Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
File: KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft (raw, json)
Hash identifier: n2AhoBUhYWHWErhBazKjCMNQ9NfGRwUU+/Ax8rxPqPQ=
Subject key identifier: A2:D3:6B:26:D4:04:B1:93:67:0D:B1:59:F0:18:B0:1C:82:FE:6B:88
Authority key identifier: 2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A
Certificate issuer: /CN=2ad2fe6466d07094a4256da2cc847083c5006b1a
Certificate serial: 01974DB2991A858FA24287160D4C5CD7DA98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
Manifest number: 1288
Signing time: Sun 08 Jun 2025 04:00:39 +0000
Manifest this update: Sun 08 Jun 2025 04:00:39 +0000
Manifest next update: Mon 09 Jun 2025 04:00:39 +0000
Files and hashes: 1: KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl (hash: V7nz56S14lcaifi7j886ipa9/Z5fJXBtJlBcGD1tmeY=)
2: uSrOots_DMPy38Ek0_9yV10Tzw8.roa (hash: Ypv5LfASDsUldkz8kd27ybD8JIawSksjG/puUQcmBe4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:b2:99:1a:85:8f:a2:42:87:16:0d:4c:5c:d7:da:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ad2fe6466d07094a4256da2cc847083c5006b1a
Validity
Not Before: Jun 8 04:00:39 2025 GMT
Not After : Jun 9 04:00:39 2025 GMT
Subject: CN=a2d36b26d404b193670db159f018b01c82fe6b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a5:a5:1d:22:2c:db:2f:00:9f:26:3b:f9:d2:
20:c5:d5:dc:a0:d6:0e:03:5a:98:e0:d2:1b:ac:7a:
b7:7b:8d:a2:b3:e2:de:ed:b8:1f:46:3d:48:e2:c6:
17:78:0e:be:52:3b:58:a1:80:06:86:19:29:94:3f:
f6:bf:86:fd:02:20:83:50:96:c4:b9:df:19:6f:57:
79:c9:b3:84:46:72:7e:ba:83:a0:46:a5:5b:fc:09:
84:e6:6b:cb:25:d5:a9:8e:f1:f4:90:f5:a6:6d:0a:
f6:cb:2b:7a:b7:32:52:0f:cf:b0:f9:87:66:f3:8d:
b2:78:2b:f1:07:a5:64:b6:e0:fb:27:fc:34:b2:3a:
c3:d0:ca:7d:7f:2c:3e:fb:8d:46:b0:14:8b:0f:57:
6a:ec:a0:7a:ff:ed:34:92:0f:e2:e0:60:71:e3:7f:
1b:23:16:63:b3:30:b3:c1:e7:c3:bb:d8:b4:55:f3:
69:31:fa:29:4b:0b:24:c2:38:30:ea:2a:f2:af:3a:
04:ba:2b:b8:ab:ce:69:5e:fb:35:c0:1b:7f:08:79:
6c:61:af:c8:ff:aa:4b:34:a9:99:11:e8:17:23:91:
f4:0f:ad:a6:0c:b1:a4:4c:5f:f5:ae:76:8e:08:72:
cd:84:6a:28:66:f0:ba:59:64:a3:ae:ce:9b:b2:9a:
e1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D3:6B:26:D4:04:B1:93:67:0D:B1:59:F0:18:B0:1C:82:FE:6B:88
X509v3 Authority Key Identifier:
keyid:2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:ce:d9:48:3c:8b:bf:a2:3d:f7:42:f3:d2:64:05:36:27:2a:
40:00:30:08:a8:bb:3b:ff:6c:42:a5:4e:a4:09:18:0a:97:3a:
55:49:6b:b8:07:56:5e:2a:4a:dd:78:cf:f6:ce:55:d5:40:a8:
b4:cc:08:e1:7f:b7:10:0c:1a:b5:a7:47:48:4c:c0:11:5e:b2:
e3:34:84:01:4c:91:63:bf:e8:ba:bc:55:64:e2:87:94:7e:94:
06:fb:6d:6b:36:44:f7:57:a3:0b:4d:61:e7:95:16:3a:67:b6:
84:a1:c7:c3:29:2c:97:7b:a3:35:0d:4b:0a:16:41:cc:d7:71:
c0:71:09:a3:bd:04:e5:4f:bd:a1:9b:f2:50:31:03:22:26:a3:
a6:e9:48:4b:c9:9c:0e:8f:ee:5f:9b:93:ae:82:3b:75:0b:54:
87:bb:08:40:75:c9:06:db:00:f3:c3:34:ce:5d:14:0c:b8:07:
91:43:81:ce:73:c1:ba:13:56:45:7a:58:82:7b:1c:d9:34:0f:
cf:af:fb:4c:6f:35:50:c5:f8:97:97:38:d7:1e:ba:5d:b7:5b:
d4:83:e0:7f:2b:fe:c9:68:52:d8:9d:35:cb:0e:05:aa:69:38:
7b:4a:bb:b8:d5:ef:57:25:e8:f4:34:27:77:c7:43:68:b4:cf:
30:50:84:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNspkahY+iQocWDUxc19qYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhZDJmZTY0NjZkMDcwOTRhNDI1NmRhMmNjODQ3MDgzYzUw
MDZiMWEwHhcNMjUwNjA4MDQwMDM5WhcNMjUwNjA5MDQwMDM5WjAzMTEwLwYDVQQD
EyhhMmQzNmIyNmQ0MDRiMTkzNjcwZGIxNTlmMDE4YjAxYzgyZmU2Yjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3KWlHSIs2y8AnyY7+dIgxdXcoNYO
A1qY4NIbrHq3e42is+Le7bgfRj1I4sYXeA6+UjtYoYAGhhkplD/2v4b9AiCDUJbE
ud8Zb1d5ybOERnJ+uoOgRqVb/AmE5mvLJdWpjvH0kPWmbQr2yyt6tzJSD8+w+Ydm
842yeCvxB6VktuD7J/w0sjrD0Mp9fyw++41GsBSLD1dq7KB6/+00kg/i4GBx438b
IxZjszCzwefDu9i0VfNpMfopSwskwjgw6iryrzoEuiu4q85pXvs1wBt/CHlsYa/I
/6pLNKmZEegXI5H0D62mDLGkTF/1rnaOCHLNhGooZvC6WWSjrs6bsprhJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKLTaybUBLGTZw2xWfAYsByC/muIMB8GA1UdIwQY
MBaAFCrS/mRm0HCUpCVtosyEcIPFAGsaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84YTMxZjMtN2FjZi00N2I0LWI5N2It
ZmEzMWUyZGM2YWJiLzEvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84YTMxZjMtN2FjZi00N2I0LWI5N2ItZmEzMWUyZGM2YWJi
LzEvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAc7ZSDyL
v6I990Lz0mQFNicqQAAwCKi7O/9sQqVOpAkYCpc6VUlruAdWXipK3XjP9s5V1UCo
tMwI4X+3EAwatadHSEzAEV6y4zSEAUyRY7/ourxVZOKHlH6UBvttazZE91ejC01h
55UWOme2hKHHwyksl3ujNQ1LChZBzNdxwHEJo70E5U+9oZvyUDEDIiajpulIS8mc
Do/uX5uTroI7dQtUh7sIQHXJBtsA88M0zl0UDLgHkUOBznPBuhNWRXpYgnsc2TQP
z6/7TG81UMX4l5c41x66Xbdb1IPgfyv+yWhS2J01yw4Fqmk4e0q7uNXvVyXo9DQn
d8dDaLTPMFCEsA==
-----END CERTIFICATE-----
Generated at Sun Jun 8 07:32:19 2025 by rpki-client