Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: D5ygm9Gn0APiYaRJMsBKT3bbXbspqxzUc/3o44Zs1J0=
Subject key identifier: C7:C5:8E:B7:17:8B:66:56:AA:67:2C:B2:94:2D:87:58:48:F7:17:3F
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 01962C05B2B980E58996724C8E6C642557A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 14EA
Signing time: Sat 12 Apr 2025 22:01:33 +0000
Manifest this update: Sat 12 Apr 2025 22:01:33 +0000
Manifest next update: Sun 13 Apr 2025 22:01:33 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: QtjyI54zq6hvaazkppy9ADKzTObncoKwfPDtTD4ovbg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 18:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2c:05:b2:b9:80:e5:89:96:72:4c:8e:6c:64:25:57:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Apr 12 22:01:33 2025 GMT
Not After : Apr 13 22:01:33 2025 GMT
Subject: CN=c7c58eb7178b6656aa672cb2942d875848f7173f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e1:e5:3d:f7:4e:cf:81:e6:5a:20:f1:33:66:
52:8e:78:62:9d:03:41:82:53:fd:12:6d:de:53:9c:
43:c7:e9:e6:2a:4a:5f:0d:8b:7a:b4:e8:2a:5b:fa:
12:da:40:9c:61:e4:24:d7:a1:14:c7:e9:e3:07:55:
8d:ec:57:c6:d0:a7:23:8b:bf:7a:ce:f1:70:4a:02:
33:82:e3:6f:52:59:80:25:06:df:7e:33:1f:28:24:
59:bd:8d:f3:b9:70:23:5b:71:2e:5a:73:08:86:20:
9f:d4:fd:1b:aa:a1:14:06:60:ca:88:56:61:7c:f7:
6d:bd:d0:69:e8:b4:6d:1f:d4:41:f0:8e:5c:0c:bb:
33:57:95:44:59:28:bb:d6:a7:56:75:03:55:0b:60:
5a:c4:02:d2:0f:30:a7:a1:f5:77:55:a7:ef:ca:c9:
2e:de:3f:97:c5:0f:67:a9:aa:a6:8c:18:01:47:e3:
92:e3:b9:87:86:33:9c:cb:96:0d:f9:2c:19:aa:ad:
2d:08:79:24:db:ed:b7:00:7a:07:a6:40:b2:17:66:
f8:8f:22:2c:d6:4d:db:00:dc:3e:0c:c5:6c:ac:8b:
ad:79:14:11:92:0d:fa:19:13:79:ab:bf:c7:3c:d1:
f0:d3:92:1d:6d:ad:f7:17:ff:af:54:84:96:bd:3c:
ed:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C5:8E:B7:17:8B:66:56:AA:67:2C:B2:94:2D:87:58:48:F7:17:3F
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:1a:fe:da:a0:97:f5:c0:e1:2f:f5:96:33:1e:fa:4c:0d:3b:
28:9f:26:31:02:ad:f5:56:5c:7b:34:ef:17:08:99:05:b1:df:
7d:3d:91:99:f3:31:a3:b0:41:b2:94:40:0d:fd:39:9f:f0:69:
18:57:0e:5f:b9:14:72:31:30:8e:8e:18:87:ad:04:c5:ad:6d:
58:96:16:97:bc:6b:dc:e8:9e:db:a2:0e:9d:07:c3:6a:57:7c:
ee:cc:95:6d:9c:49:26:1a:e3:23:c8:50:54:04:16:b7:bc:a5:
7e:56:98:6a:e3:2d:af:6e:3f:b9:47:80:dc:9e:07:84:39:e7:
ef:75:af:21:15:01:bf:a1:31:25:c0:bb:4b:74:5d:ae:26:45:
cb:2a:64:1b:c8:39:02:10:4c:7a:e7:e5:72:e6:10:90:3a:15:
b0:fc:53:92:d7:33:93:d0:a6:82:6b:41:92:a2:d3:e9:63:a0:
fc:3a:41:ce:62:1d:7e:22:33:cb:e9:4a:d4:82:bf:a0:a7:6b:
54:a5:4f:2f:1d:10:12:8c:1b:ed:23:68:12:b9:b4:7d:d3:36:
aa:ba:bc:35:e9:06:cb:d8:fa:41:a5:15:4a:7a:75:82:5d:e5:
b4:81:6d:07:52:98:ac:e9:09:fa:59:46:a6:79:ac:b6:d7:42:
ad:84:f2:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYsBbK5gOWJlnJMjmxkJVegMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODQzZGI5NmU0ZjQ1OWI4N2RmOGMyNzkwNTdlZWQ2OWJi
OWI4NjIwHhcNMjUwNDEyMjIwMTMzWhcNMjUwNDEzMjIwMTMzWjAzMTEwLwYDVQQD
EyhjN2M1OGViNzE3OGI2NjU2YWE2NzJjYjI5NDJkODc1ODQ4ZjcxNzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhuHlPfdOz4HmWiDxM2ZSjnhinQNB
glP9Em3eU5xDx+nmKkpfDYt6tOgqW/oS2kCcYeQk16EUx+njB1WN7FfG0Kcji796
zvFwSgIzguNvUlmAJQbffjMfKCRZvY3zuXAjW3EuWnMIhiCf1P0bqqEUBmDKiFZh
fPdtvdBp6LRtH9RB8I5cDLszV5VEWSi71qdWdQNVC2BaxALSDzCnofV3Vafvysku
3j+XxQ9nqaqmjBgBR+OS47mHhjOcy5YN+SwZqq0tCHkk2+23AHoHpkCyF2b4jyIs
1k3bANw+DMVsrIuteRQRkg36GRN5q7/HPNHw05Idba33F/+vVISWvTztDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMfFjrcXi2ZWqmcsspQth1hI9xc/MB8GA1UdIwQY
MBaAFCiEPbluT0Wbh9+MJ5BX7tabubhiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9kM2E1NWMtMWY2Mi00Nzc5LTg2Yjkt
NjFiNTBmNmE2YzAyLzEvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9kM2E1NWMtMWY2Mi00Nzc5LTg2YjktNjFiNTBmNmE2YzAy
LzEvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACRr+2qCX
9cDhL/WWMx76TA07KJ8mMQKt9VZcezTvFwiZBbHffT2RmfMxo7BBspRADf05n/Bp
GFcOX7kUcjEwjo4Yh60Exa1tWJYWl7xr3Oie26IOnQfDald87syVbZxJJhrjI8hQ
VAQWt7ylflaYauMtr24/uUeA3J4HhDnn73WvIRUBv6ExJcC7S3RdriZFyypkG8g5
AhBMeuflcuYQkDoVsPxTktczk9CmgmtBkqLT6WOg/DpBzmIdfiIzy+lK1IK/oKdr
VKVPLx0QEowb7SNoErm0fdM2qrq8NekGy9j6QaUVSnp1gl3ltIFtB1KYrOkJ+llG
pnmsttdCrYTy8Q==
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:46:45 2025 by rpki-client