Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: 1ep9FKupZZ6fo4bAcTIx0g/0IrdP2K8ghRwm561KIcE=
Subject key identifier: 8F:FA:88:9F:4F:14:AC:59:21:78:9D:FE:CE:F6:2A:EF:FB:93:88:7E
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 01958C29820D974AB87369AE81C735BC858F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 0391
Signing time: Wed 12 Mar 2025 21:01:25 +0000
Manifest this update: Wed 12 Mar 2025 21:01:25 +0000
Manifest next update: Thu 13 Mar 2025 21:01:25 +0000
Files and hashes: 1: U5Y7YWVXNPPm9KoqmwsivloXzrs.roa (hash: ca5vcs2GJ+zXpmrDaBzBSEBE+1Vnejqdln+cTCo9uxU=)
2: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: gJqa0w479koG6+19yc7F+IknVFTxsJ7D6VjbvfBLXrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:82:0d:97:4a:b8:73:69:ae:81:c7:35:bc:85:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: Mar 12 21:01:25 2025 GMT
Not After : Mar 13 21:01:25 2025 GMT
Subject: CN=8ffa889f4f14ac5921789dfecef62aeffb93887e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:80:39:93:d7:1b:a2:85:d1:1e:ba:eb:69:3f:
b9:22:b6:a6:bb:08:d0:b7:9d:42:d4:fe:00:91:19:
1a:83:20:44:34:a6:c3:7b:1b:cc:37:67:5f:d5:a2:
3d:13:27:c8:c6:18:08:cf:ac:b3:d8:9f:7c:25:01:
16:94:ef:42:37:ba:45:fa:40:89:69:a2:43:83:6f:
19:0b:00:d7:18:79:9d:29:cd:f1:fb:1e:c2:32:34:
59:68:44:b3:94:6a:b0:10:d6:cf:17:57:ef:ad:cf:
f5:c7:d2:71:c2:b2:87:21:88:4c:b2:f2:98:0c:b5:
83:28:60:b3:c7:6b:cc:01:7f:82:dd:a2:2e:e6:78:
ff:49:2b:5d:72:a9:4c:e9:54:56:1a:96:2c:0f:e1:
c7:36:cf:19:af:9a:ba:5d:26:52:38:ce:d2:e6:47:
97:26:79:ab:01:8a:ae:36:70:06:52:e6:ec:04:09:
81:63:cd:b5:6d:da:0f:1d:fe:69:50:4b:35:a1:b0:
fc:32:4c:c8:19:df:48:cb:97:94:c7:7e:a3:02:d3:
c6:a2:bb:6d:9c:84:b4:66:aa:39:47:79:02:df:ba:
a9:15:df:00:83:45:91:fe:f3:1a:56:b3:59:d4:d8:
27:07:42:b2:7b:66:a6:7f:52:c2:1a:35:fb:d6:78:
3e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:FA:88:9F:4F:14:AC:59:21:78:9D:FE:CE:F6:2A:EF:FB:93:88:7E
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:76:88:0b:d5:68:9b:43:a3:c6:dd:3f:3b:80:c0:f9:66:17:
71:36:b7:f4:a5:41:a5:cb:65:6e:54:46:af:d1:6c:54:a5:0d:
77:a9:8f:2c:f5:f4:c8:cc:d4:62:04:b1:b8:9c:48:65:c8:82:
fe:c5:b8:3d:4b:cb:7c:14:14:19:50:19:c8:41:d5:e5:18:70:
fb:f4:6d:ea:e5:f3:36:51:ea:89:28:ee:b5:d8:c2:d5:14:e0:
21:98:cb:b0:50:5b:7e:6c:79:e5:de:2c:82:bc:69:6b:9d:77:
8d:ba:b0:63:f6:85:34:8c:28:a5:25:5f:b2:a9:9c:24:a8:cc:
50:82:58:41:28:bd:cf:d5:36:a6:fd:14:11:fc:c6:e9:c2:aa:
8a:49:03:52:4d:41:fe:ef:ac:20:d9:00:3c:d8:f1:4d:e2:91:
07:45:bc:2b:1e:f0:57:90:1a:c8:d0:b0:10:40:2f:81:b0:3c:
b5:3a:36:83:40:d0:68:66:f0:ca:1b:77:b7:10:bb:b6:b1:8c:
f2:f2:1e:fc:c4:4d:02:be:7c:97:ce:bf:85:aa:1b:cb:d0:1d:
a7:84:9d:ec:de:da:a8:2a:8b:be:d8:4a:ad:d1:24:28:36:0a:
a9:4c:f1:63:54:6c:bb:67:66:de:a6:e5:24:82:fa:60:04:3b:
c4:9f:76:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWMKYINl0q4c2mugcc1vIWPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm
NjI1MzEwHhcNMjUwMzEyMjEwMTI1WhcNMjUwMzEzMjEwMTI1WjAzMTEwLwYDVQQD
Eyg4ZmZhODg5ZjRmMTRhYzU5MjE3ODlkZmVjZWY2MmFlZmZiOTM4ODdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+oA5k9cbooXRHrrraT+5IramuwjQ
t51C1P4AkRkagyBENKbDexvMN2df1aI9EyfIxhgIz6yz2J98JQEWlO9CN7pF+kCJ
aaJDg28ZCwDXGHmdKc3x+x7CMjRZaESzlGqwENbPF1fvrc/1x9JxwrKHIYhMsvKY
DLWDKGCzx2vMAX+C3aIu5nj/SStdcqlM6VRWGpYsD+HHNs8Zr5q6XSZSOM7S5keX
JnmrAYquNnAGUubsBAmBY821bdoPHf5pUEs1obD8MkzIGd9Iy5eUx36jAtPGortt
nIS0Zqo5R3kC37qpFd8Ag0WR/vMaVrNZ1NgnB0Kye2amf1LCGjX71ng+AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI/6iJ9PFKxZIXid/s72Ku/7k4h+MB8GA1UdIwQY
MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt
OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1
LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARHaIC9Vo
m0Ojxt0/O4DA+WYXcTa39KVBpctlblRGr9FsVKUNd6mPLPX0yMzUYgSxuJxIZciC
/sW4PUvLfBQUGVAZyEHV5Rhw+/Rt6uXzNlHqiSjutdjC1RTgIZjLsFBbfmx55d4s
grxpa513jbqwY/aFNIwopSVfsqmcJKjMUIJYQSi9z9U2pv0UEfzG6cKqikkDUk1B
/u+sINkAPNjxTeKRB0W8Kx7wV5AayNCwEEAvgbA8tTo2g0DQaGbwyht3txC7trGM
8vIe/MRNAr58l86/haoby9Adp4Sd7N7aqCqLvthKrdEkKDYKqUzxY1Rsu2dm3qbl
JIL6YAQ7xJ92Nw==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:34 2025 by rpki-client