Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: YuP+oyfHu6gPjdul40V2kbEHGcCVMobcCzuRdwmQ73I=
Subject key identifier: 8F:5C:B7:88:A8:5B:D2:60:16:BE:86:97:99:42:55:04:AD:C7:F8:A3
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019749318A6BA347C8869AE839081038F04F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 013A
Signing time: Sat 07 Jun 2025 07:01:12 +0000
Manifest this update: Sat 07 Jun 2025 07:01:12 +0000
Manifest next update: Sun 08 Jun 2025 07:01:12 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: /CqVSARRVzNKmN6mRhHglmkDGtAAHEOCIAVyDk3MR1E=)
2: q2_sbJziOr7rwxyhvKWnkNjMans.roa (hash: 0BH7DATsPfSUKJPP/TZdwOG931UfHO+OV4ftBhPZrwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:8a:6b:a3:47:c8:86:9a:e8:39:08:10:38:f0:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Jun 7 07:01:12 2025 GMT
Not After : Jun 8 07:01:12 2025 GMT
Subject: CN=8f5cb788a85bd26016be869799425504adc7f8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:64:28:59:af:3d:de:ca:0f:24:49:7f:de:1c:
87:86:c5:3f:7a:6d:57:62:9f:ec:dc:89:eb:ea:9a:
66:63:11:de:a6:cd:e1:f0:06:26:cf:a4:63:e7:15:
99:b5:51:09:cc:02:4d:54:16:fe:2e:d8:50:eb:99:
cd:bc:58:58:0b:e4:bd:66:76:7e:91:7f:44:da:2a:
6e:0a:f8:1c:1c:98:4e:4d:58:a4:67:70:c4:c7:05:
c3:53:d9:70:f8:c8:7f:54:ca:a3:6f:15:0f:a5:2a:
99:26:70:ef:3e:a7:f7:ff:2e:cb:1f:0a:18:f5:ec:
75:c1:7e:00:24:dc:cf:d6:97:fd:3f:3a:65:28:41:
3c:33:fc:ba:6f:63:80:fc:a4:c3:19:03:cf:d4:f2:
da:9c:de:67:0d:3b:e7:11:96:a6:1d:e7:40:1c:53:
92:29:a0:30:a0:da:86:0e:38:19:c7:f7:af:99:92:
a4:c0:cd:a2:89:e8:10:89:c3:d8:ad:f9:e8:76:97:
eb:f2:a8:b4:e7:5e:0b:0d:16:78:9f:05:ff:80:2a:
d9:c8:2f:32:4f:1a:c9:b9:40:22:d3:d1:08:e4:62:
99:e8:b9:a0:b5:e7:a5:3e:e1:72:91:39:72:01:24:
c9:fe:59:f8:80:9a:65:d5:77:0b:d7:86:ff:24:ac:
bb:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5C:B7:88:A8:5B:D2:60:16:BE:86:97:99:42:55:04:AD:C7:F8:A3
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:7b:b4:1e:e7:de:79:2d:d5:6c:62:24:4e:a2:65:47:ac:08:
47:f3:66:2e:4f:eb:43:d9:f5:a4:09:96:ac:1a:ef:d2:83:c9:
d7:cf:d7:82:6a:4d:13:b0:9c:e7:07:ee:b9:35:7b:bf:f0:4e:
01:b3:f7:71:2f:0a:33:36:e9:4f:b5:93:e8:88:c9:0d:95:8f:
f4:5c:2c:56:5e:c7:7a:4a:5d:d4:38:c1:d9:da:04:c6:50:e6:
c0:0f:50:e4:8c:8b:49:f7:cf:d9:16:f6:ef:72:94:87:99:51:
8a:e2:41:88:66:2b:3f:5d:2d:c0:f7:20:eb:cb:5c:f9:07:b5:
7a:8b:b3:17:2c:13:42:ed:f3:98:c1:58:40:aa:64:f6:3a:70:
97:51:c9:f5:0d:ad:ab:76:3a:ba:b8:82:ac:c4:f8:44:79:fe:
c7:cc:a0:0b:32:b1:f7:e1:1e:2e:2d:21:0e:f3:ce:6a:3c:35:
34:40:77:7c:d8:54:3c:53:29:8d:53:a1:4c:83:f3:6f:60:39:
96:ed:13:21:e9:9c:5e:14:ce:e4:66:37:e1:81:6b:2c:61:96:
74:fd:c0:e7:8e:ea:d1:62:69:1b:74:69:e4:b1:be:f2:18:46:
c8:9c:38:1a:a2:45:26:f2:26:6f:76:1d:24:09:6c:77:f5:cd:
aa:8f:39:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMYpro0fIhproOQgQOPBPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODA0NzRhOTYxNjFkZGUyOTQyY2ZiOWYxODU2YzJmZmM4
ODA5MDQwHhcNMjUwNjA3MDcwMTEyWhcNMjUwNjA4MDcwMTEyWjAzMTEwLwYDVQQD
Eyg4ZjVjYjc4OGE4NWJkMjYwMTZiZTg2OTc5OTQyNTUwNGFkYzdmOGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmQoWa893soPJEl/3hyHhsU/em1X
Yp/s3Inr6ppmYxHeps3h8AYmz6Rj5xWZtVEJzAJNVBb+LthQ65nNvFhYC+S9ZnZ+
kX9E2ipuCvgcHJhOTVikZ3DExwXDU9lw+Mh/VMqjbxUPpSqZJnDvPqf3/y7LHwoY
9ex1wX4AJNzP1pf9PzplKEE8M/y6b2OA/KTDGQPP1PLanN5nDTvnEZamHedAHFOS
KaAwoNqGDjgZx/evmZKkwM2iiegQicPYrfnodpfr8qi0514LDRZ4nwX/gCrZyC8y
TxrJuUAi09EI5GKZ6LmgteelPuFykTlyASTJ/ln4gJpl1XcL14b/JKy7PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI9ct4ioW9JgFr6Gl5lCVQStx/ijMB8GA1UdIwQY
MBaAFCiAR0qWFh3eKULPufGFbC/8iAkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAt
NzQ2MWE1NmNlOTVlLzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAtNzQ2MWE1NmNlOTVl
LzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl3u0Hufe
eS3VbGIkTqJlR6wIR/NmLk/rQ9n1pAmWrBrv0oPJ18/XgmpNE7Cc5wfuuTV7v/BO
AbP3cS8KMzbpT7WT6IjJDZWP9FwsVl7Hekpd1DjB2doExlDmwA9Q5IyLSffP2Rb2
73KUh5lRiuJBiGYrP10twPcg68tc+Qe1eouzFywTQu3zmMFYQKpk9jpwl1HJ9Q2t
q3Y6uriCrMT4RHn+x8ygCzKx9+EeLi0hDvPOajw1NEB3fNhUPFMpjVOhTIPzb2A5
lu0TIemcXhTO5GY34YFrLGGWdP3A547q0WJpG3Rp5LG+8hhGyJw4GqJFJvImb3Yd
JAlsd/XNqo850g==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:31:27 2025 by rpki-client