Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: LjwzZQyr6zF5hg2R0dRDbiErJLXI3CSlZobByh6kAGE=
Subject key identifier: 7C:FB:93:3C:0E:DF:1D:F5:F2:83:A2:C8:CE:FF:2B:C6:26:51:77:35
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 01974E5806219F0D59292D839EF5A644F594
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 07:01:20 +0000
Manifest this update: Sun 08 Jun 2025 07:01:20 +0000
Manifest next update: Mon 09 Jun 2025 07:01:20 +0000
Files and hashes: 1: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: d3zrAFVR7umO7NjP4ukDjMqTPfVqJNbOVPlNHKSY/fY=)
2: r4bjJ2cCOInhIlG1f9hIdTm3g6M.roa (hash: aZToxg96BEY8Qvj4uVJxCXKyOgQmRt2zg6OKjNY/eQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:58:06:21:9f:0d:59:29:2d:83:9e:f5:a6:44:f5:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Jun 8 07:01:20 2025 GMT
Not After : Jun 9 07:01:20 2025 GMT
Subject: CN=7cfb933c0edf1df5f283a2c8ceff2bc626517735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:67:f6:c6:31:23:53:b2:0a:34:9b:37:f9:73:
6d:bd:1f:fb:94:47:b3:4e:07:33:f1:c1:47:3d:49:
18:03:c5:f2:b5:0a:7f:08:e7:75:2d:7b:1a:a0:d6:
a3:88:76:b6:dc:41:94:f1:22:a6:ce:ec:5f:91:1b:
28:21:0b:7c:8b:96:1d:81:9f:d5:86:29:a9:9b:5f:
61:c5:f1:e3:73:bd:9c:4e:75:d0:0d:83:c6:ce:b6:
90:26:49:b4:1a:47:5f:68:8a:72:ca:71:5a:c4:8c:
fc:9a:1d:f9:c1:ff:e5:6a:37:35:20:17:79:63:fe:
50:9c:da:ea:69:bd:8c:f6:73:f1:08:f5:ba:b2:d2:
f0:61:91:85:5c:f4:2f:22:f7:5a:82:04:0a:ab:54:
28:de:a9:70:e7:52:e0:f6:db:d4:ec:0a:79:db:dc:
df:51:bd:bf:1e:59:b4:37:61:64:ac:ec:30:1a:cb:
3f:58:bf:34:26:07:be:52:ef:d3:4d:1c:05:12:9d:
77:f6:be:c9:53:bc:72:bc:80:68:2f:73:cb:1f:3b:
aa:03:58:c2:ee:07:1a:ac:e4:26:55:7e:54:c1:fb:
e0:e8:79:38:33:4f:0a:3d:86:f6:43:2b:14:19:64:
ab:01:d7:eb:74:9a:82:14:2a:4e:36:81:51:62:1d:
f0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FB:93:3C:0E:DF:1D:F5:F2:83:A2:C8:CE:FF:2B:C6:26:51:77:35
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:4d:2e:69:08:cc:15:2e:39:8f:55:09:d8:3c:20:fe:bd:ba:
96:0f:29:dd:70:c5:fa:03:b4:c8:74:6e:91:a3:52:a6:e1:ac:
a2:b9:83:7b:11:e5:fc:b0:94:9d:61:20:6f:46:7b:4a:54:cc:
26:3a:50:84:ef:52:eb:88:fc:af:ab:e2:d6:73:ec:37:31:55:
f9:2f:39:74:59:d8:82:91:47:83:9d:15:a0:0f:51:37:a1:8d:
36:59:d9:4a:c2:4e:4f:16:df:fe:be:b5:dc:58:42:63:ce:d2:
ae:85:54:90:c0:de:2a:cd:e9:66:43:1e:ee:88:30:13:26:9d:
23:bf:e8:13:6a:52:1d:89:c8:4a:b5:77:76:50:46:f3:d6:f5:
d8:c6:2e:2c:60:22:7a:ba:5f:6d:ef:71:82:96:86:01:cc:ef:
b6:15:68:e1:c8:9f:1c:d7:c4:e7:d4:ac:8d:51:a7:5d:82:90:
6e:fb:7e:c3:b3:40:82:63:76:e8:29:2a:df:fc:37:53:0b:b4:
0a:90:b0:2b:78:b1:2a:9c:32:15:a9:15:59:40:fa:73:92:b5:
67:83:7c:ff:1b:8f:a3:ac:d8:b7:ff:11:13:d2:7e:01:f3:e8:
45:9f:6f:8d:ae:26:7c:6f:be:d6:ec:ee:84:fa:68:ec:d4:96:
72:a7:d5:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOWAYhnw1ZKS2DnvWmRPWUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyOTZkODRlNjRkNTVlYzgxMjQ3NmZiODA2ZjBmZTc1YTA4
YmZiMmIwHhcNMjUwNjA4MDcwMTIwWhcNMjUwNjA5MDcwMTIwWjAzMTEwLwYDVQQD
Eyg3Y2ZiOTMzYzBlZGYxZGY1ZjI4M2EyYzhjZWZmMmJjNjI2NTE3NzM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWf2xjEjU7IKNJs3+XNtvR/7lEez
Tgcz8cFHPUkYA8XytQp/COd1LXsaoNajiHa23EGU8SKmzuxfkRsoIQt8i5YdgZ/V
himpm19hxfHjc72cTnXQDYPGzraQJkm0GkdfaIpyynFaxIz8mh35wf/lajc1IBd5
Y/5QnNrqab2M9nPxCPW6stLwYZGFXPQvIvdaggQKq1Qo3qlw51Lg9tvU7Ap529zf
Ub2/Hlm0N2FkrOwwGss/WL80Jge+Uu/TTRwFEp139r7JU7xyvIBoL3PLHzuqA1jC
7gcarOQmVX5Uwfvg6Hk4M08KPYb2QysUGWSrAdfrdJqCFCpONoFRYh3wQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHz7kzwO3x318oOiyM7/K8YmUXc1MB8GA1UdIwQY
MBaAFJKW2E5k1V7IEkdvuAbw/nWgi/srMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEt
ZjM0OTI4NDUwOWI3LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEtZjM0OTI4NDUwOWI3
LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHE0uaQjM
FS45j1UJ2Dwg/r26lg8p3XDF+gO0yHRukaNSpuGsormDexHl/LCUnWEgb0Z7SlTM
JjpQhO9S64j8r6vi1nPsNzFV+S85dFnYgpFHg50VoA9RN6GNNlnZSsJOTxbf/r61
3FhCY87SroVUkMDeKs3pZkMe7ogwEyadI7/oE2pSHYnISrV3dlBG89b12MYuLGAi
erpfbe9xgpaGAczvthVo4cifHNfE59SsjVGnXYKQbvt+w7NAgmN26Ckq3/w3Uwu0
CpCwK3ixKpwyFakVWUD6c5K1Z4N8/xuPo6zYt/8RE9J+AfPoRZ9vja4mfG++1uzu
hPpo7NSWcqfV/Q==
-----END CERTIFICATE-----
Generated at Sun Jun 8 13:39:24 2025 by rpki-client