Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json)
Hash identifier: Xx1RO+sHKwfmMD9gheO7SR5lwbdRc2wzL7tp4HC2E9U=
Subject key identifier: E0:95:37:16:18:D2:28:92:50:F7:3D:35:25:60:C3:67:D2:E4:75:73
Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Certificate serial: 0197481E1BAF4A303BBB506A2C378333732A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
Manifest number: 0365
Signing time: Sat 07 Jun 2025 02:00:22 +0000
Manifest this update: Sat 07 Jun 2025 02:00:22 +0000
Manifest next update: Sun 08 Jun 2025 02:00:22 +0000
Files and hashes: 1: 2Erepc7c7P1VRx_bLNiYu7weRzk.roa (hash: k2SMyfwtPMsgu8pAJX36t6HmVMk0LqM07DF6s7B27wo=)
2: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: 5u6brHPNojrGpZU2zx2sC2eEkeCT0fb7aLKLpJ41+1I=)
3: L_UMuGgef__KCIxYo719-pYnMY0.roa (hash: qQUOKChy81kdhWvOW3DW3K7T6hbp7d9kPXUCB0/Qv9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 02:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:1b:af:4a:30:3b:bb:50:6a:2c:37:83:33:73:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Validity
Not Before: Jun 7 02:00:22 2025 GMT
Not After : Jun 8 02:00:22 2025 GMT
Subject: CN=e095371618d2289250f73d352560c367d2e47573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:59:2c:ab:d7:a5:ce:59:77:a8:54:db:00:
5a:50:1a:1a:17:10:03:20:24:f6:a6:98:c1:53:94:
bf:07:ce:61:94:b8:1b:0a:c8:52:9c:f9:44:59:16:
2f:fd:14:79:74:a7:62:5c:40:86:5c:69:4f:e5:8c:
9a:f3:7c:aa:24:02:49:b6:d2:f6:8c:e6:b0:6c:5f:
aa:a9:51:b8:53:13:ba:35:1d:97:2a:0e:94:41:72:
db:b0:1d:38:5e:f8:f1:ea:49:14:78:71:83:79:86:
c8:6b:20:b5:09:32:24:36:1d:ea:4e:19:df:2a:60:
a6:19:a9:4e:39:10:b0:88:c3:1c:79:ce:7e:74:60:
ea:53:26:d3:6b:a0:75:4e:63:71:1f:80:2d:b1:a6:
6b:01:ea:80:f7:2b:66:a8:b7:eb:bf:68:89:33:7d:
ff:c0:72:e7:22:e1:4f:2e:40:f8:5a:e7:87:25:bc:
00:b8:cd:19:2f:c2:dc:4d:ff:23:eb:2c:ab:64:98:
46:13:87:13:b2:31:c9:6b:21:d5:ec:2f:50:12:98:
51:2d:d4:65:d1:e8:43:95:39:1e:a8:c1:dd:94:53:
b9:db:dc:c8:0c:28:c6:23:98:c2:7d:d2:b3:39:67:
67:3f:ac:96:ef:56:db:b4:23:31:4c:42:65:72:62:
e7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:95:37:16:18:D2:28:92:50:F7:3D:35:25:60:C3:67:D2:E4:75:73
X509v3 Authority Key Identifier:
keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:30:81:2b:cd:83:34:39:5b:49:7d:c8:33:27:ac:60:3a:85:
17:af:00:2b:33:3e:ae:a0:80:38:e4:9d:35:58:4e:d9:cf:1e:
4e:4d:ef:31:e4:39:37:6d:e0:98:24:b1:07:ed:bf:33:bb:ce:
65:52:9b:28:0d:24:98:16:57:de:1b:51:80:ac:1d:86:e2:27:
98:17:c4:ba:4d:15:af:19:6d:49:b4:4f:10:ac:fc:84:9d:11:
85:69:ae:ea:c1:db:97:3a:5d:f4:b1:d4:2f:95:a9:b7:86:c4:
c3:26:8e:ea:12:b9:c3:ec:79:9a:1b:88:dc:51:2d:2a:d2:86:
6f:87:fb:87:5d:f3:89:4d:e7:bb:a9:36:b6:cd:6c:7a:dc:31:
dd:49:fe:fe:98:7f:2b:68:17:80:3d:67:d7:03:6b:c4:7e:3f:
39:f2:cf:16:24:61:a2:45:9a:fe:19:8b:e4:35:92:55:49:a7:
58:92:11:40:01:ff:e4:e2:f7:ab:a9:93:fd:bf:b5:58:e7:41:
f5:e8:72:04:a2:39:6e:b5:66:08:01:c8:41:30:fc:ab:16:29:
0c:de:74:40:83:3e:29:92:89:ce:2b:5f:93:33:05:46:a8:c2:
82:4d:f2:12:a0:6a:f3:a1:b7:0d:f9:4e:2f:12:e5:49:6b:30:
49:4c:8e:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIHhuvSjA7u1BqLDeDM3MqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ODVjYzQzZDgwNmEyMWI2MzMzMDIxOWViNjM4YmIxYmE0
OWFlODAwHhcNMjUwNjA3MDIwMDIyWhcNMjUwNjA4MDIwMDIyWjAzMTEwLwYDVQQD
EyhlMDk1MzcxNjE4ZDIyODkyNTBmNzNkMzUyNTYwYzM2N2QyZTQ3NTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNhZLKvXpc5Zd6hU2wBaUBoaFxAD
ICT2ppjBU5S/B85hlLgbCshSnPlEWRYv/RR5dKdiXECGXGlP5Yya83yqJAJJttL2
jOawbF+qqVG4UxO6NR2XKg6UQXLbsB04Xvjx6kkUeHGDeYbIayC1CTIkNh3qThnf
KmCmGalOORCwiMMcec5+dGDqUybTa6B1TmNxH4AtsaZrAeqA9ytmqLfrv2iJM33/
wHLnIuFPLkD4WueHJbwAuM0ZL8LcTf8j6yyrZJhGE4cTsjHJayHV7C9QEphRLdRl
0ehDlTkeqMHdlFO529zIDCjGI5jCfdKzOWdnP6yW71bbtCMxTEJlcmLnnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOCVNxYY0iiSUPc9NSVgw2fS5HVzMB8GA1UdIwQY
MBaAFCmFzEPYBqIbYzMCGetji7G6Sa6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzIt
NGRmODg0MGVmYjE3LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzItNGRmODg0MGVmYjE3
LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkDCBK82D
NDlbSX3IMyesYDqFF68AKzM+rqCAOOSdNVhO2c8eTk3vMeQ5N23gmCSxB+2/M7vO
ZVKbKA0kmBZX3htRgKwdhuInmBfEuk0VrxltSbRPEKz8hJ0RhWmu6sHblzpd9LHU
L5Wpt4bEwyaO6hK5w+x5mhuI3FEtKtKGb4f7h13ziU3nu6k2ts1setwx3Un+/ph/
K2gXgD1n1wNrxH4/OfLPFiRhokWa/hmL5DWSVUmnWJIRQAH/5OL3q6mT/b+1WOdB
9ehyBKI5brVmCAHIQTD8qxYpDN50QIM+KZKJzitfkzMFRqjCgk3yEqBq86G3DflO
LxLlSWswSUyOgg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 12:34:04 2025 by rpki-client