Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: Vco3lYWuNUNhIeA/wRvsT4HdhA1uEqgTX5IWmmL0vuo=
Subject key identifier: 20:DF:FF:62:05:0C:CB:DC:7E:C0:08:07:A3:F6:5F:CC:CD:AB:07:B7
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 01963E41E5C10AD0A359C0947524AA9EC7B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 1506
Signing time: Wed 16 Apr 2025 11:00:28 +0000
Manifest this update: Wed 16 Apr 2025 11:00:28 +0000
Manifest next update: Thu 17 Apr 2025 11:00:28 +0000
Files and hashes: 1: 0_EpdViy3Y27mqejc66l1--sjBk.roa (hash: 5pxFxSH3+mNeuLlB3lfUr3Q81qL23oDYt7nqdhFYvqU=)
2: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: K89aphNVWHvh0QksW/FhYXluYZ8pdjjbREQLOaPaepI=)
3: LcFyOrobUrG-q36ENaVBWkIxyec.roa (hash: aiGhAwWl1vo/+1mZ5amS0ElRqf0Ru78HcL61kI16D7M=)
4: mJjYnvCF0aJWwcOO87dJLulTej8.roa (hash: cyYF0//qn6HDiGNvk9163fm1e6ldk0sS9GYuhZI3HqU=)
5: oOM7QrbyKmK3sX9tSspvcF4LQYc.roa (hash: FI0q4cfrXLcPzOiQWzP6cR+1RIpvdT5irQXBJq3jipE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 09:55:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:41:e5:c1:0a:d0:a3:59:c0:94:75:24:aa:9e:c7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Apr 16 11:00:28 2025 GMT
Not After : Apr 17 11:00:28 2025 GMT
Subject: CN=20dfff62050ccbdc7ec00807a3f65fcccdab07b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:14:02:7d:b3:42:17:17:7f:db:ff:31:5c:a6:
13:3f:56:6d:0a:6a:34:75:3b:7c:22:80:81:ee:cf:
49:31:ba:40:04:68:86:84:8b:2c:64:a7:a1:58:4d:
72:fd:60:45:b1:db:17:24:fb:be:4d:4f:8d:8d:71:
7a:19:6b:17:54:a0:9b:65:bc:bb:fe:42:9e:ed:93:
6d:7a:00:24:a6:9c:19:ff:2e:e1:e5:b4:c4:f2:8b:
84:31:67:5e:89:32:46:9b:48:f0:d1:f8:d5:1e:02:
c5:9f:a2:2d:b4:3b:40:48:80:57:3c:3c:45:fc:ba:
ad:5d:a1:69:9e:32:df:fb:1d:f2:0c:de:c8:f5:b5:
38:e0:c6:8e:17:fd:fb:1c:9a:8c:cf:d4:63:04:e5:
65:cb:7f:98:87:d7:3b:b9:4a:f6:f2:4e:b9:46:e9:
70:d2:11:96:65:24:90:8f:5f:f9:65:1f:0c:94:2c:
a5:91:ed:89:9b:7a:4d:a3:57:a7:33:d4:50:cc:29:
1a:24:dc:d8:33:05:fe:fe:5a:ed:d3:bc:64:4f:cb:
4c:25:a9:f9:6a:94:25:8c:93:ab:be:0b:95:8d:6c:
81:da:26:48:e4:83:72:56:f9:6d:d0:18:32:b2:51:
92:aa:f3:da:ce:96:1b:a7:39:c5:f2:a3:63:9a:f3:
2f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:DF:FF:62:05:0C:CB:DC:7E:C0:08:07:A3:F6:5F:CC:CD:AB:07:B7
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:3a:27:2d:b1:8d:61:53:e3:89:0c:06:a1:d5:0b:60:d5:04:
71:ad:af:80:e8:5b:c6:9d:a6:8b:c8:9c:75:91:2e:77:10:d4:
74:de:76:cf:49:df:b9:9a:9a:82:58:db:ae:96:82:3f:c2:50:
8d:7d:e8:66:9d:6f:de:46:a1:e7:b6:f1:90:1c:da:2e:51:ec:
36:9e:0e:b3:85:e8:6d:57:59:c9:a6:7e:a9:3d:fa:79:de:db:
29:b9:82:2e:a8:5d:56:d1:63:07:5a:6c:64:50:2a:dc:1c:12:
98:65:86:e4:97:98:35:c6:fb:96:34:04:4a:ca:ed:74:a9:9d:
30:68:3f:93:04:52:bc:a8:59:75:b5:ab:c5:a4:e2:12:34:3c:
31:39:d4:67:ff:52:74:08:1e:7a:5f:68:d6:b5:36:f1:39:8a:
84:57:76:06:27:7d:1e:1a:f1:47:83:e1:21:5c:70:fb:45:d2:
23:e6:ea:4b:1e:3b:dd:e3:db:d4:1f:12:f1:85:5e:1b:f9:4d:
c3:4e:65:b2:a8:7c:73:7c:cd:59:fa:47:f1:93:04:71:6b:83:
06:27:a6:31:8d:37:6f:24:d7:55:a8:6c:81:9f:a9:61:2f:6f:
2c:04:54:d3:a7:c7:8d:0e:43:36:78:5a:a4:31:58:e7:c7:d4:
50:6a:83:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY+QeXBCtCjWcCUdSSqnse4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYzg2OTU3NzJmMGU2NGYzYjlhMTYyMTczM2NjMDI1MDZm
NzQ3MDIwHhcNMjUwNDE2MTEwMDI4WhcNMjUwNDE3MTEwMDI4WjAzMTEwLwYDVQQD
EygyMGRmZmY2MjA1MGNjYmRjN2VjMDA4MDdhM2Y2NWZjY2NkYWIwN2I3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRQCfbNCFxd/2/8xXKYTP1ZtCmo0
dTt8IoCB7s9JMbpABGiGhIssZKehWE1y/WBFsdsXJPu+TU+NjXF6GWsXVKCbZby7
/kKe7ZNtegAkppwZ/y7h5bTE8ouEMWdeiTJGm0jw0fjVHgLFn6IttDtASIBXPDxF
/LqtXaFpnjLf+x3yDN7I9bU44MaOF/37HJqMz9RjBOVly3+Yh9c7uUr28k65Rulw
0hGWZSSQj1/5ZR8MlCylke2Jm3pNo1enM9RQzCkaJNzYMwX+/lrt07xkT8tMJan5
apQljJOrvguVjWyB2iZI5INyVvlt0BgyslGSqvPazpYbpznF8qNjmvMvEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCDf/2IFDMvcfsAIB6P2X8zNqwe3MB8GA1UdIwQY
MBaAFCvIaVdy8OZPO5oWIXM8wCUG90cCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMt
NDNkNjZhMDMzMWVjLzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMtNDNkNjZhMDMzMWVj
LzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiDonLbGN
YVPjiQwGodULYNUEca2vgOhbxp2mi8icdZEudxDUdN52z0nfuZqagljbrpaCP8JQ
jX3oZp1v3kah57bxkBzaLlHsNp4Os4XobVdZyaZ+qT36ed7bKbmCLqhdVtFjB1ps
ZFAq3BwSmGWG5JeYNcb7ljQESsrtdKmdMGg/kwRSvKhZdbWrxaTiEjQ8MTnUZ/9S
dAgeel9o1rU28TmKhFd2Bid9HhrxR4PhIVxw+0XSI+bqSx473ePb1B8S8YVeG/lN
w05lsqh8c3zNWfpH8ZMEcWuDBiemMY03byTXVahsgZ+pYS9vLARU06fHjQ5DNnha
pDFY58fUUGqDvw==
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:53:58 2025 by rpki-client