Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: TtYS9FKwG0T0/m541rHG0/DTl14hsDUmG1+pgIzthfg=
Subject key identifier: D6:82:3F:BD:C3:2C:93:FC:F0:8F:F1:28:47:CF:8D:A6:82:0C:AB:26
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 01965D5F597D2DB77ED947287BD2095A84B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 12:00:51 +0000
Manifest this update: Tue 22 Apr 2025 12:00:51 +0000
Manifest next update: Wed 23 Apr 2025 12:00:51 +0000
Files and hashes: 1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: rWCXCaMKCqvFfMGBmPrNZNOp+yKbedB86oAww/YrJZE=)
2: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:5f:59:7d:2d:b7:7e:d9:47:28:7b:d2:09:5a:84:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Apr 22 12:00:51 2025 GMT
Not After : Apr 23 12:00:51 2025 GMT
Subject: CN=d6823fbdc32c93fcf08ff12847cf8da6820cab26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e3:cc:04:6a:bd:d9:2b:34:f6:00:1f:33:6e:
28:eb:17:93:d4:c6:f2:48:68:3d:e0:68:be:39:7c:
37:2e:4a:ab:5c:c5:2a:e3:0b:91:09:35:13:5b:aa:
85:84:e0:65:7c:c7:65:ee:00:ac:0c:c4:0c:25:9e:
e2:0f:18:83:5c:00:6a:42:5f:fe:1d:97:bc:4c:78:
bf:f3:16:87:dd:d1:2d:65:6f:fb:fc:ef:e3:d8:56:
6a:2c:14:51:1c:31:f0:1c:47:f0:9f:64:34:0f:57:
fc:0b:15:06:e4:fc:54:5b:fc:42:e4:f0:c7:98:1e:
55:80:bb:c7:7e:96:84:7e:57:60:e0:2a:14:43:a4:
a1:93:6e:85:bb:25:aa:fd:74:39:72:43:8f:9a:47:
4c:50:b3:84:55:0f:58:d4:f3:ff:7a:a9:e9:b5:00:
2a:e2:ff:11:b9:fd:dc:22:14:ee:89:1e:c5:01:47:
c2:e3:e4:09:17:c7:8b:c7:a7:31:f8:39:67:bf:2c:
b3:a6:b9:96:c5:9c:91:2d:09:ad:ff:79:73:0f:78:
64:10:91:e4:5f:65:a6:a2:c5:87:e5:1c:b0:37:59:
62:e0:07:a5:88:73:77:a0:be:ab:4c:8d:0a:47:1b:
e4:c0:73:43:50:51:4c:c2:f7:da:5f:df:c8:b1:3e:
67:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:82:3F:BD:C3:2C:93:FC:F0:8F:F1:28:47:CF:8D:A6:82:0C:AB:26
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:77:ef:c1:27:79:24:65:f4:e2:da:b8:e5:0e:f2:8e:e2:73:
d7:84:e2:65:63:e4:ae:6b:c9:48:bc:86:97:59:04:d6:f5:ef:
62:43:74:1c:00:8b:5a:cb:c2:71:a4:0a:97:01:94:39:d1:a3:
0e:a0:6e:77:1d:d8:d0:b8:29:cb:d8:c7:36:2b:35:92:9a:da:
0e:fe:16:70:94:6c:8a:fd:0c:b7:44:5d:ea:4b:54:d3:e8:10:
a7:ed:ce:d7:c4:65:bd:d0:7c:19:b8:cf:c4:4d:e7:7d:ba:16:
51:97:9f:24:c8:b5:66:89:50:6c:f7:fa:ca:7c:38:c5:ed:6b:
a2:63:83:13:c4:18:65:e1:98:35:c7:19:13:1b:98:2a:9e:57:
dc:71:30:45:bb:be:87:39:61:5b:0e:86:f9:8f:e1:a0:5a:fe:
c8:8a:12:d7:b4:f8:95:12:10:39:9b:12:38:8f:88:17:e6:32:
cc:95:92:a1:79:05:b2:1b:d3:0c:c7:e5:f9:c6:91:99:63:11:
55:f1:78:ad:73:49:12:cc:17:31:e3:8d:90:c2:80:36:47:e2:
be:6e:df:33:80:12:2b:44:21:06:dd:d7:db:06:31:11:2c:48:
f6:15:f8:19:c0:34:d7:84:34:1f:47:16:21:ea:14:ed:6f:18:
7c:3e:ed:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZdX1l9Lbd+2Ucoe9IJWoSyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjUwNDIyMTIwMDUxWhcNMjUwNDIzMTIwMDUxWjAzMTEwLwYDVQQD
EyhkNjgyM2ZiZGMzMmM5M2ZjZjA4ZmYxMjg0N2NmOGRhNjgyMGNhYjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuPMBGq92Ss09gAfM24o6xeT1Mby
SGg94Gi+OXw3LkqrXMUq4wuRCTUTW6qFhOBlfMdl7gCsDMQMJZ7iDxiDXABqQl/+
HZe8THi/8xaH3dEtZW/7/O/j2FZqLBRRHDHwHEfwn2Q0D1f8CxUG5PxUW/xC5PDH
mB5VgLvHfpaEfldg4CoUQ6Shk26FuyWq/XQ5ckOPmkdMULOEVQ9Y1PP/eqnptQAq
4v8Ruf3cIhTuiR7FAUfC4+QJF8eLx6cx+DlnvyyzprmWxZyRLQmt/3lzD3hkEJHk
X2WmosWH5RywN1li4AeliHN3oL6rTI0KRxvkwHNDUFFMwvfaX9/IsT5nxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNaCP73DLJP88I/xKEfPjaaCDKsmMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdnfvwSd5
JGX04tq45Q7yjuJz14TiZWPkrmvJSLyGl1kE1vXvYkN0HACLWsvCcaQKlwGUOdGj
DqBudx3Y0Lgpy9jHNis1kpraDv4WcJRsiv0Mt0Rd6ktU0+gQp+3O18RlvdB8GbjP
xE3nfboWUZefJMi1ZolQbPf6ynw4xe1romODE8QYZeGYNccZExuYKp5X3HEwRbu+
hzlhWw6G+Y/hoFr+yIoS17T4lRIQOZsSOI+IF+YyzJWSoXkFshvTDMfl+caRmWMR
VfF4rXNJEswXMeONkMKANkfivm7fM4ASK0QhBt3X2wYxESxI9hX4GcA014Q0H0cW
IeoU7W8YfD7tMQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 14:25:15 2025 by rpki-client