Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
File: K5Ro565AOUbluk3mHMHEej2b794.mft (raw, json)
Hash identifier: KcT3pBnKah+ZvpvgpNSZ2lTW+xo0+Fr2erannAqtuxk=
Subject key identifier: 63:05:0B:F4:79:F5:53:63:F8:FE:F9:52:ED:95:E5:8D:3E:01:6C:2B
Authority key identifier: 2B:94:68:E7:AE:40:39:46:E5:BA:4D:E6:1C:C1:C4:7A:3D:9B:EF:DE
Certificate issuer: /CN=2b9468e7ae403946e5ba4de61cc1c47a3d9befde
Certificate serial: 01974855672BDE91994FFCBADAAECCE07D49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
Manifest number: 0A35
Signing time: Sat 07 Jun 2025 03:00:45 +0000
Manifest this update: Sat 07 Jun 2025 03:00:45 +0000
Manifest next update: Sun 08 Jun 2025 03:00:45 +0000
Files and hashes: 1: K5Ro565AOUbluk3mHMHEej2b794.crl (hash: UW81/49CaioVddE4Sa5W9+dETxjRoba8dc6WgFQlhog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:67:2b:de:91:99:4f:fc:ba:da:ae:cc:e0:7d:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b9468e7ae403946e5ba4de61cc1c47a3d9befde
Validity
Not Before: Jun 7 03:00:45 2025 GMT
Not After : Jun 8 03:00:45 2025 GMT
Subject: CN=63050bf479f55363f8fef952ed95e58d3e016c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c1:5a:1f:5a:1d:30:f1:ab:1a:aa:b9:a1:43:
42:fa:9a:bc:9d:cb:30:b3:0a:ef:32:0a:de:d6:1f:
59:89:da:0d:28:cc:ba:d7:b2:c9:8a:52:de:fd:75:
9e:ff:6f:99:5a:e0:94:28:7d:cf:fe:2d:6f:6c:a5:
d9:dd:55:9b:58:15:69:eb:e2:01:11:81:76:6e:ba:
f0:91:8d:81:41:a9:03:34:1c:ee:30:b8:2d:cb:b4:
eb:2b:ca:b1:c7:5f:53:60:3a:8e:72:c5:cc:dc:23:
1b:a1:5c:74:18:84:47:3c:d7:16:63:42:ff:fd:da:
f7:ea:55:82:7d:94:0d:2a:46:fc:2d:bf:67:aa:a7:
7d:d5:d0:70:e8:06:80:71:98:9d:aa:fb:40:64:5d:
c9:59:48:14:81:91:5b:2b:76:8e:98:ac:66:6c:a7:
cd:e9:d2:00:db:83:e6:91:2c:50:d8:30:f6:ca:8b:
ae:bf:3b:5a:7c:99:84:c8:7c:1d:eb:11:e7:00:db:
fe:9d:d9:77:20:28:4d:ce:34:77:4a:42:89:04:82:
07:61:75:30:00:b7:e8:b7:93:c8:e7:36:97:fc:00:
ea:fa:4c:90:cf:b1:64:66:b8:75:7d:4a:a2:08:d2:
74:77:ff:8b:96:ad:c7:48:8d:04:c0:5b:f0:26:57:
b8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:05:0B:F4:79:F5:53:63:F8:FE:F9:52:ED:95:E5:8D:3E:01:6C:2B
X509v3 Authority Key Identifier:
keyid:2B:94:68:E7:AE:40:39:46:E5:BA:4D:E6:1C:C1:C4:7A:3D:9B:EF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Ro565AOUbluk3mHMHEej2b794.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/4b5c18-8472-41db-b557-2269c1af2ad3/1/K5Ro565AOUbluk3mHMHEej2b794.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:5e:82:1e:d5:98:6e:75:ba:d6:24:74:2a:a0:ec:e0:3e:a8:
da:47:34:04:aa:8a:5c:b9:f8:d3:f8:0d:ab:1e:3c:e7:5e:54:
ae:63:fc:39:ba:41:cd:c9:81:2f:33:ae:9b:18:90:d4:42:90:
f8:b5:bc:06:8f:3a:36:8c:3a:0e:9e:e3:76:4d:4a:6d:6c:1b:
86:0f:4a:dd:38:bb:2f:15:f6:e6:71:84:18:78:24:cc:33:c6:
2b:8d:1f:2e:9e:f7:04:0d:f2:3c:2f:32:db:25:51:f4:50:4d:
62:ae:34:b9:f0:c2:32:19:f5:8d:c3:82:6c:70:59:4c:20:b7:
0b:b1:8c:97:d0:99:8b:a3:92:fc:0b:30:b9:2b:61:f3:c9:46:
bc:4c:7e:c9:56:20:48:fb:ac:b6:2f:4f:77:ea:0a:20:53:e4:
1d:42:a7:e6:e3:3e:14:03:71:38:73:ff:20:63:22:1f:e0:0d:
12:ba:7f:c7:1a:7d:35:6c:4f:dc:22:5c:bd:11:ea:d8:c6:62:
ee:e1:89:0d:c3:b5:90:b5:3b:5c:06:ee:72:b8:0e:3e:5a:36:
32:7b:10:9b:ba:c2:4e:3d:bd:21:89:90:fa:a7:88:89:ee:bb:
ad:87:4a:19:21:ef:47:85:3e:4b:87:77:a7:df:c7:64:88:58:
97:a3:d4:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIVWcr3pGZT/y62q7M4H1JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiOTQ2OGU3YWU0MDM5NDZlNWJhNGRlNjFjYzFjNDdhM2Q5
YmVmZGUwHhcNMjUwNjA3MDMwMDQ1WhcNMjUwNjA4MDMwMDQ1WjAzMTEwLwYDVQQD
Eyg2MzA1MGJmNDc5ZjU1MzYzZjhmZWY5NTJlZDk1ZTU4ZDNlMDE2YzJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28FaH1odMPGrGqq5oUNC+pq8ncsw
swrvMgre1h9ZidoNKMy617LJilLe/XWe/2+ZWuCUKH3P/i1vbKXZ3VWbWBVp6+IB
EYF2brrwkY2BQakDNBzuMLgty7TrK8qxx19TYDqOcsXM3CMboVx0GIRHPNcWY0L/
/dr36lWCfZQNKkb8Lb9nqqd91dBw6AaAcZidqvtAZF3JWUgUgZFbK3aOmKxmbKfN
6dIA24PmkSxQ2DD2youuvztafJmEyHwd6xHnANv+ndl3IChNzjR3SkKJBIIHYXUw
ALfot5PI5zaX/ADq+kyQz7FkZrh1fUqiCNJ0d/+Llq3HSI0EwFvwJle41QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGMFC/R59VNj+P75Uu2V5Y0+AWwrMB8GA1UdIwQY
MBaAFCuUaOeuQDlG5bpN5hzBxHo9m+/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzVSbzU2NUFPVWJsdWszbUhNSEVlajJiNzk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi80YjVjMTgtODQ3Mi00MWRiLWI1NTct
MjI2OWMxYWYyYWQzLzEvSzVSbzU2NUFPVWJsdWszbUhNSEVlajJiNzk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi80YjVjMTgtODQ3Mi00MWRiLWI1NTctMjI2OWMxYWYyYWQz
LzEvSzVSbzU2NUFPVWJsdWszbUhNSEVlajJiNzk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMV6CHtWY
bnW61iR0KqDs4D6o2kc0BKqKXLn40/gNqx48515UrmP8ObpBzcmBLzOumxiQ1EKQ
+LW8Bo86Now6Dp7jdk1KbWwbhg9K3Ti7LxX25nGEGHgkzDPGK40fLp73BA3yPC8y
2yVR9FBNYq40ufDCMhn1jcOCbHBZTCC3C7GMl9CZi6OS/AswuSth88lGvEx+yVYg
SPusti9Pd+oKIFPkHUKn5uM+FANxOHP/IGMiH+ANErp/xxp9NWxP3CJcvRHq2MZi
7uGJDcO1kLU7XAbucrgOPlo2MnsQm7rCTj29IYmQ+qeIie67rYdKGSHvR4U+S4d3
p9/HZIhYl6PUqg==
-----END CERTIFICATE-----
Generated at Sat Jun 7 11:34:15 2025 by rpki-client