Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
File: KvD7S5rcsuyisQbeCok5YVlszRg.mft (raw, json)
Hash identifier: ZtsdRON1LVchRHf+tu12VZaYNZI/ldkCbIF1XbFsj2g=
Subject key identifier: 9E:0C:82:94:D8:C0:AB:41:30:3E:8E:3C:2D:EB:17:48:F2:BF:62:2D
Authority key identifier: 2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
Certificate issuer: /CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Certificate serial: 01974AE8B64B18D31AA148C50655E2739DC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
Manifest number: 0BFF
Signing time: Sat 07 Jun 2025 15:00:54 +0000
Manifest this update: Sat 07 Jun 2025 15:00:54 +0000
Manifest next update: Sun 08 Jun 2025 15:00:54 +0000
Files and hashes: 1: KvD7S5rcsuyisQbeCok5YVlszRg.crl (hash: 6ADeYlv4ph4trssl7DPK3sR+e1iNtZolE2J9OWPiOBA=)
2: zXRn6qUdykmyNBlVs8F5lijyofI.roa (hash: ocGQIF9V1x5fsDLwah9aysnQL0wM33g0zDeGg9Z68IM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:e8:b6:4b:18:d3:1a:a1:48:c5:06:55:e2:73:9d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af0fb4b9adcb2eca2b106de0a893961596ccd18
Validity
Not Before: Jun 7 15:00:54 2025 GMT
Not After : Jun 8 15:00:54 2025 GMT
Subject: CN=9e0c8294d8c0ab41303e8e3c2deb1748f2bf622d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0c:8e:b4:1f:4e:16:a8:da:1e:7f:25:2d:cc:
ae:e3:67:08:1d:62:32:10:e7:18:db:18:7c:da:f4:
cb:4d:a7:b3:3b:40:61:80:d9:6e:66:2b:f4:71:1e:
31:01:d2:d3:ca:de:b7:90:40:ff:76:e2:27:b9:78:
ba:84:b5:f4:08:2e:f7:6e:01:4e:91:b6:38:1e:23:
dc:7a:dd:94:05:36:c6:f3:db:cc:2f:ad:cf:c2:f6:
60:91:c2:ce:b3:d0:d9:9a:d1:f4:ed:4a:bb:6c:38:
34:a7:99:d2:2b:bd:a9:99:48:3d:35:b3:46:32:2d:
ab:64:33:01:94:2e:98:c6:f2:8f:39:29:0b:97:e1:
34:39:76:16:ac:da:97:9e:80:ab:e6:35:c1:d8:71:
d5:75:eb:3d:6f:4b:c4:a0:2e:4c:f7:02:9a:43:9f:
73:9d:a0:a8:d5:6d:1d:d2:ef:ca:5b:1c:b7:5c:66:
92:2e:f3:13:34:47:8e:9d:80:74:04:75:fd:fe:0c:
2b:9c:16:97:c8:60:45:a0:19:03:b3:2c:88:0b:27:
2f:63:ee:ee:34:c6:43:4e:9c:a0:55:8f:31:72:f1:
71:a5:0a:11:e4:8a:0f:a8:31:1c:e0:dd:f2:12:a0:
5a:87:e5:18:be:0c:f9:f6:ba:c8:25:4a:6d:d9:e5:
af:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:0C:82:94:D8:C0:AB:41:30:3E:8E:3C:2D:EB:17:48:F2:BF:62:2D
X509v3 Authority Key Identifier:
keyid:2A:F0:FB:4B:9A:DC:B2:EC:A2:B1:06:DE:0A:89:39:61:59:6C:CD:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvD7S5rcsuyisQbeCok5YVlszRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2edf41-48e0-40ad-8e7c-5e954af1d80e/1/KvD7S5rcsuyisQbeCok5YVlszRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:4c:f4:3f:3e:40:08:4e:4b:6a:8c:1d:71:8c:2d:61:70:af:
7e:0d:90:47:4d:74:86:a2:84:ca:cc:9a:41:58:78:e7:06:b6:
da:a8:aa:29:47:49:24:d6:0a:b9:21:fa:97:48:65:cd:15:73:
e5:e2:5c:03:6a:a5:93:7d:ce:83:27:2a:a1:04:8b:5a:94:60:
c6:92:32:ed:be:fa:35:c4:4b:b3:80:52:6e:50:31:83:c2:ae:
68:ea:63:3f:35:de:28:8b:61:c3:19:2e:16:86:d8:a3:4c:58:
84:44:fc:0d:ec:54:1b:bc:93:a7:c8:20:68:6f:82:ef:55:d2:
97:00:88:b5:08:1b:c3:b1:be:e4:d8:a9:72:b2:50:0a:f2:75:
5c:12:71:a9:97:b6:13:74:f1:88:83:55:8b:e4:6b:de:f2:47:
db:99:95:2c:e7:f9:fd:8c:84:4d:7d:56:d4:f6:0a:85:15:a7:
59:a8:4d:4d:0c:a9:65:e2:d3:52:54:d3:93:ac:0b:ec:31:d7:
db:3f:93:9a:a3:ef:6b:53:52:03:4c:82:27:5b:39:80:b9:25:
77:06:55:c4:f9:94:5d:7e:0b:c6:26:7f:c8:9d:ac:f8:8c:4e:
02:f4:2d:c9:7e:0c:ec:d7:b7:0b:ff:dc:76:b0:b8:ef:da:aa:
6b:f5:57:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6LZLGNMaoUjFBlXic53IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhZjBmYjRiOWFkY2IyZWNhMmIxMDZkZTBhODkzOTYxNTk2
Y2NkMTgwHhcNMjUwNjA3MTUwMDU0WhcNMjUwNjA4MTUwMDU0WjAzMTEwLwYDVQQD
Eyg5ZTBjODI5NGQ4YzBhYjQxMzAzZThlM2MyZGViMTc0OGYyYmY2MjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQyOtB9OFqjaHn8lLcyu42cIHWIy
EOcY2xh82vTLTaezO0BhgNluZiv0cR4xAdLTyt63kED/duInuXi6hLX0CC73bgFO
kbY4HiPcet2UBTbG89vML63PwvZgkcLOs9DZmtH07Uq7bDg0p5nSK72pmUg9NbNG
Mi2rZDMBlC6YxvKPOSkLl+E0OXYWrNqXnoCr5jXB2HHVdes9b0vEoC5M9wKaQ59z
naCo1W0d0u/KWxy3XGaSLvMTNEeOnYB0BHX9/gwrnBaXyGBFoBkDsyyICycvY+7u
NMZDTpygVY8xcvFxpQoR5IoPqDEc4N3yEqBah+UYvgz59rrIJUpt2eWv4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ4MgpTYwKtBMD6OPC3rF0jyv2ItMB8GA1UdIwQY
MBaAFCrw+0ua3LLsorEG3gqJOWFZbM0YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3ZEN1M1cmNzdXlpc1FiZUNvazVZVmxzelJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8yZWRmNDEtNDhlMC00MGFkLThlN2Mt
NWU5NTRhZjFkODBlLzEvS3ZEN1M1cmNzdXlpc1FiZUNvazVZVmxzelJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8yZWRmNDEtNDhlMC00MGFkLThlN2MtNWU5NTRhZjFkODBl
LzEvS3ZEN1M1cmNzdXlpc1FiZUNvazVZVmxzelJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjEz0Pz5A
CE5LaowdcYwtYXCvfg2QR010hqKEysyaQVh45wa22qiqKUdJJNYKuSH6l0hlzRVz
5eJcA2qlk33OgycqoQSLWpRgxpIy7b76NcRLs4BSblAxg8KuaOpjPzXeKIthwxku
FobYo0xYhET8DexUG7yTp8ggaG+C71XSlwCItQgbw7G+5NipcrJQCvJ1XBJxqZe2
E3TxiINVi+Rr3vJH25mVLOf5/YyETX1W1PYKhRWnWahNTQypZeLTUlTTk6wL7DHX
2z+TmqPva1NSA0yCJ1s5gLkldwZVxPmUXX4LxiZ/yJ2s+IxOAvQtyX4M7Ne3C//c
drC479qqa/VXxg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 21:31:07 2025 by rpki-client