Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
File: kR2gx6mUBcRrqthMudk-g0WZyOE.mft (raw, json)
Hash identifier: qKlJquoVkwGBRTPMonhBwwxYXINcxMqLyIeg/ny1DAw=
Subject key identifier: 5E:C5:C2:5C:5E:D8:DC:1B:28:2A:E2:56:C3:57:2A:B2:F3:66:2E:51
Authority key identifier: 91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1
Certificate issuer: /CN=911da0c7a99405c46baad84cb9d93e834599c8e1
Certificate serial: 01963EE72F370184221996E11A829F2CB64A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
Manifest number: 14F4
Signing time: Wed 16 Apr 2025 14:01:00 +0000
Manifest this update: Wed 16 Apr 2025 14:01:00 +0000
Manifest next update: Thu 17 Apr 2025 14:01:00 +0000
Files and hashes: 1: EpBy5lEF1BDLVRWSQ7QWoN5zbUU.roa (hash: 1y3tSjFaZERbPwiKrhlP5/eJ5GlotVuhhvMAWtoaIrk=)
2: kR2gx6mUBcRrqthMudk-g0WZyOE.crl (hash: zWN+ulenmQMq8koZ/RJFfpFDsw7x3muZLLYSnJZe0ak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:e7:2f:37:01:84:22:19:96:e1:1a:82:9f:2c:b6:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=911da0c7a99405c46baad84cb9d93e834599c8e1
Validity
Not Before: Apr 16 14:01:00 2025 GMT
Not After : Apr 17 14:01:00 2025 GMT
Subject: CN=5ec5c25c5ed8dc1b282ae256c3572ab2f3662e51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f9:5e:ea:fc:e2:08:95:d5:15:42:7e:64:dc:
23:df:52:bd:a5:52:7e:58:75:90:48:f6:ca:0b:de:
d0:0f:bb:78:76:12:b9:f6:48:a1:a7:49:69:f2:d3:
78:06:5e:a9:65:15:fa:cd:9e:0d:6f:47:e1:66:91:
7e:69:e0:49:78:74:0c:3f:52:76:a0:f8:1d:f1:71:
74:39:22:2a:8b:cf:62:78:93:67:b8:3c:ce:f2:cb:
4b:cd:36:e8:17:da:26:d8:fc:a2:f0:84:b2:fd:54:
e1:ca:ba:23:76:69:db:f2:54:10:0e:7c:be:d5:b7:
47:e6:c9:d8:7d:5d:21:38:0d:76:88:2f:05:59:a8:
50:b6:2e:65:4f:a5:ac:9f:52:2e:e6:96:e5:c6:57:
b5:f4:15:6e:45:68:80:5c:89:dd:06:77:ab:42:b0:
71:d2:a9:ac:3b:7c:42:9c:eb:03:12:6d:b6:9b:47:
17:c0:e0:78:5f:c7:62:c5:80:42:ac:e3:44:58:44:
e8:db:72:16:6c:7c:90:56:a3:74:be:7f:d6:73:62:
b1:f1:93:fa:95:ac:99:9d:2b:98:54:e3:fe:92:aa:
d2:36:e9:d2:ec:77:3d:22:4e:e8:0b:66:48:e0:28:
53:b4:84:eb:dd:f0:d3:0e:b3:76:a4:bf:bc:46:94:
6e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C5:C2:5C:5E:D8:DC:1B:28:2A:E2:56:C3:57:2A:B2:F3:66:2E:51
X509v3 Authority Key Identifier:
keyid:91:1D:A0:C7:A9:94:05:C4:6B:AA:D8:4C:B9:D9:3E:83:45:99:C8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kR2gx6mUBcRrqthMudk-g0WZyOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/2c7ac3-eedf-455b-9e94-472f02450ec3/1/kR2gx6mUBcRrqthMudk-g0WZyOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:ea:12:41:08:27:f1:ef:41:67:51:55:75:70:eb:7c:66:88:
c2:0c:7e:2e:fd:52:00:a5:ba:b4:7a:46:ce:f1:fa:08:3a:b0:
66:50:24:ca:ca:19:7b:87:b2:8e:66:13:3e:6d:d0:53:38:9d:
7d:2a:a5:ba:f4:a0:85:e1:1f:f2:7f:55:37:90:22:7c:a3:2c:
56:20:d2:c9:23:59:29:15:94:d2:e6:44:35:42:d4:c5:6c:af:
8d:28:a3:a6:80:ee:4a:f3:bd:41:f7:a9:2c:d0:d4:6d:36:d4:
7a:f7:eb:e3:fd:c0:4f:88:29:b8:a0:32:18:f0:5b:e6:f1:fa:
09:36:f5:33:ee:bd:03:82:25:a6:e5:a9:59:07:54:0c:14:89:
4f:37:aa:f9:1f:66:78:51:f8:ad:7e:24:5d:f3:f9:55:f6:78:
d1:0e:a4:0d:ce:d6:95:d7:7d:a9:47:bc:50:91:e8:5a:5b:af:
c7:0a:6f:34:fb:50:54:be:4e:b4:f4:a7:c0:bc:3f:86:86:79:
3b:a2:d5:83:34:04:a1:e6:11:e9:0d:40:fb:ed:57:70:33:e9:
b0:fe:10:16:5a:0e:d5:f9:84:5c:de:da:5c:e5:5b:38:98:cb:
8f:2a:14:b6:d6:9b:0a:3f:5c:ca:37:35:43:95:ea:bf:2c:e9:
fc:a8:bf:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY+5y83AYQiGZbhGoKfLLZKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMWRhMGM3YTk5NDA1YzQ2YmFhZDg0Y2I5ZDkzZTgzNDU5
OWM4ZTEwHhcNMjUwNDE2MTQwMTAwWhcNMjUwNDE3MTQwMTAwWjAzMTEwLwYDVQQD
Eyg1ZWM1YzI1YzVlZDhkYzFiMjgyYWUyNTZjMzU3MmFiMmYzNjYyZTUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ple6vziCJXVFUJ+ZNwj31K9pVJ+
WHWQSPbKC97QD7t4dhK59kihp0lp8tN4Bl6pZRX6zZ4Nb0fhZpF+aeBJeHQMP1J2
oPgd8XF0OSIqi89ieJNnuDzO8stLzTboF9om2Pyi8ISy/VThyrojdmnb8lQQDny+
1bdH5snYfV0hOA12iC8FWahQti5lT6Wsn1Iu5pblxle19BVuRWiAXIndBnerQrBx
0qmsO3xCnOsDEm22m0cXwOB4X8dixYBCrONEWETo23IWbHyQVqN0vn/Wc2Kx8ZP6
layZnSuYVOP+kqrSNunS7Hc9Ik7oC2ZI4ChTtITr3fDTDrN2pL+8RpRunwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF7Fwlxe2NwbKCriVsNXKrLzZi5RMB8GA1UdIwQY
MBaAFJEdoMeplAXEa6rYTLnZPoNFmcjhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1IyZ3g2bVVCY1JycXRoTXVkay1nMFdaeU9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8yYzdhYzMtZWVkZi00NTViLTllOTQt
NDcyZjAyNDUwZWMzLzEva1IyZ3g2bVVCY1JycXRoTXVkay1nMFdaeU9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8yYzdhYzMtZWVkZi00NTViLTllOTQtNDcyZjAyNDUwZWMz
LzEva1IyZ3g2bVVCY1JycXRoTXVkay1nMFdaeU9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAieoSQQgn
8e9BZ1FVdXDrfGaIwgx+Lv1SAKW6tHpGzvH6CDqwZlAkysoZe4eyjmYTPm3QUzid
fSqluvSgheEf8n9VN5AifKMsViDSySNZKRWU0uZENULUxWyvjSijpoDuSvO9Qfep
LNDUbTbUevfr4/3AT4gpuKAyGPBb5vH6CTb1M+69A4IlpuWpWQdUDBSJTzeq+R9m
eFH4rX4kXfP5VfZ40Q6kDc7Wldd9qUe8UJHoWluvxwpvNPtQVL5OtPSnwLw/hoZ5
O6LVgzQEoeYR6Q1A++1XcDPpsP4QFloO1fmEXN7aXOVbOJjLjyoUttabCj9cyjc1
Q5Xqvyzp/Ki/7g==
-----END CERTIFICATE-----
Generated at Thu Apr 17 01:15:15 2025 by rpki-client