Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
File: _KmLHQ7MzE9v8afn24S0uy9VsI0.mft (raw, json)
Hash identifier: rxGr2ymwUP+CrUUrkZ16C0p1ysGZbynvI/Dfci8XFS0=
Subject key identifier: AB:34:19:73:F8:D1:DC:1E:E1:68:80:65:F1:D7:EA:5E:C8:CA:04:C3
Authority key identifier: FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
Certificate issuer: /CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Certificate serial: 0197481E82B948429A0F40943211E5AAB5B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
Manifest number: 1541
Signing time: Sat 07 Jun 2025 02:00:48 +0000
Manifest this update: Sat 07 Jun 2025 02:00:48 +0000
Manifest next update: Sun 08 Jun 2025 02:00:48 +0000
Files and hashes: 1: MIfmeAoWN0nwDc_PxEMHlVixhH0.roa (hash: BGlglgWDBdgW/hvSdFfJEQ+q//PCVjKwrtXl1XRe9nc=)
2: _KmLHQ7MzE9v8afn24S0uy9VsI0.crl (hash: U6dYhMaWVISg8TguMM5XmCC8SEbrhcwTpXFJ7gMSt/s=)
3: ok0D6AFy1nokMBW7AtTQbtvoy-Q.roa (hash: OI8j87WnUAa44hUR7Jr4hBgPSlGVFL5uAjQD5u8Uzmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:82:b9:48:42:9a:0f:40:94:32:11:e5:aa:b5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d
Validity
Not Before: Jun 7 02:00:48 2025 GMT
Not After : Jun 8 02:00:48 2025 GMT
Subject: CN=ab341973f8d1dc1ee1688065f1d7ea5ec8ca04c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:42:95:6a:2f:09:d3:bc:1b:62:35:89:17:fa:
fc:cd:5b:e2:6c:fe:5a:52:d2:d4:57:cd:2d:0b:cd:
69:28:11:62:36:b3:9f:90:c9:1d:f0:64:2a:e0:06:
9d:09:21:25:74:6e:aa:1a:21:2a:ed:34:ac:85:79:
38:77:54:02:cd:51:fb:2c:22:b5:91:92:1c:3b:c4:
a6:28:9c:82:c6:42:98:e5:12:1b:06:72:20:21:19:
d8:50:b1:e3:f8:4c:14:ad:9c:58:26:88:1c:fc:8d:
35:62:95:96:ab:74:f3:5c:c5:ae:0d:28:31:f3:a0:
a9:66:e4:39:35:ef:24:06:2f:58:e0:48:d5:22:37:
64:e4:f9:02:14:df:d6:d2:3d:05:81:ac:98:90:82:
17:26:81:b2:1b:ce:bc:18:13:9d:70:bb:d0:d8:0f:
8d:9b:46:3a:cb:2b:6f:66:b4:78:64:2b:f9:a3:68:
5f:5b:82:9b:3a:6f:e0:74:16:11:83:7e:3e:32:8d:
c4:29:b6:9e:80:fc:0c:02:dd:25:3e:06:f6:76:eb:
b6:3b:ba:1a:cd:a2:40:8a:c2:a3:25:1a:43:67:e0:
5a:00:9e:60:42:16:e6:10:1e:25:40:f0:fe:26:26:
3b:73:05:53:39:bc:e7:96:e0:a0:74:99:be:0e:1a:
88:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:34:19:73:F8:D1:DC:1E:E1:68:80:65:F1:D7:EA:5E:C8:CA:04:C3
X509v3 Authority Key Identifier:
keyid:FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
de:ce:ae:5f:44:cc:78:fa:75:07:5b:f6:9c:57:af:92:09:11:
d6:8b:e7:33:9a:cd:84:bd:93:8c:8a:04:95:cc:24:08:2b:7b:
aa:4f:5a:69:ce:dc:8a:95:b9:94:f9:7c:a6:8a:eb:60:57:21:
e2:aa:47:fc:e7:d5:4f:98:94:f7:f7:6b:fc:47:cf:e3:3d:87:
08:27:cb:4a:41:e8:a5:41:80:46:73:17:b5:05:f8:c8:64:35:
08:9f:97:8c:22:d2:d1:0f:e7:f9:3c:cd:87:d2:74:75:ae:de:
d0:0d:b8:ec:33:4a:c9:2b:ff:58:00:66:34:06:ac:b2:df:65:
7f:2a:bc:65:a7:27:01:c9:5a:fb:39:38:9c:90:79:b0:a2:d2:
7c:e1:f0:fb:6a:e4:15:15:21:66:66:08:42:1d:82:2d:b4:ab:
45:22:80:c6:1a:2c:da:22:83:e8:36:33:4a:4e:22:f8:23:94:
78:69:4a:e5:7a:38:7a:50:14:e5:c9:d1:93:aa:ee:82:49:7c:
3a:5e:50:a5:9f:2c:85:c5:42:6a:63:a9:88:38:8f:93:40:89:
8d:7b:85:4e:d9:9e:58:0b:96:2d:17:ac:a9:79:e9:f7:3e:e2:
af:d0:06:f2:54:d1:57:21:13:bf:8f:80:c7:5b:e9:5a:5c:0e:
6b:04:ad:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIHoK5SEKaD0CUMhHlqrW0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjYTk4YjFkMGVjY2NjNGY2ZmYxYTdlN2RiODRiNGJiMmY1
NWIwOGQwHhcNMjUwNjA3MDIwMDQ4WhcNMjUwNjA4MDIwMDQ4WjAzMTEwLwYDVQQD
EyhhYjM0MTk3M2Y4ZDFkYzFlZTE2ODgwNjVmMWQ3ZWE1ZWM4Y2EwNGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkkKVai8J07wbYjWJF/r8zVvibP5a
UtLUV80tC81pKBFiNrOfkMkd8GQq4AadCSEldG6qGiEq7TSshXk4d1QCzVH7LCK1
kZIcO8SmKJyCxkKY5RIbBnIgIRnYULHj+EwUrZxYJogc/I01YpWWq3TzXMWuDSgx
86CpZuQ5Ne8kBi9Y4EjVIjdk5PkCFN/W0j0FgayYkIIXJoGyG868GBOdcLvQ2A+N
m0Y6yytvZrR4ZCv5o2hfW4KbOm/gdBYRg34+Mo3EKbaegPwMAt0lPgb2duu2O7oa
zaJAisKjJRpDZ+BaAJ5gQhbmEB4lQPD+JiY7cwVTObznluCgdJm+DhqIsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKs0GXP40dwe4WiAZfHX6l7IygTDMB8GA1UdIwQY
MBaAFPypix0OzMxPb/Gn59uEtLsvVbCNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85NzFlNzMtZmE4My00NTc5LTg1MzIt
NThmMGYzMjVjMmI4LzEvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS85NzFlNzMtZmE4My00NTc5LTg1MzItNThmMGYzMjVjMmI4
LzEvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3s6uX0TM
ePp1B1v2nFevkgkR1ovnM5rNhL2TjIoElcwkCCt7qk9aac7cipW5lPl8porrYFch
4qpH/OfVT5iU9/dr/EfP4z2HCCfLSkHopUGARnMXtQX4yGQ1CJ+XjCLS0Q/n+TzN
h9J0da7e0A247DNKySv/WABmNAasst9lfyq8ZacnAcla+zk4nJB5sKLSfOHw+2rk
FRUhZmYIQh2CLbSrRSKAxhos2iKD6DYzSk4i+COUeGlK5Xo4elAU5cnRk6rugkl8
Ol5QpZ8shcVCamOpiDiPk0CJjXuFTtmeWAuWLResqXnp9z7ir9AG8lTRVyETv4+A
x1vpWlwOawStMQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:22:59 2025 by rpki-client