 10:01:26 +0000
Files and hashes: 1: K-YJm4wOeLJG8aJ7KI41BLWAM-4.roa (hash: +ltmXAJQfzovJoKfgWj4x9gqmeiriedONmDgSBwWFc4=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: /24+9NhK8ecVbNrAfY4sGTUajKTlS6w1vtMYNShg48I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:ed:79:ad:07:93:03:c9:bb:24:58:40:f9:72:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Apr 19 10:01:26 2025 GMT
Not After : Apr 20 10:01:26 2025 GMT
Subject: CN=5974c4727aab8b045f1012487f7f445eb1f2a89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b6:d5:e3:f9:8e:d2:1d:6d:f2:11:99:39:a1:
72:57:ff:2e:4a:e1:e7:b1:00:cb:40:b3:90:13:c4:
30:ca:79:92:e8:ef:7a:2a:16:e3:a7:5a:db:e9:59:
4f:46:a9:80:e9:62:94:c2:6a:70:bb:d3:eb:05:d7:
e5:8c:d9:81:b4:fa:40:57:09:a8:ad:2d:bd:21:98:
69:68:88:a8:5e:12:5a:fe:55:8b:a7:a4:ca:e0:32:
d9:8b:57:b8:24:83:71:b0:e9:d2:4a:9c:c5:f6:2c:
a4:cb:a1:f6:76:db:cd:05:52:4d:66:ac:ca:5e:10:
b8:10:d8:12:c3:d3:d9:a8:35:16:1d:79:8e:33:e7:
35:31:dd:94:ea:fa:1d:b4:08:ed:c9:0f:7f:7d:67:
d7:ef:2c:0f:57:2b:ad:59:dc:83:2c:d2:cc:41:2b:
7d:a3:c3:a0:a0:81:5b:f5:55:51:96:13:97:8a:79:
ce:8e:8a:85:3c:4d:f7:50:88:b3:63:13:5d:99:8b:
a8:c3:5d:ea:56:2d:b4:5f:5e:41:a7:a1:4f:71:db:
8c:2c:17:10:4b:05:0b:5f:20:69:e0:b2:a5:70:11:
13:a1:08:5d:90:9e:1e:6d:9b:45:cf:8f:05:ca:98:
be:5a:a8:f1:3a:66:6c:22:70:2c:7e:f6:12:11:49:
4d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:74:C4:72:7A:AB:8B:04:5F:10:12:48:7F:7F:44:5E:B1:F2:A8:9A
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:68:39:22:50:86:1d:8b:af:15:43:5e:b2:b0:b2:2e:7b:9b:
8c:9f:05:2b:da:3f:45:3b:75:4f:1c:dd:a1:3f:d9:d9:65:46:
54:0e:0c:ad:fa:f4:41:38:c2:4b:f8:b8:56:d7:a5:3b:1c:98:
f0:1b:06:5d:9a:e9:fa:37:7e:a0:a8:55:d8:0c:be:d3:d0:24:
30:cb:de:ba:2d:6c:e1:27:3e:91:dc:b4:3b:3c:d1:21:92:4d:
35:79:2f:3d:47:26:dc:f3:49:e5:08:65:15:91:a3:cb:5e:a0:
ba:08:38:0a:44:cd:d4:31:b7:fe:c3:66:8a:d7:b6:54:2c:aa:
e0:78:d4:91:b5:5d:69:11:d3:30:61:c6:b4:b7:7b:9f:5a:a6:
4b:20:18:cb:87:08:2b:a3:09:c6:04:8e:06:be:e1:0f:53:e3:
67:52:75:23:3a:ec:f1:df:a1:75:a0:0f:d2:a8:75:68:9e:fb:
09:95:53:d8:de:09:10:89:c1:30:eb:af:90:b9:1e:fa:24:2b:
38:e8:74:c3:96:ed:6e:03:25:7c:6f:7f:71:24:c7:4f:b7:d0:
79:a9:66:86:a9:36:3b:75:e6:e5:02:81:cf:9b:e1:61:97:24:
b8:ab:53:0f:c3:19:48:39:f8:da:0f:2a:30:0e:bf:5d:7c:26:
ad:5e:80:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZNfu15rQeTA8m7JFhA+XLGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNzg4ZjRlYmI3NDFjMGMzNjlhMGZkMzA1OTRjZDAxMDFk
Yzc0NzYwHhcNMjUwNDE5MTAwMTI2WhcNMjUwNDIwMTAwMTI2WjAzMTEwLwYDVQQD
Eyg1OTc0YzQ3MjdhYWI4YjA0NWYxMDEyNDg3ZjdmNDQ1ZWIxZjJhODlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8bbV4/mO0h1t8hGZOaFyV/8uSuHn
sQDLQLOQE8QwynmS6O96Khbjp1rb6VlPRqmA6WKUwmpwu9PrBdfljNmBtPpAVwmo
rS29IZhpaIioXhJa/lWLp6TK4DLZi1e4JINxsOnSSpzF9iyky6H2dtvNBVJNZqzK
XhC4ENgSw9PZqDUWHXmOM+c1Md2U6vodtAjtyQ9/fWfX7ywPVyutWdyDLNLMQSt9
o8OgoIFb9VVRlhOXinnOjoqFPE33UIizYxNdmYuow13qVi20X15Bp6FPcduMLBcQ
SwULXyBp4LKlcBEToQhdkJ4ebZtFz48Fypi+WqjxOmZsInAsfvYSEUlN7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFl0xHJ6q4sEXxASSH9/RF6x8qiaMB8GA1UdIwQY
MBaAFJJ4j067dBwMNpoP0wWUzQEB3HR2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgt
ZGJmYWMwMGZiMGVmLzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgtZGJmYWMwMGZiMGVm
LzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMmg5IlCG
HYuvFUNesrCyLnubjJ8FK9o/RTt1TxzdoT/Z2WVGVA4Mrfr0QTjCS/i4VtelOxyY
8BsGXZrp+jd+oKhV2Ay+09AkMMveui1s4Sc+kdy0OzzRIZJNNXkvPUcm3PNJ5Qhl
FZGjy16gugg4CkTN1DG3/sNmite2VCyq4HjUkbVdaRHTMGHGtLd7n1qmSyAYy4cI
K6MJxgSOBr7hD1PjZ1J1Izrs8d+hdaAP0qh1aJ77CZVT2N4JEInBMOuvkLke+iQr
OOh0w5btbgMlfG9/cSTHT7fQealmhqk2O3Xm5QKBz5vhYZckuKtTD8MZSDn42g8q
MA6/XXwmrV6AYw==
-----END CERTIFICATE-----
Generated at Sat Apr 19 14:00:20 2025 by rpki-client