Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: QiX251i/yklR/DTU11p4N99w8GxuU2MnydWFseRefz0=
Subject key identifier: 7A:56:97:20:24:60:52:BB:E6:6B:98:9B:47:F1:4F:9C:3F:AB:B3:B5
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 019653127F77086FB2B3AC0C9D79A725A20D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 1455
Signing time: Sun 20 Apr 2025 12:00:43 +0000
Manifest this update: Sun 20 Apr 2025 12:00:43 +0000
Manifest next update: Mon 21 Apr 2025 12:00:43 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: cf6qh2mfWTgy23YLdPc/AvA5NYIuywiJn6I6J+M7SE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:7f:77:08:6f:b2:b3:ac:0c:9d:79:a7:25:a2:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Apr 20 12:00:43 2025 GMT
Not After : Apr 21 12:00:43 2025 GMT
Subject: CN=7a569720246052bbe66b989b47f14f9c3fabb3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:28:a0:53:4e:9b:d4:bb:dd:79:77:a2:c8:1d:
0e:cc:c6:9b:78:b7:72:4a:96:4e:60:0a:02:43:64:
28:af:0c:9d:5a:b6:57:4f:21:66:a0:de:57:8a:42:
96:6b:93:9a:a1:66:be:e2:3e:6e:65:83:2f:98:28:
3d:e5:69:0f:49:a2:ce:f9:b5:73:b8:b7:cd:ff:ab:
5c:b8:d6:7e:49:23:f0:88:29:d6:db:ec:a6:18:eb:
00:06:08:43:f1:2a:16:5b:07:3a:3d:89:2a:44:21:
d8:a5:2b:49:1b:28:4b:53:af:a8:ac:77:bc:67:eb:
63:61:c6:f6:07:e0:20:fb:9c:ac:df:ed:38:71:34:
ce:4f:9e:91:04:1f:aa:ec:28:89:bc:c3:b0:2a:57:
e7:5f:04:f4:41:f7:ca:e5:7a:e3:5c:8f:c4:08:f2:
25:2d:1c:00:ae:00:45:19:b8:a4:d0:c3:1b:11:2c:
20:a8:bf:0a:f3:e2:9f:01:df:19:30:bc:01:0a:f3:
79:18:e1:13:6a:ea:4a:76:7c:77:61:ed:cf:28:9d:
83:73:92:01:0b:81:02:53:aa:01:23:86:97:1f:76:
d8:ef:63:5b:a6:e0:94:60:8f:9a:e4:58:52:5b:f3:
39:a2:d0:2c:41:e5:06:de:de:0f:5b:77:d1:a5:77:
d8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:56:97:20:24:60:52:BB:E6:6B:98:9B:47:F1:4F:9C:3F:AB:B3:B5
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:19:1c:8a:f8:e0:e8:7e:05:1f:84:df:55:19:1e:48:ae:95:
e5:82:0e:e6:5b:58:dc:89:64:48:0c:5b:b5:da:02:7d:36:f3:
d7:c3:99:61:40:4d:21:a8:d5:7c:c2:2c:f9:f4:da:1d:72:2a:
69:d7:96:99:38:1a:6a:8f:18:44:8d:23:96:0e:35:2b:b4:f1:
31:cd:83:a4:4e:b3:3f:7e:0c:a8:a2:35:d5:2b:60:fe:3e:5c:
d7:c5:a4:71:b7:d1:06:06:7c:ba:27:8a:4d:31:6a:e3:cf:84:
6f:ef:10:bb:b0:bd:39:9f:a6:67:2c:0f:4c:58:0c:5c:23:62:
1f:ad:fc:c8:f9:e1:e8:7b:b7:90:7b:c0:59:d3:14:86:39:aa:
cf:89:32:08:de:51:c1:39:44:2a:a6:e7:ad:b3:ed:ed:97:ad:
c4:e3:e9:d0:08:d2:f3:ec:bd:13:3f:50:5a:a0:ec:21:7f:e5:
f9:bd:20:b4:52:d0:8a:de:74:f3:d0:2d:81:7a:45:bd:0b:f5:
b1:4e:4b:b7:2a:fb:5b:24:b4:5f:1b:27:ef:8c:d9:af:16:70:
cf:d1:47:57:ec:5a:01:01:77:f2:e1:22:7f:a3:93:df:6a:6a:
63:0e:2c:36:49:a0:a8:6d:8a:a3:84:52:e1:49:2c:6f:bd:03:
73:6c:f1:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZTEn93CG+ys6wMnXmnJaINMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwY2NkOTEzYTk5YmFmZDg5M2UwN2JhOTY4YTY3NDM0ZTNk
ZjU0MjAwHhcNMjUwNDIwMTIwMDQzWhcNMjUwNDIxMTIwMDQzWjAzMTEwLwYDVQQD
Eyg3YTU2OTcyMDI0NjA1MmJiZTY2Yjk4OWI0N2YxNGY5YzNmYWJiM2I1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SigU06b1LvdeXeiyB0OzMabeLdy
SpZOYAoCQ2QorwydWrZXTyFmoN5XikKWa5OaoWa+4j5uZYMvmCg95WkPSaLO+bVz
uLfN/6tcuNZ+SSPwiCnW2+ymGOsABghD8SoWWwc6PYkqRCHYpStJGyhLU6+orHe8
Z+tjYcb2B+Ag+5ys3+04cTTOT56RBB+q7CiJvMOwKlfnXwT0QffK5XrjXI/ECPIl
LRwArgBFGbik0MMbESwgqL8K8+KfAd8ZMLwBCvN5GOETaupKdnx3Ye3PKJ2Dc5IB
C4ECU6oBI4aXH3bY72NbpuCUYI+a5FhSW/M5otAsQeUG3t4PW3fRpXfYhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHpWlyAkYFK75muYm0fxT5w/q7O1MB8GA1UdIwQY
MBaAFJDM2ROpm6/Yk+B7qWimdDTj31QgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWIt
ZjZhNTEzZGUyZmVhLzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWItZjZhNTEzZGUyZmVh
LzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFxkcivjg
6H4FH4TfVRkeSK6V5YIO5ltY3IlkSAxbtdoCfTbz18OZYUBNIajVfMIs+fTaHXIq
adeWmTgaao8YRI0jlg41K7TxMc2DpE6zP34MqKI11Stg/j5c18WkcbfRBgZ8uieK
TTFq48+Eb+8Qu7C9OZ+mZywPTFgMXCNiH638yPnh6Hu3kHvAWdMUhjmqz4kyCN5R
wTlEKqbnrbPt7ZetxOPp0AjS8+y9Ez9QWqDsIX/l+b0gtFLQit5089AtgXpFvQv1
sU5Ltyr7WyS0Xxsn74zZrxZwz9FHV+xaAQF38uEif6OT32pqYw4sNkmgqG2Ko4RS
4Uksb70Dc2zxyw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 15:25:30 2025 by rpki-client