Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: X7IAyU9EBQecNAIQ8Bo0C33Pe93xMCBZ8jJ8M+OLj4s=
Subject key identifier: B7:92:B4:5E:C3:79:7B:F6:09:03:59:B1:D6:A5:FF:9E:CA:47:2A:29
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 01964BFD8A1CA2A8300F072FCDAE15E90CCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 14F8
Signing time: Sat 19 Apr 2025 03:00:29 +0000
Manifest this update: Sat 19 Apr 2025 03:00:29 +0000
Manifest next update: Sun 20 Apr 2025 03:00:29 +0000
Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=)
2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: lT3qXJvWuFxcse8rt6Po2Q1YHwxCNxvwUALm4x1eIOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:8a:1c:a2:a8:30:0f:07:2f:cd:ae:15:e9:0c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Apr 19 03:00:29 2025 GMT
Not After : Apr 20 03:00:29 2025 GMT
Subject: CN=b792b45ec3797bf6090359b1d6a5ff9eca472a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:45:2d:2b:5f:95:91:6a:ca:ae:59:b3:40:7b:
f3:df:cc:e6:fc:b6:51:4a:29:b4:39:90:53:be:56:
db:d7:a6:10:f6:d2:a7:8f:97:4e:70:31:ac:6c:a2:
76:44:61:33:29:d2:47:0b:24:29:d7:63:70:f2:d2:
d1:39:c5:bb:08:0d:12:bb:8b:92:85:11:23:67:f6:
24:55:a0:dd:3a:c7:87:78:4e:1f:44:86:41:07:d2:
12:ca:78:b2:a1:f7:a1:a6:09:e6:06:53:ca:70:45:
2b:27:5c:b2:b0:c7:21:93:84:17:5a:6a:19:e8:c3:
4b:02:a5:80:d9:74:b8:5c:51:92:ed:b2:e0:77:d3:
c6:47:0c:b1:73:c9:b2:9c:8f:f5:73:78:e3:25:63:
88:6a:21:e0:b1:84:43:da:de:94:4d:31:30:95:1c:
e3:9f:3e:cd:57:91:b2:89:51:6b:99:61:14:1d:77:
af:91:d2:01:6f:40:fd:57:12:da:b5:19:9d:78:47:
8f:32:24:92:b1:73:c0:39:3c:b7:c9:5a:27:ba:26:
82:a4:45:96:14:bf:76:93:48:05:2e:04:02:a7:26:
54:f6:89:6d:9d:99:83:e2:30:46:25:75:01:53:08:
50:6a:77:57:4f:f3:f9:a8:64:a7:bc:82:d2:b0:42:
a7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:92:B4:5E:C3:79:7B:F6:09:03:59:B1:D6:A5:FF:9E:CA:47:2A:29
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:f3:ed:ac:31:b2:c4:47:4a:ac:a6:9a:4b:44:02:e5:89:0f:
db:4d:95:5f:3c:28:a6:ff:a9:b8:3a:f8:d6:94:09:a3:c7:2f:
82:34:51:28:05:a9:cb:5d:cd:a3:d5:47:d9:f0:59:c2:ac:3b:
c6:66:94:00:71:59:06:5d:45:0d:89:90:e2:ae:1c:16:00:d9:
c7:58:2d:12:ed:37:fe:46:f5:fc:f7:6b:c8:a0:aa:09:69:66:
3c:59:b5:bf:7a:3a:77:3d:d8:54:43:36:d6:29:c7:ba:10:d6:
76:30:a5:b5:5c:f2:a7:db:95:68:52:d3:37:e2:8a:6b:5e:38:
c6:64:27:b2:9c:c9:f3:79:15:a3:18:b7:4a:43:a2:00:5c:70:
75:d9:4c:6a:98:f1:3e:55:53:70:2b:a4:bb:59:f6:b1:9a:8d:
10:55:89:57:bd:4b:28:39:93:79:89:b7:ae:6e:52:30:b3:24:
ab:0e:e6:d9:35:4e:50:c7:a4:99:84:20:70:aa:2a:85:d9:f4:
53:55:79:b7:fa:13:2d:0c:9c:79:7e:7e:54:10:ff:fe:df:b3:
d3:3b:d2:35:16:39:ad:43:e0:96:a4:d8:3e:f5:11:f1:6e:39:
5e:a2:a6:52:76:17:70:b9:99:1a:50:8a:5f:bb:34:cc:53:3d:
05:fb:54:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZL/YocoqgwDwcvza4V6QzNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYjNhM2EwZDY2MmQxNGRhODQwNGJkMjFkYzQ4OWU2Mzk0
NTYyNGUwHhcNMjUwNDE5MDMwMDI5WhcNMjUwNDIwMDMwMDI5WjAzMTEwLwYDVQQD
EyhiNzkyYjQ1ZWMzNzk3YmY2MDkwMzU5YjFkNmE1ZmY5ZWNhNDcyYTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4UUtK1+VkWrKrlmzQHvz38zm/LZR
Sim0OZBTvlbb16YQ9tKnj5dOcDGsbKJ2RGEzKdJHCyQp12Nw8tLROcW7CA0Su4uS
hREjZ/YkVaDdOseHeE4fRIZBB9ISyniyofehpgnmBlPKcEUrJ1yysMchk4QXWmoZ
6MNLAqWA2XS4XFGS7bLgd9PGRwyxc8mynI/1c3jjJWOIaiHgsYRD2t6UTTEwlRzj
nz7NV5GyiVFrmWEUHXevkdIBb0D9VxLatRmdeEePMiSSsXPAOTy3yVonuiaCpEWW
FL92k0gFLgQCpyZU9oltnZmD4jBGJXUBUwhQandXT/P5qGSnvILSsEKntwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLeStF7DeXv2CQNZsdal/57KRyopMB8GA1UdIwQY
MBaAFJCzo6DWYtFNqEBL0h3EieY5RWJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQt
Mjg4Y2ZkMWMyYTNkLzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQtMjg4Y2ZkMWMyYTNk
LzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAevPtrDGy
xEdKrKaaS0QC5YkP202VXzwopv+puDr41pQJo8cvgjRRKAWpy13No9VH2fBZwqw7
xmaUAHFZBl1FDYmQ4q4cFgDZx1gtEu03/kb1/PdryKCqCWlmPFm1v3o6dz3YVEM2
1inHuhDWdjCltVzyp9uVaFLTN+KKa144xmQnspzJ83kVoxi3SkOiAFxwddlMapjx
PlVTcCuku1n2sZqNEFWJV71LKDmTeYm3rm5SMLMkqw7m2TVOUMekmYQgcKoqhdn0
U1V5t/oTLQyceX5+VBD//t+z0zvSNRY5rUPglqTYPvUR8W45XqKmUnYXcLmZGlCK
X7s0zFM9BftU5g==
-----END CERTIFICATE-----
Generated at Sat Apr 19 12:48:54 2025 by rpki-client