Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json)
Hash identifier: iOgxsJUuUC42WWZuAwXvWwa72qLd0sisNJmLYbTTSmY=
Subject key identifier: 96:94:D0:62:B6:AC:9B:53:9D:42:C1:95:71:EA:AE:23:DE:BE:23:7F
Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292
Certificate serial: 019749D63602449C9BDDFE0ACB7C8ED81A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
Manifest number: 0EFA
Signing time: Sat 07 Jun 2025 10:01:04 +0000
Manifest this update: Sat 07 Jun 2025 10:01:04 +0000
Manifest next update: Sun 08 Jun 2025 10:01:04 +0000
Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: wVzmuyzopW0NQLxnY0evVB7wChPCxeh2FrpYMtgIL84=)
2: jp-8lbUOvN6sUPZsTL-dh7MOVR8.roa (hash: /kMpoM5rzLA4Q5DdnfjuYEV0in2H+0XYtN+u4LENV/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:36:02:44:9c:9b:dd:fe:0a:cb:7c:8e:d8:1a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292
Validity
Not Before: Jun 7 10:01:04 2025 GMT
Not After : Jun 8 10:01:04 2025 GMT
Subject: CN=9694d062b6ac9b539d42c19571eaae23debe237f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:65:ed:3d:59:9f:77:a2:a0:10:30:e4:d9:69:
e8:7f:10:e4:76:bc:80:38:98:90:51:f3:ad:4b:53:
b5:09:2c:57:97:31:2c:2a:83:93:7a:f8:30:7d:e7:
9f:89:b6:c1:b0:18:5f:3e:66:be:91:98:39:d0:60:
07:c8:03:c8:aa:92:a8:87:bc:40:3e:3f:db:ea:49:
da:d2:73:9a:bb:8d:4c:dc:d4:33:13:b8:84:82:a1:
8c:b3:e5:53:bd:0e:7d:ba:a5:d2:7c:cf:08:e3:6c:
f5:f6:55:15:7a:db:90:80:16:33:2a:c8:fb:ce:5b:
34:fa:78:9c:0a:c6:db:a4:83:c7:db:12:3e:99:68:
22:19:c3:65:38:7e:b2:03:03:b3:32:e9:f6:e3:fd:
09:e3:9f:b6:75:0d:a7:24:9d:4d:b5:49:77:99:82:
4f:a7:42:db:7b:ec:40:50:1c:d3:1f:08:1b:f4:85:
b8:cc:e9:07:0d:46:da:4c:e9:9d:b2:47:c3:a4:8d:
15:1a:f0:3c:d9:21:0a:74:5a:3f:03:ba:84:30:a7:
31:1f:ef:cc:4e:c2:7c:33:8e:74:40:90:ca:b3:60:
82:0f:32:3a:33:c7:92:47:d8:33:bd:25:c6:6f:00:
61:da:d1:60:93:09:ee:0f:d3:05:ba:e7:6f:e5:dc:
44:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:94:D0:62:B6:AC:9B:53:9D:42:C1:95:71:EA:AE:23:DE:BE:23:7F
X509v3 Authority Key Identifier:
keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:31:05:ba:0c:24:66:69:1d:88:79:ad:eb:bc:db:54:7e:87:
3a:50:dc:1b:8f:55:a9:64:1d:fc:b0:dd:98:37:15:9e:11:54:
38:5b:ba:23:f5:c8:57:40:50:46:0e:be:da:30:9f:ac:d9:ad:
0f:b5:3a:d4:c3:f5:5d:fb:9a:09:84:cd:f4:14:c0:bd:42:a0:
b7:ca:83:47:f0:5f:04:3c:d1:92:47:3a:2c:a9:9b:f2:5b:e5:
be:b7:cb:56:a0:c8:0d:dd:0c:bc:4b:60:8c:d0:85:e1:35:81:
38:f7:c6:ed:38:1e:63:db:b3:12:26:af:ae:6f:86:9a:67:1e:
9e:fe:1d:d6:32:98:ca:9a:81:43:f2:cb:a6:a6:11:ba:b8:08:
b5:d3:b8:52:f9:c2:98:5f:df:23:15:66:04:c8:8e:64:51:96:
70:09:e7:49:43:c0:9a:88:9c:b9:4d:f6:5a:c2:5a:89:cb:39:
1f:4e:ad:fd:5b:b2:22:93:26:ac:a1:4d:cc:28:89:fd:ad:86:
d9:5d:7c:04:6f:b6:53:40:5f:88:50:c0:bc:5b:15:b6:07:18:
dd:bc:95:14:7c:a7:ff:01:42:3a:cd:f5:a0:4f:13:4b:f9:62:
d5:c1:cf:9a:8c:5c:fe:78:1f:cd:ea:4a:09:be:9b:bf:96:88:
f9:33:1b:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJ1jYCRJyb3f4Ky3yO2Bo6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YmViZDQ2NTg2MTg0NzNlZDRjODM3NjdjNTFkZThlMjMz
YzMyOTIwHhcNMjUwNjA3MTAwMTA0WhcNMjUwNjA4MTAwMTA0WjAzMTEwLwYDVQQD
Eyg5Njk0ZDA2MmI2YWM5YjUzOWQ0MmMxOTU3MWVhYWUyM2RlYmUyMzdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mXtPVmfd6KgEDDk2WnofxDkdryA
OJiQUfOtS1O1CSxXlzEsKoOTevgwfeefibbBsBhfPma+kZg50GAHyAPIqpKoh7xA
Pj/b6kna0nOau41M3NQzE7iEgqGMs+VTvQ59uqXSfM8I42z19lUVetuQgBYzKsj7
zls0+nicCsbbpIPH2xI+mWgiGcNlOH6yAwOzMun24/0J45+2dQ2nJJ1NtUl3mYJP
p0Lbe+xAUBzTHwgb9IW4zOkHDUbaTOmdskfDpI0VGvA82SEKdFo/A7qEMKcxH+/M
TsJ8M450QJDKs2CCDzI6M8eSR9gzvSXGbwBh2tFgkwnuD9MFuudv5dxEswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJaU0GK2rJtTnULBlXHqriPeviN/MB8GA1UdIwQY
MBaAFCi+vUZYYYRz7UyDdnxR3o4jPDKSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9hYTk3NWMtYjliNS00NjUxLWJjNWIt
YmE3OTU2YjBmMmRkLzEvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy9hYTk3NWMtYjliNS00NjUxLWJjNWItYmE3OTU2YjBmMmRk
LzEvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAizEFugwk
ZmkdiHmt67zbVH6HOlDcG49VqWQd/LDdmDcVnhFUOFu6I/XIV0BQRg6+2jCfrNmt
D7U61MP1XfuaCYTN9BTAvUKgt8qDR/BfBDzRkkc6LKmb8lvlvrfLVqDIDd0MvEtg
jNCF4TWBOPfG7TgeY9uzEiavrm+Gmmcenv4d1jKYypqBQ/LLpqYRurgItdO4UvnC
mF/fIxVmBMiOZFGWcAnnSUPAmoicuU32WsJaics5H06t/VuyIpMmrKFNzCiJ/a2G
2V18BG+2U0BfiFDAvFsVtgcY3byVFHyn/wFCOs31oE8TS/li1cHPmoxc/ngfzepK
Cb6bv5aI+TMbmw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:01:13 2025 by rpki-client