Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: UXKD2+hcHHiSXDi/XlP4wd74Spw7EbzR6PATxgMy0pI=
Subject key identifier: E2:55:2D:06:EB:98:77:F9:01:BF:32:39:C7:73:F3:6E:3A:0F:EC:85
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 01965425234FD292B327BF887516E706FFC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 01EE
Signing time: Sun 20 Apr 2025 17:00:42 +0000
Manifest this update: Sun 20 Apr 2025 17:00:42 +0000
Manifest next update: Mon 21 Apr 2025 17:00:42 +0000
Files and hashes: 1: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: XJhJSItIRweGSOc4XWKzw7DP4TnTGmri9Uk6mvYRu0Y=)
2: ffvaic9mo-Ox_7Jsdhd4jhWeyvM.roa (hash: nAU1XWM3o+xHaVb0+VtmU8Q3s90CIRxbMQo+s7S+UMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:23:4f:d2:92:b3:27:bf:88:75:16:e7:06:ff:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Apr 20 17:00:42 2025 GMT
Not After : Apr 21 17:00:42 2025 GMT
Subject: CN=e2552d06eb9877f901bf3239c773f36e3a0fec85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9b:41:66:14:24:3f:97:3b:bb:73:30:81:d3:
6b:47:d6:cf:7a:bb:d4:54:3a:2a:2d:19:27:bf:41:
c9:b4:c4:6b:ae:ef:5a:45:8c:50:8f:9b:eb:4c:72:
a8:d2:5e:e1:b0:39:16:28:77:c3:f1:ee:8f:f5:f8:
2b:d0:7e:42:1a:08:05:bf:a5:65:01:52:bc:c0:04:
c5:68:76:94:79:dc:11:79:c9:e3:80:d4:8b:23:aa:
53:65:65:35:82:56:56:c3:c8:b0:4b:79:80:92:cc:
76:3d:8b:aa:b9:3b:7f:9c:4f:26:13:c9:7a:29:32:
9b:49:23:5e:d2:4b:f4:95:08:7c:ac:8c:ea:c9:cf:
f1:04:57:3b:09:18:b7:9e:86:43:8e:12:cc:34:f3:
e9:13:e6:09:97:03:a3:55:93:86:5b:6a:40:4f:f2:
92:44:fc:43:0b:31:27:ff:3c:f5:72:e2:79:0e:f9:
fb:2d:70:99:92:6b:06:ef:c0:32:e1:b8:1f:89:60:
6d:ab:21:48:81:07:ad:eb:d1:d1:49:6a:72:b6:8f:
c1:9d:40:37:d0:73:a3:45:b6:7f:b2:69:2e:2f:e9:
3a:4d:44:03:36:b9:9e:f2:5e:30:5e:b5:67:6a:ae:
9a:d8:e3:c4:cb:75:9c:da:ac:96:c0:b4:2c:52:33:
8d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:55:2D:06:EB:98:77:F9:01:BF:32:39:C7:73:F3:6E:3A:0F:EC:85
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:36:cd:ac:94:a4:73:89:cc:e6:f8:b3:c6:e3:b2:54:8f:60:
86:02:0c:43:ab:0a:64:36:b0:49:6b:f6:ee:ac:b5:f4:ba:fa:
60:68:1f:7a:6b:1b:70:7c:91:18:71:89:00:35:95:1d:17:ec:
9a:8f:54:4c:00:85:65:de:f1:d3:05:f8:81:09:fd:48:77:e7:
d5:bd:6c:80:e9:ec:a9:24:67:26:71:aa:d0:3b:de:b9:ae:14:
27:76:a1:ce:df:42:81:7f:e2:65:dc:77:eb:36:1f:77:09:18:
18:95:7f:3e:4d:c4:e2:e2:5b:fa:b2:58:0f:00:ad:ed:c6:48:
f1:e8:ed:9e:1e:87:ce:f9:ba:0b:78:e1:bb:e5:b7:60:9f:cb:
51:73:bd:e9:30:17:c1:ff:65:5e:44:fb:cb:33:fd:49:53:e7:
84:2d:17:fd:6f:f7:c3:04:c1:e7:93:85:b1:6c:8f:4d:2e:82:
95:3e:55:2e:6a:79:50:ba:a8:b6:bb:ba:62:ca:af:71:dc:1e:
1d:9a:7b:b5:07:57:e7:31:bf:9d:af:32:e0:a5:97:90:a2:81:
e2:2e:2c:b6:9d:83:31:a6:17:0c:de:2e:c5:89:1d:12:9b:02:
0b:15:bf:4d:85:15:5d:60:0d:a3:51:bd:b8:e0:fe:e1:f6:9f:
f9:91:8a:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZUJSNP0pKzJ7+IdRbnBv/GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZjUyNDAyMzhiODI4ZjE2ZTYwMjI5ZTI2MzM1MDNmMDQ4
NDY1OTkwHhcNMjUwNDIwMTcwMDQyWhcNMjUwNDIxMTcwMDQyWjAzMTEwLwYDVQQD
EyhlMjU1MmQwNmViOTg3N2Y5MDFiZjMyMzljNzczZjM2ZTNhMGZlYzg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZtBZhQkP5c7u3MwgdNrR9bPervU
VDoqLRknv0HJtMRrru9aRYxQj5vrTHKo0l7hsDkWKHfD8e6P9fgr0H5CGggFv6Vl
AVK8wATFaHaUedwRecnjgNSLI6pTZWU1glZWw8iwS3mAksx2PYuquTt/nE8mE8l6
KTKbSSNe0kv0lQh8rIzqyc/xBFc7CRi3noZDjhLMNPPpE+YJlwOjVZOGW2pAT/KS
RPxDCzEn/zz1cuJ5Dvn7LXCZkmsG78Ay4bgfiWBtqyFIgQet69HRSWpyto/BnUA3
0HOjRbZ/smkuL+k6TUQDNrme8l4wXrVnaq6a2OPEy3Wc2qyWwLQsUjONdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOJVLQbrmHf5Ab8yOcdz8246D+yFMB8GA1UdIwQY
MBaAFCn1JAI4uCjxbmAiniYzUD8EhGWZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8wNjE0YTYtZDAxYy00ZmYyLWE5OTMt
NzI0NjQ1N2ZkMmIzLzEvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi8wNjE0YTYtZDAxYy00ZmYyLWE5OTMtNzI0NjQ1N2ZkMmIz
LzEvS2ZVa0FqaTRLUEZ1WUNLZUpqTlFQd1NFWlprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIjbNrJSk
c4nM5vizxuOyVI9ghgIMQ6sKZDawSWv27qy19Lr6YGgfemsbcHyRGHGJADWVHRfs
mo9UTACFZd7x0wX4gQn9SHfn1b1sgOnsqSRnJnGq0Dveua4UJ3ahzt9CgX/iZdx3
6zYfdwkYGJV/Pk3E4uJb+rJYDwCt7cZI8ejtnh6Hzvm6C3jhu+W3YJ/LUXO96TAX
wf9lXkT7yzP9SVPnhC0X/W/3wwTB55OFsWyPTS6ClT5VLmp5ULqotru6Ysqvcdwe
HZp7tQdX5zG/na8y4KWXkKKB4i4stp2DMaYXDN4uxYkdEpsCCxW/TYUVXWANo1G9
uOD+4faf+ZGKgw==
-----END CERTIFICATE-----
Generated at Mon Apr 21 02:48:36 2025 by rpki-client