Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
File: KRKNnU8aVulw-HRtaCesESD5Jmc.mft (raw, json)
Hash identifier: qdRhM7KfFwVkM+l5SYTGHNTdthYui50KITplxiDIAhY=
Subject key identifier: 4D:09:31:CC:31:CC:61:A0:16:43:9A:B4:F8:C2:54:83:E1:52:95:97
Authority key identifier: 29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
Certificate issuer: /CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Certificate serial: 01974FD7E182AC9AFD53B7E089398013EC1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
Manifest number: 85
Signing time: Sun 08 Jun 2025 14:00:37 +0000
Manifest this update: Sun 08 Jun 2025 14:00:37 +0000
Manifest next update: Mon 09 Jun 2025 14:00:37 +0000
Files and hashes: 1: F89K3Q0XwdNsBMWEF-9n8HX8seQ.roa (hash: k36l/8lxtcKwAJTjrdDRO46ly7DD3aRm+mH7GwvYLjg=)
2: KRKNnU8aVulw-HRtaCesESD5Jmc.crl (hash: b1DIU1Yvx7QMA4JiL2Ei02e6cldCIuzowquDyFDZXfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 11:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:e1:82:ac:9a:fd:53:b7:e0:89:39:80:13:ec:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Validity
Not Before: Jun 8 14:00:37 2025 GMT
Not After : Jun 9 14:00:37 2025 GMT
Subject: CN=4d0931cc31cc61a016439ab4f8c25483e1529597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ef:fb:76:03:6c:5b:92:c6:38:dc:6f:f5:89:
67:e8:0f:af:71:05:1d:31:5c:2f:3a:d5:d9:24:7a:
b8:55:2d:8a:9f:a3:f1:49:43:13:81:ce:4e:24:12:
16:57:3e:2e:d5:e8:ae:87:6c:4d:4b:e2:67:ad:c1:
96:70:9d:a9:a4:07:9a:ca:26:bf:2d:88:ad:75:52:
ee:61:20:d7:c3:29:d3:cf:cf:0b:ed:26:35:80:14:
84:d4:57:4b:c3:bf:ff:75:1a:b1:c8:1c:8c:9e:da:
5f:45:42:e5:57:fe:d6:14:d7:0d:fe:1c:39:4b:33:
4d:b0:a6:a9:54:f4:eb:0e:29:57:8e:b5:9c:7f:78:
d3:7e:fa:50:16:6c:42:cb:06:db:3c:b5:b9:92:cc:
84:81:da:2f:8e:c4:34:31:a7:3f:37:a1:79:cd:6d:
52:7e:84:ba:19:d7:9d:79:b2:ee:23:0b:9a:a4:c2:
4e:5a:8f:07:0f:35:ac:b5:33:7e:34:f3:b4:59:d0:
59:07:4e:36:fe:b7:d8:de:49:1f:a6:fd:f8:b2:61:
a1:26:c9:5b:16:6d:37:cd:c0:80:3c:65:b3:4a:94:
f4:71:98:9d:31:3b:59:ee:78:58:85:1b:7b:ae:cf:
06:6f:53:9d:d9:c9:f1:ac:09:61:cb:ce:9a:6c:43:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:09:31:CC:31:CC:61:A0:16:43:9A:B4:F8:C2:54:83:E1:52:95:97
X509v3 Authority Key Identifier:
keyid:29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:e9:87:97:ee:d2:9b:59:79:38:a8:38:6e:6c:c9:30:56:61:
2e:8b:ad:6d:05:47:9f:42:ee:4f:11:57:19:d9:f8:56:68:71:
c4:b3:1d:0f:ea:26:b5:95:63:2a:75:89:f2:86:82:5f:64:b5:
92:3b:2f:98:2f:da:68:b6:ca:11:33:31:1d:fb:9c:26:da:2c:
b2:67:25:92:8e:49:cb:92:08:4d:ea:1a:4c:ce:4c:7b:cb:ae:
38:57:61:2f:d9:d6:87:73:87:73:c1:a1:44:d0:f8:01:76:e0:
7e:64:4c:b4:6b:6c:c1:db:79:bb:a0:c8:31:56:c6:2c:3b:cd:
78:8d:76:fd:3c:ba:e7:ee:91:01:a4:6c:c8:9c:ce:fe:8f:02:
20:41:b9:3d:29:32:9c:fe:00:4f:cc:51:27:0c:61:7f:0b:da:
76:9a:76:af:e3:7f:a5:cf:d4:f0:0e:6e:50:8b:da:51:2f:e2:
4b:9b:eb:83:8b:7e:9a:dc:a5:57:f3:e7:13:8b:53:57:92:98:
41:dc:6e:05:44:af:8f:c3:05:3b:53:42:3a:66:ab:1e:f3:d0:
66:9d:96:63:10:e2:21:a3:06:52:bd:07:b4:97:d8:80:8b:69:
45:bd:03:47:dd:b3:bd:57:e3:c4:31:e2:60:43:d7:6e:29:b1:
75:7b:e8:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdP1+GCrJr9U7fgiTmAE+wfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MTI4ZDlkNGYxYTU2ZTk3MGY4NzQ2ZDY4MjdhYzExMjBm
OTI2NjcwHhcNMjUwNjA4MTQwMDM3WhcNMjUwNjA5MTQwMDM3WjAzMTEwLwYDVQQD
Eyg0ZDA5MzFjYzMxY2M2MWEwMTY0MzlhYjRmOGMyNTQ4M2UxNTI5NTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2O/7dgNsW5LGONxv9Yln6A+vcQUd
MVwvOtXZJHq4VS2Kn6PxSUMTgc5OJBIWVz4u1eiuh2xNS+JnrcGWcJ2ppAeayia/
LYitdVLuYSDXwynTz88L7SY1gBSE1FdLw7//dRqxyByMntpfRULlV/7WFNcN/hw5
SzNNsKapVPTrDilXjrWcf3jTfvpQFmxCywbbPLW5ksyEgdovjsQ0Mac/N6F5zW1S
foS6GdedebLuIwuapMJOWo8HDzWstTN+NPO0WdBZB042/rfY3kkfpv34smGhJslb
Fm03zcCAPGWzSpT0cZidMTtZ7nhYhRt7rs8Gb1Od2cnxrAlhy86abEMSaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE0JMcwxzGGgFkOatPjCVIPhUpWXMB8GA1UdIwQY
MBaAFCkSjZ1PGlbpcPh0bWgnrBEg+SZnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8xMTQ3N2MtODQ1Mi00YWJiLTkxNDct
ZjBiMDljMGM5MGM3LzEvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi8xMTQ3N2MtODQ1Mi00YWJiLTkxNDctZjBiMDljMGM5MGM3
LzEvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoumHl+7S
m1l5OKg4bmzJMFZhLoutbQVHn0LuTxFXGdn4VmhxxLMdD+omtZVjKnWJ8oaCX2S1
kjsvmC/aaLbKETMxHfucJtossmclko5Jy5IITeoaTM5Me8uuOFdhL9nWh3OHc8Gh
RND4AXbgfmRMtGtswdt5u6DIMVbGLDvNeI12/Ty65+6RAaRsyJzO/o8CIEG5PSky
nP4AT8xRJwxhfwvadpp2r+N/pc/U8A5uUIvaUS/iS5vrg4t+mtylV/PnE4tTV5KY
QdxuBUSvj8MFO1NCOmarHvPQZp2WYxDiIaMGUr0HtJfYgItpRb0DR92zvVfjxDHi
YEPXbimxdXvoUQ==
-----END CERTIFICATE-----
Generated at Sun Jun 8 18:41:37 2025 by rpki-client