Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
File: kRAQDzzHh9YxUwPLf8iNniXlbqg.mft (raw, json)
Hash identifier: 1B++cBRNoCqz5YVL9q1H9DqzLeAKiQXP4/FgzCmQNgk=
Subject key identifier: E2:1B:33:B8:32:77:B9:67:C2:F3:0C:C4:CA:F7:8E:04:07:5C:FD:E8
Authority key identifier: 91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
Certificate issuer: /CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Certificate serial: 01975234A1EF2DC7DB607757359075AB5745
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
Manifest number: 0995
Signing time: Mon 09 Jun 2025 01:01:10 +0000
Manifest this update: Mon 09 Jun 2025 01:01:10 +0000
Manifest next update: Tue 10 Jun 2025 01:01:10 +0000
Files and hashes: 1: bRhGJqv0p8mJ4Y5Zi3hw3lkQdsk.roa (hash: z2JalsCXdVTGdLdK888EdCX/YOon+kmiEVhkkUSf3/w=)
2: kRAQDzzHh9YxUwPLf8iNniXlbqg.crl (hash: UWsI1GH59/NGLXbnXwFTWfelqH0mOtIf/QoXCvzWaRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 21:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:52:34:a1:ef:2d:c7:db:60:77:57:35:90:75:ab:57:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Validity
Not Before: Jun 9 01:01:10 2025 GMT
Not After : Jun 10 01:01:10 2025 GMT
Subject: CN=e21b33b83277b967c2f30cc4caf78e04075cfde8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d4:a6:36:90:b6:7c:98:fe:13:02:2a:66:98:
bf:ea:aa:35:47:f8:f8:6d:0d:95:2b:7b:da:f8:98:
e9:dc:c2:1f:fc:0b:05:9d:11:1d:b7:8d:ee:5c:28:
b4:3a:90:63:74:b0:bc:ef:70:06:a1:80:83:53:cb:
43:6b:37:db:b1:94:9d:dd:53:50:29:5f:0b:bb:17:
8a:8c:b4:a4:15:1e:d0:5a:36:f7:4a:a9:e2:21:fb:
6f:ca:3a:b4:f3:87:08:f1:8a:f6:9b:0e:12:d5:85:
48:87:b8:44:b8:2d:dd:19:22:f2:58:75:35:96:d8:
df:ce:c3:07:24:96:3f:64:37:20:85:a1:2f:fb:81:
1c:64:35:ec:5a:d6:c8:bc:23:bb:b7:60:b1:72:05:
60:0b:2a:f1:b2:aa:2a:0c:82:36:13:dc:fb:42:52:
36:71:ab:3a:02:54:5e:9c:c3:c3:cb:c8:f3:57:37:
fc:bb:72:28:b4:ed:c0:7f:82:c8:94:45:e4:db:ec:
ad:ec:e7:d5:f7:2c:54:86:68:b1:c4:b7:b7:96:08:
7e:d5:05:09:7d:10:8f:60:c6:c2:d4:45:7c:0f:33:
2a:39:52:bc:79:93:6a:f8:14:b6:36:a5:01:db:56:
9d:bc:a3:30:6c:88:08:3e:d8:81:8e:6b:d6:fc:dc:
a9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1B:33:B8:32:77:B9:67:C2:F3:0C:C4:CA:F7:8E:04:07:5C:FD:E8
X509v3 Authority Key Identifier:
keyid:91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:61:0d:4d:e0:21:dd:4a:81:b2:de:8e:f9:35:b6:f2:8d:d3:
14:88:39:0b:38:30:e0:7c:7c:e1:38:dd:38:cc:53:7f:09:e0:
d1:6b:de:3d:58:a6:a6:24:56:38:37:db:24:46:4a:e3:a1:69:
39:30:af:b8:30:c2:5e:b0:04:11:fd:ee:92:9f:30:3f:25:d8:
ef:84:20:0f:34:92:8e:9d:53:6e:bb:19:79:25:7f:39:f0:19:
02:fd:62:cd:f9:c8:3b:84:b9:d9:c5:cb:4c:67:ef:a5:c0:62:
ac:bb:26:38:ae:0f:36:0b:66:13:5f:c8:5b:f4:52:3b:64:d3:
1c:00:51:9d:6a:d2:7f:76:a3:9b:a5:22:27:a1:50:81:6e:7d:
88:d0:65:5a:88:df:1c:f1:7b:50:ff:eb:c7:ae:4f:5f:d0:fb:
75:23:c4:6c:64:bf:79:51:f3:fe:ff:fb:25:67:a5:36:7c:7a:
0b:38:4b:8d:ce:21:8f:b0:a1:77:60:50:c6:01:98:b6:1a:04:
cf:49:e5:8f:98:13:20:52:f0:93:c2:0e:aa:26:88:12:3d:1f:
78:21:22:64:ca:bd:b0:a4:02:c3:cd:bf:1a:04:51:d0:5e:fa:
8b:73:9f:58:e4:62:26:e7:18:6e:ae:b6:1e:ed:f6:9a:42:21:
65:30:ab:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSNKHvLcfbYHdXNZB1q1dFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMTAxMDBmM2NjNzg3ZDYzMTUzMDNjYjdmYzg4ZDllMjVl
NTZlYTgwHhcNMjUwNjA5MDEwMTEwWhcNMjUwNjEwMDEwMTEwWjAzMTEwLwYDVQQD
EyhlMjFiMzNiODMyNzdiOTY3YzJmMzBjYzRjYWY3OGUwNDA3NWNmZGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3dSmNpC2fJj+EwIqZpi/6qo1R/j4
bQ2VK3va+Jjp3MIf/AsFnREdt43uXCi0OpBjdLC873AGoYCDU8tDazfbsZSd3VNQ
KV8LuxeKjLSkFR7QWjb3SqniIftvyjq084cI8Yr2mw4S1YVIh7hEuC3dGSLyWHU1
ltjfzsMHJJY/ZDcghaEv+4EcZDXsWtbIvCO7t2CxcgVgCyrxsqoqDII2E9z7QlI2
cas6AlRenMPDy8jzVzf8u3IotO3Af4LIlEXk2+yt7OfV9yxUhmixxLe3lgh+1QUJ
fRCPYMbC1EV8DzMqOVK8eZNq+BS2NqUB21advKMwbIgIPtiBjmvW/NyphwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIbM7gyd7lnwvMMxMr3jgQHXP3oMB8GA1UdIwQY
MBaAFJEQEA88x4fWMVMDy3/IjZ4l5W6oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9kOTAwYjMtNTQ2Mi00ZWI0LTljOTAt
MGUwMzc3ZDRlNmQ2LzEva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9kOTAwYjMtNTQ2Mi00ZWI0LTljOTAtMGUwMzc3ZDRlNmQ2
LzEva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACGENTeAh
3UqBst6O+TW28o3TFIg5Czgw4Hx84TjdOMxTfwng0WvePVimpiRWODfbJEZK46Fp
OTCvuDDCXrAEEf3ukp8wPyXY74QgDzSSjp1TbrsZeSV/OfAZAv1izfnIO4S52cXL
TGfvpcBirLsmOK4PNgtmE1/IW/RSO2TTHABRnWrSf3ajm6UiJ6FQgW59iNBlWojf
HPF7UP/rx65PX9D7dSPEbGS/eVHz/v/7JWelNnx6CzhLjc4hj7Chd2BQxgGYthoE
z0nlj5gTIFLwk8IOqiaIEj0feCEiZMq9sKQCw82/GgRR0F76i3OfWORiJucYbq62
Hu32mkIhZTCrCg==
-----END CERTIFICATE-----
Generated at Mon Jun 9 05:47:16 2025 by rpki-client