Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: R9rIZ3xzrFliq4iERhQaGjjp10Lbf1nJy1myBmFsfXE=
Subject key identifier: 6E:16:E5:94:D2:CE:7E:12:2A:CC:8E:14:FB:DD:DA:41:B6:1D:9E:C9
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 0194BB2969161EA8F8199777FABF214FEF71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 1427
Signing time: Fri 31 Jan 2025 07:00:40 +0000
Manifest this update: Fri 31 Jan 2025 07:00:40 +0000
Manifest next update: Sat 01 Feb 2025 07:00:40 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: 3dUpG4Hhu7o3h//4jPdNKysMlcrYRFaAUK5cox4S1KM=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:69:16:1e:a8:f8:19:97:77:fa:bf:21:4f:ef:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Jan 31 07:00:40 2025 GMT
Not After : Feb 1 07:00:40 2025 GMT
Subject: CN=6e16e594d2ce7e122acc8e14fbddda41b61d9ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3e:71:df:bc:40:e0:44:08:77:ce:13:49:8e:
f0:f4:52:2a:57:fc:40:c9:74:58:d8:ed:90:88:11:
60:22:1b:30:cc:3b:51:87:2d:b2:ba:09:ce:7a:4e:
a7:45:d5:f8:03:95:86:7f:45:66:42:d0:68:af:53:
e5:4a:01:d5:c5:2e:87:e3:41:7e:7d:87:91:4d:2a:
24:cd:92:ee:08:22:18:d8:bd:01:a3:3f:19:65:11:
e7:c4:ef:a5:2c:45:41:e8:7c:6d:4e:d8:72:5c:75:
f7:3a:f4:2e:4a:4d:06:fc:2a:ae:a7:11:19:1f:21:
4b:94:2a:fd:22:fa:36:32:f3:40:f6:0b:e1:c6:8f:
54:7b:87:b2:8b:d1:5c:97:ba:08:4e:ff:3c:e0:d5:
c4:ef:55:ce:ef:43:bb:93:48:4c:44:f6:8f:3d:56:
ca:57:6b:fc:52:b5:0e:ed:e9:a9:67:69:1a:63:40:
28:57:e2:40:b6:61:4e:7a:24:00:dd:89:e4:ee:4b:
04:a2:2d:a6:2f:e6:d8:6f:43:dd:c0:4a:4f:a7:28:
b1:b6:ec:f3:91:b7:ee:4f:cf:ef:c7:4f:3b:28:00:
fc:62:ff:f2:6a:11:c3:19:ca:59:38:9b:92:12:99:
1d:e0:eb:5a:2d:1c:ea:4c:5b:05:13:f0:b5:95:f2:
81:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:16:E5:94:D2:CE:7E:12:2A:CC:8E:14:FB:DD:DA:41:B6:1D:9E:C9
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:ab:f7:fa:2f:af:16:b9:be:39:9c:a1:f7:7d:90:ff:30:f8:
ef:30:45:2a:14:ff:e5:61:78:2c:90:38:8f:70:fe:38:3a:34:
38:48:6b:4e:32:40:4b:83:94:96:38:4e:4a:6f:f6:2b:4c:42:
72:a6:7f:6a:fc:a4:f0:f9:17:68:6f:fb:dc:f4:21:84:d4:19:
f1:64:c2:f8:02:f0:a1:db:24:d9:0f:76:1c:7f:45:93:d5:44:
15:88:41:61:cc:7d:ac:c9:f0:c3:93:7f:61:6b:31:f6:55:e6:
85:8c:8a:a1:6a:82:96:f7:c3:31:6b:8d:2e:b4:b9:ab:c0:02:
e9:9f:8e:e0:28:7f:c6:9d:eb:56:83:e6:29:f5:8c:ff:84:51:
36:71:ff:41:58:4f:b4:83:e4:d0:07:b7:98:48:16:b8:66:16:
51:86:13:c9:2f:8b:02:e8:78:87:a1:0a:a4:7a:14:73:5a:04:
e5:ee:c1:bd:52:b8:5f:e5:69:d1:67:16:cd:e0:7b:c5:03:03:
4c:74:ef:36:c1:8b:42:8a:0c:9c:0d:0c:37:8b:0f:32:2a:e2:
04:ee:34:cf:79:e4:5a:40:23:0a:15:41:63:c4:d2:6b:c9:a6:
d3:e7:03:bc:0b:b3:f2:e9:5e:10:23:3f:04:89:50:41:75:b4:
b7:23:20:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KWkWHqj4GZd3+r8hT+9xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ODliNTg5MTIwZDM5ZWExNGZmNTM5NjNiZjIzMTU3ZDMy
NDk1ZWEwHhcNMjUwMTMxMDcwMDQwWhcNMjUwMjAxMDcwMDQwWjAzMTEwLwYDVQQD
Eyg2ZTE2ZTU5NGQyY2U3ZTEyMmFjYzhlMTRmYmRkZGE0MWI2MWQ5ZWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1j5x37xA4EQId84TSY7w9FIqV/xA
yXRY2O2QiBFgIhswzDtRhy2yugnOek6nRdX4A5WGf0VmQtBor1PlSgHVxS6H40F+
fYeRTSokzZLuCCIY2L0Boz8ZZRHnxO+lLEVB6HxtTthyXHX3OvQuSk0G/CqupxEZ
HyFLlCr9Ivo2MvNA9gvhxo9Ue4eyi9Fcl7oITv884NXE71XO70O7k0hMRPaPPVbK
V2v8UrUO7empZ2kaY0AoV+JAtmFOeiQA3Ynk7ksEoi2mL+bYb0PdwEpPpyixtuzz
kbfuT8/vx087KAD8Yv/yahHDGcpZOJuSEpkd4OtaLRzqTFsFE/C1lfKBMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG4W5ZTSzn4SKsyOFPvd2kG2HZ7JMB8GA1UdIwQY
MBaAFCmJtYkSDTnqFP9TljvyMVfTJJXqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9mMDgxNzAtOGQ5Mi00Y2ZhLWI3MzMt
ZmJkYmU1MTRkZjVhLzEvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9mMDgxNzAtOGQ5Mi00Y2ZhLWI3MzMtZmJkYmU1MTRkZjVh
LzEvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiKv3+i+v
Frm+OZyh932Q/zD47zBFKhT/5WF4LJA4j3D+ODo0OEhrTjJAS4OUljhOSm/2K0xC
cqZ/avyk8PkXaG/73PQhhNQZ8WTC+ALwodsk2Q92HH9Fk9VEFYhBYcx9rMnww5N/
YWsx9lXmhYyKoWqClvfDMWuNLrS5q8AC6Z+O4Ch/xp3rVoPmKfWM/4RRNnH/QVhP
tIPk0Ae3mEgWuGYWUYYTyS+LAuh4h6EKpHoUc1oE5e7BvVK4X+Vp0WcWzeB7xQMD
THTvNsGLQooMnA0MN4sPMiriBO40z3nkWkAjChVBY8TSa8mm0+cDvAuz8uleECM/
BIlQQXW0tyMgZA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:31:15 2025 by rpki-client on console-fra.rpki-client.org