Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
File: kMV7R1FqkODP4HIVeTenM71QO-A.mft (raw, json)
Hash identifier: CHojZOuZ60imuj7OCeXyhmVeS5rxTD5dlWuOmRxSJRE=
Subject key identifier: 86:F6:4D:2F:57:42:0C:AB:E6:94:D9:9D:76:80:7A:32:AD:FB:BA:D1
Authority key identifier: 90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
Certificate issuer: /CN=90c57b47516a90e0cfe072157937a733bd503be0
Certificate serial: 01965236A4AF0B8818EC0D3066FED3EAF702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
Manifest number: 086E
Signing time: Sun 20 Apr 2025 08:00:34 +0000
Manifest this update: Sun 20 Apr 2025 08:00:34 +0000
Manifest next update: Mon 21 Apr 2025 08:00:34 +0000
Files and hashes: 1: kMV7R1FqkODP4HIVeTenM71QO-A.crl (hash: KnK7t/G0vW+lJjiZcwIJUdbnP35S1DHQPiRRjHWANuU=)
2: zkP1QU3MF0GoTFmSaWvEQsODbsE.roa (hash: qo/m2b8+nCxd1dPgymjA/2fWlVcNJMND2bMF+AfYiPA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:36:a4:af:0b:88:18:ec:0d:30:66:fe:d3:ea:f7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c57b47516a90e0cfe072157937a733bd503be0
Validity
Not Before: Apr 20 08:00:34 2025 GMT
Not After : Apr 21 08:00:34 2025 GMT
Subject: CN=86f64d2f57420cabe694d99d76807a32adfbbad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:56:ba:85:fe:27:01:bb:75:ee:99:fa:a3:08:
07:1f:c6:8f:db:6e:9c:fd:cd:7c:f7:7c:e5:63:82:
b6:e0:e0:77:5b:1b:75:d5:bf:38:37:c3:88:8a:74:
7c:64:08:e4:89:39:83:42:70:d0:85:ea:d9:f6:57:
71:ae:f7:8c:fd:79:b8:b2:ff:26:7b:42:b2:46:a3:
85:08:ea:46:eb:43:eb:7e:04:15:3d:c4:37:12:a8:
16:58:99:fc:6d:c3:c2:24:da:36:9c:90:31:95:70:
08:fb:6a:81:1f:3e:08:37:03:fd:f8:27:cd:bf:94:
18:bb:5c:08:63:88:15:b9:4f:9e:11:e1:4f:2b:9a:
f9:27:18:2f:53:c1:24:4a:54:29:e2:bb:05:7b:2d:
3b:f4:a1:18:62:00:d4:8f:4f:e2:56:f2:06:7c:db:
dc:77:cb:81:69:7e:a4:77:92:07:e4:7d:5d:9f:e2:
92:64:a2:6e:ad:b4:25:e1:32:15:8a:67:09:ce:1b:
9a:a2:be:c0:64:d5:41:a8:da:c1:eb:f5:41:b6:c1:
07:43:4d:14:51:e5:0c:8c:32:2a:24:21:51:fc:0c:
35:f9:e8:34:84:a3:e4:c8:eb:26:26:c2:13:a9:50:
2b:49:26:e5:2d:a5:4a:e0:dd:6e:ef:8e:85:60:82:
58:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F6:4D:2F:57:42:0C:AB:E6:94:D9:9D:76:80:7A:32:AD:FB:BA:D1
X509v3 Authority Key Identifier:
keyid:90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:53:05:a2:24:a3:17:cd:09:81:1a:7b:67:6a:63:57:1a:04:
fc:b9:9c:99:41:7f:26:6e:ff:fb:20:6f:6b:68:e8:13:66:0a:
3b:e0:60:d7:0c:20:6e:16:39:00:52:4d:dd:ec:b0:b7:20:ce:
a2:54:cf:f0:ea:43:ee:52:9d:3b:54:f2:0b:75:f3:f4:97:47:
31:6e:ec:c7:a4:43:82:7b:72:a6:2b:b8:e6:bf:d0:69:37:d7:
38:ab:67:67:07:77:a1:4f:2c:94:9e:a8:84:a7:e8:10:1b:63:
dc:2a:0d:64:b3:b7:5a:18:11:3c:f5:9f:25:6f:5c:d7:90:99:
64:12:eb:47:62:01:27:13:82:4f:10:8c:5f:1b:89:af:29:af:
e1:1d:d6:da:ee:c3:75:c2:78:cd:69:3a:63:c6:ef:d6:c6:b0:
5f:75:26:fe:ee:7e:f3:bf:16:f4:33:97:5f:74:6b:cd:d3:48:
7b:28:cb:3d:91:7a:2a:6d:eb:3b:cb:8c:e2:1d:f3:5b:c5:b3:
6e:5c:c8:a2:74:d2:f5:a4:eb:de:f8:dd:86:92:e7:0a:c0:1d:
56:17:c5:d4:50:4b:a2:20:e0:bd:fd:f3:51:f9:56:bc:34:1d:
c5:d2:46:51:c5:fd:5c:e8:6c:6c:3b:33:4a:d1:f2:78:39:37:
5b:4d:9d:c1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZSNqSvC4gY7A0wZv7T6vcCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYzU3YjQ3NTE2YTkwZTBjZmUwNzIxNTc5MzdhNzMzYmQ1
MDNiZTAwHhcNMjUwNDIwMDgwMDM0WhcNMjUwNDIxMDgwMDM0WjAzMTEwLwYDVQQD
Eyg4NmY2NGQyZjU3NDIwY2FiZTY5NGQ5OWQ3NjgwN2EzMmFkZmJiYWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1a6hf4nAbt17pn6owgHH8aP226c
/c1893zlY4K24OB3Wxt11b84N8OIinR8ZAjkiTmDQnDQherZ9ldxrveM/Xm4sv8m
e0KyRqOFCOpG60PrfgQVPcQ3EqgWWJn8bcPCJNo2nJAxlXAI+2qBHz4INwP9+CfN
v5QYu1wIY4gVuU+eEeFPK5r5JxgvU8EkSlQp4rsFey079KEYYgDUj0/iVvIGfNvc
d8uBaX6kd5IH5H1dn+KSZKJurbQl4TIVimcJzhuaor7AZNVBqNrB6/VBtsEHQ00U
UeUMjDIqJCFR/Aw1+eg0hKPkyOsmJsITqVArSSblLaVK4N1u746FYIJY4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIb2TS9XQgyr5pTZnXaAejKt+7rRMB8GA1UdIwQY
MBaAFJDFe0dRapDgz+ByFXk3pzO9UDvgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva01WN1IxRnFrT0RQNEhJVmVUZW5NNzFRTy1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC81MTZmOGItYjRkMi00MzFjLWJlNDct
Y2ZhY2IyNTA4NGQ3LzEva01WN1IxRnFrT0RQNEhJVmVUZW5NNzFRTy1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC81MTZmOGItYjRkMi00MzFjLWJlNDctY2ZhY2IyNTA4NGQ3
LzEva01WN1IxRnFrT0RQNEhJVmVUZW5NNzFRTy1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABFMFoiSj
F80JgRp7Z2pjVxoE/LmcmUF/Jm7/+yBva2joE2YKO+Bg1wwgbhY5AFJN3eywtyDO
olTP8OpD7lKdO1TyC3Xz9JdHMW7sx6RDgntypiu45r/QaTfXOKtnZwd3oU8slJ6o
hKfoEBtj3CoNZLO3WhgRPPWfJW9c15CZZBLrR2IBJxOCTxCMXxuJrymv4R3W2u7D
dcJ4zWk6Y8bv1sawX3Um/u5+878W9DOXX3RrzdNIeyjLPZF6Km3rO8uM4h3zW8Wz
blzIonTS9aTr3vjdhpLnCsAdVhfF1FBLoiDgvf3zUflWvDQdxdJGUcX9XOhsbDsz
StHyeDk3W02dwQ==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:10:01 2025 by rpki-client