Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
File: KMvNlssXsh1iT9IXD9DXCBY68j0.mft (raw, json)
Hash identifier: zUlX1/RJm0Cir3wvxjRFi8HBiKFfKUqEmc4CFMBp8nE=
Subject key identifier: B4:89:AB:5A:73:EB:66:D2:4C:D3:1C:DB:9A:A9:2A:C6:E6:99:F0:54
Authority key identifier: 28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
Certificate issuer: /CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Certificate serial: 019510C72C207F228AFB44EF8AFE8E16CCBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
Manifest number: 0D7E
Signing time: Sun 16 Feb 2025 22:00:43 +0000
Manifest this update: Sun 16 Feb 2025 22:00:43 +0000
Manifest next update: Mon 17 Feb 2025 22:00:43 +0000
Files and hashes: 1: KMvNlssXsh1iT9IXD9DXCBY68j0.crl (hash: OUW5kHoPEUZAg0rOAsIHUuZQ3edlfBFH5dWfJ5o/tbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:2c:20:7f:22:8a:fb:44:ef:8a:fe:8e:16:cc:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Validity
Not Before: Feb 16 22:00:43 2025 GMT
Not After : Feb 17 22:00:43 2025 GMT
Subject: CN=b489ab5a73eb66d24cd31cdb9aa92ac6e699f054
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:9a:ed:7b:d3:9a:43:c1:38:18:06:32:ec:8b:
fc:eb:55:ce:b1:7a:0a:9a:2e:6c:9d:38:95:d6:54:
f4:5c:fb:9a:da:3e:ee:b4:13:3d:46:7b:ca:12:56:
5c:d5:e6:a5:d4:f3:d1:68:b8:05:ef:b2:81:2d:c3:
f3:ca:ca:8c:ee:fa:3c:84:66:46:5e:3c:50:5f:80:
aa:ef:22:04:8f:66:cb:64:b0:4d:23:45:0e:27:e9:
2f:31:54:1d:84:59:a2:a0:c5:e7:81:de:a0:79:71:
f6:94:6e:fb:e2:32:6c:4f:73:f4:9e:49:be:91:e4:
4b:6b:c5:d0:e2:3b:85:ed:e5:1e:11:50:a1:7d:ee:
af:90:5c:10:d4:cd:c4:1f:d8:43:a0:c1:01:e8:1d:
20:a8:f5:f9:44:71:c8:bd:89:78:3a:29:d1:57:c0:
3a:68:1e:03:a9:54:fa:44:86:c8:63:9e:a0:5b:a8:
88:d9:73:50:df:0d:fc:81:0c:6f:c8:52:ef:63:63:
30:d1:b5:6a:fe:76:8e:54:b5:9f:3b:1e:40:07:a1:
36:b9:97:02:a4:ed:5a:0b:f9:68:31:70:10:6a:2f:
8e:86:ed:f4:95:63:37:91:27:9a:5d:c9:2c:47:18:
8d:d3:55:be:05:a6:6f:f4:34:c2:6f:97:ac:5e:2f:
f9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:89:AB:5A:73:EB:66:D2:4C:D3:1C:DB:9A:A9:2A:C6:E6:99:F0:54
X509v3 Authority Key Identifier:
keyid:28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:c3:27:d0:39:8d:9d:8c:4c:4f:a1:bb:e3:55:92:f7:9f:3c:
66:77:6c:36:e3:53:39:b8:90:4a:60:e8:15:ca:f2:59:87:69:
be:0e:19:f5:6a:72:e2:b3:33:a9:ad:20:1d:80:c5:df:37:17:
40:9f:95:7d:41:fe:9f:12:59:4d:c5:cd:29:da:ec:89:47:4c:
4a:5d:50:b2:88:72:bb:7a:02:55:4d:ef:89:59:ea:cf:b8:1d:
2f:39:3b:b7:0e:22:3f:b4:68:37:17:88:5d:63:a0:03:4a:96:
11:11:97:2e:10:2f:64:81:ca:2a:6e:f0:e1:84:ba:1e:a2:66:
65:08:bd:76:47:b6:ec:97:4f:6b:fe:1e:86:ce:c7:5e:85:44:
37:d8:3b:6f:9b:fe:eb:91:0c:a8:0b:ec:38:3c:77:7e:c7:c4:
8b:96:cf:7e:24:78:52:b2:bd:8b:4a:e5:08:08:e9:73:17:7f:
d1:c0:58:85:45:0a:bc:4a:b8:bc:15:7b:dc:8d:ca:64:67:9d:
01:cb:21:06:b8:9d:44:b4:0c:2c:92:a7:a7:3e:cc:4a:07:17:
e0:e2:88:4d:3c:44:a1:7a:18:a8:c5:66:bf:13:99:99:fe:7f:
b7:57:e5:b0:b5:47:0b:95:d7:07:a6:4e:48:f8:8c:c6:69:b0:
52:47:60:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQxywgfyKK+0Tviv6OFsy6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4Y2JjZDk2Y2IxN2IyMWQ2MjRmZDIxNzBmZDBkNzA4MTYz
YWYyM2QwHhcNMjUwMjE2MjIwMDQzWhcNMjUwMjE3MjIwMDQzWjAzMTEwLwYDVQQD
EyhiNDg5YWI1YTczZWI2NmQyNGNkMzFjZGI5YWE5MmFjNmU2OTlmMDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+Jrte9OaQ8E4GAYy7Iv861XOsXoK
mi5snTiV1lT0XPua2j7utBM9RnvKElZc1eal1PPRaLgF77KBLcPzysqM7vo8hGZG
XjxQX4Cq7yIEj2bLZLBNI0UOJ+kvMVQdhFmioMXngd6geXH2lG774jJsT3P0nkm+
keRLa8XQ4juF7eUeEVChfe6vkFwQ1M3EH9hDoMEB6B0gqPX5RHHIvYl4OinRV8A6
aB4DqVT6RIbIY56gW6iI2XNQ3w38gQxvyFLvY2Mw0bVq/naOVLWfOx5AB6E2uZcC
pO1aC/loMXAQai+Ohu30lWM3kSeaXcksRxiN01W+BaZv9DTCb5esXi/5KQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLSJq1pz62bSTNMc25qpKsbmmfBUMB8GA1UdIwQY
MBaAFCjLzZbLF7IdYk/SFw/Q1wgWOvI9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82ZTQwZWUtNzkzNS00MWE5LThlZTct
ZjlhNjk0NDlkNWZhLzEvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC82ZTQwZWUtNzkzNS00MWE5LThlZTctZjlhNjk0NDlkNWZh
LzEvS012Tmxzc1hzaDFpVDlJWEQ5RFhDQlk2OGowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJMMn0DmN
nYxMT6G741WS9588ZndsNuNTObiQSmDoFcryWYdpvg4Z9Wpy4rMzqa0gHYDF3zcX
QJ+VfUH+nxJZTcXNKdrsiUdMSl1Qsohyu3oCVU3viVnqz7gdLzk7tw4iP7RoNxeI
XWOgA0qWERGXLhAvZIHKKm7w4YS6HqJmZQi9dke27JdPa/4ehs7HXoVEN9g7b5v+
65EMqAvsODx3fsfEi5bPfiR4UrK9i0rlCAjpcxd/0cBYhUUKvEq4vBV73I3KZGed
AcshBridRLQMLJKnpz7MSgcX4OKITTxEoXoYqMVmvxOZmf5/t1flsLVHC5XXB6ZO
SPiMxmmwUkdgZw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:57 2025 by rpki-client