Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
File: KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft (raw, json)
Hash identifier: xMeJBEH/cRLvLiUV/BGNGsJ584+irKIS1Pk9byvRVDU=
Subject key identifier: 77:91:1C:28:43:CA:2C:99:0C:E0:2A:F2:CC:30:70:17:E8:BC:3F:5B
Authority key identifier: 2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A
Certificate issuer: /CN=2ad2fe6466d07094a4256da2cc847083c5006b1a
Certificate serial: 01962A16DC105D3D76EB9A8B6F37E9A72A53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
Manifest number: 11F1
Signing time: Sat 12 Apr 2025 13:01:03 +0000
Manifest this update: Sat 12 Apr 2025 13:01:03 +0000
Manifest next update: Sun 13 Apr 2025 13:01:03 +0000
Files and hashes: 1: KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl (hash: yzfsyWy1gt3z0gxK5U67gAzXTRb3e77AVUAqKCy/K1E=)
2: uSrOots_DMPy38Ek0_9yV10Tzw8.roa (hash: Ypv5LfASDsUldkz8kd27ybD8JIawSksjG/puUQcmBe4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 13:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:16:dc:10:5d:3d:76:eb:9a:8b:6f:37:e9:a7:2a:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ad2fe6466d07094a4256da2cc847083c5006b1a
Validity
Not Before: Apr 12 13:01:03 2025 GMT
Not After : Apr 13 13:01:03 2025 GMT
Subject: CN=77911c2843ca2c990ce02af2cc307017e8bc3f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bd:ff:f8:5c:ca:23:72:d8:78:8d:c5:ed:d0:
4b:c5:6c:25:11:97:cd:e1:43:f3:29:c5:ee:7d:53:
f0:d8:35:bc:88:7a:3d:04:10:56:41:2e:b6:d5:25:
0a:19:76:a8:49:23:1f:04:ca:8b:44:bc:04:e9:4f:
8a:4a:28:29:1b:4c:76:6d:d9:55:4d:ae:76:9f:20:
ae:3c:ab:a2:97:1a:1b:09:bb:0b:a1:4d:ec:37:ba:
f2:08:be:fd:6d:8a:fd:93:a1:60:eb:0f:0e:5e:1e:
2a:0b:b1:6a:a7:19:0d:8a:71:46:91:b1:25:78:03:
2c:9f:7b:29:20:9e:25:ed:23:82:56:07:4f:b5:26:
ae:ba:58:2a:aa:3d:1f:76:bf:9e:28:ee:23:58:76:
52:00:9a:4d:6e:c2:1e:d6:b3:07:d9:31:76:75:31:
a5:05:5a:2b:6d:dc:1f:d6:6b:5e:8f:3c:e4:d9:05:
de:d9:f0:c9:30:1e:ed:3c:99:90:56:0b:a3:65:1a:
c3:61:1e:77:3e:c4:4c:05:c8:0a:e6:d7:06:8e:0e:
8b:24:b5:47:4f:52:8c:f0:32:2f:5f:b9:25:66:b4:
6e:4d:4a:dd:28:db:e7:5b:af:67:d3:bd:ec:9e:72:
92:73:6b:d2:c8:ba:bb:26:6f:a2:18:96:80:29:2a:
a0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:91:1C:28:43:CA:2C:99:0C:E0:2A:F2:CC:30:70:17:E8:BC:3F:5B
X509v3 Authority Key Identifier:
keyid:2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:cc:86:c8:a3:46:31:d0:a2:8c:f8:94:ef:56:35:65:e7:39:
be:d0:5f:80:e5:fb:dc:49:a4:b3:0f:3c:66:53:1a:1c:44:52:
76:b4:5b:0a:46:60:da:d3:e0:67:60:a1:44:62:cc:23:21:f2:
d1:56:18:82:bb:c6:44:ca:c2:39:b0:f6:89:c7:79:1e:49:af:
46:cf:9e:4e:e3:a0:67:b8:49:71:b8:c2:f7:8b:75:e2:64:8c:
e0:1d:11:7e:68:77:d8:e5:f9:e3:ac:34:55:79:bc:38:59:f0:
72:20:97:56:50:f2:db:e1:1c:5a:1d:2d:5e:40:cd:e6:dd:a9:
6b:b0:1b:85:2b:3b:00:5e:d6:cb:03:a4:35:2b:bc:8b:2f:e3:
10:53:06:b9:68:18:7a:a7:53:75:24:b4:a0:dd:09:18:a3:46:
18:cc:ef:51:de:91:74:01:85:fe:86:2d:c5:df:fd:c3:21:ed:
15:0d:c1:b9:50:2d:e5:96:99:84:ed:b4:32:11:b0:15:57:01:
0d:c0:38:83:cd:e9:45:24:ca:c1:f1:c5:b4:ff:ac:7b:f4:29:
ed:ab:73:9e:49:dd:85:1b:8b:db:dd:65:f2:4f:f8:09:81:16:
81:a4:2b:0c:11:4e:96:f6:ad:d6:98:23:e6:3d:c9:f1:f7:13:
3a:f5:35:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYqFtwQXT1265qLbzfppypTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhZDJmZTY0NjZkMDcwOTRhNDI1NmRhMmNjODQ3MDgzYzUw
MDZiMWEwHhcNMjUwNDEyMTMwMTAzWhcNMjUwNDEzMTMwMTAzWjAzMTEwLwYDVQQD
Eyg3NzkxMWMyODQzY2EyYzk5MGNlMDJhZjJjYzMwNzAxN2U4YmMzZjViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx73/+FzKI3LYeI3F7dBLxWwlEZfN
4UPzKcXufVPw2DW8iHo9BBBWQS621SUKGXaoSSMfBMqLRLwE6U+KSigpG0x2bdlV
Ta52nyCuPKuilxobCbsLoU3sN7ryCL79bYr9k6Fg6w8OXh4qC7FqpxkNinFGkbEl
eAMsn3spIJ4l7SOCVgdPtSauulgqqj0fdr+eKO4jWHZSAJpNbsIe1rMH2TF2dTGl
BVorbdwf1mtejzzk2QXe2fDJMB7tPJmQVgujZRrDYR53PsRMBcgK5tcGjg6LJLVH
T1KM8DIvX7klZrRuTUrdKNvnW69n073snnKSc2vSyLq7Jm+iGJaAKSqgSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHeRHChDyiyZDOAq8swwcBfovD9bMB8GA1UdIwQY
MBaAFCrS/mRm0HCUpCVtosyEcIPFAGsaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84YTMxZjMtN2FjZi00N2I0LWI5N2It
ZmEzMWUyZGM2YWJiLzEvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84YTMxZjMtN2FjZi00N2I0LWI5N2ItZmEzMWUyZGM2YWJi
LzEvS3RMLVpHYlFjSlNrSlcyaXpJUndnOFVBYXhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA8yGyKNG
MdCijPiU71Y1Zec5vtBfgOX73Emksw88ZlMaHERSdrRbCkZg2tPgZ2ChRGLMIyHy
0VYYgrvGRMrCObD2icd5HkmvRs+eTuOgZ7hJcbjC94t14mSM4B0Rfmh32OX546w0
VXm8OFnwciCXVlDy2+EcWh0tXkDN5t2pa7AbhSs7AF7WywOkNSu8iy/jEFMGuWgY
eqdTdSS0oN0JGKNGGMzvUd6RdAGF/oYtxd/9wyHtFQ3BuVAt5ZaZhO20MhGwFVcB
DcA4g83pRSTKwfHFtP+se/Qp7atznkndhRuL291l8k/4CYEWgaQrDBFOlvat1pgj
5j3J8fcTOvU1lw==
-----END CERTIFICATE-----
Generated at Sat Apr 12 18:44:28 2025 by rpki-client