Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
File: KeoL3n9pK8X9wLFoumFKAnLy5k0.mft (raw, json)
Hash identifier: ahtsnIaOToGyJXDhL28M39zpVVr7TUs0HRvnN8QaRzg=
Subject key identifier: 63:5F:FB:2C:11:F2:3C:5E:67:26:D3:23:BB:B4:FF:3D:02:87:95:47
Authority key identifier: 29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
Certificate issuer: /CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Certificate serial: 019641E7DE3DD88DF7610B2306467B1007D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
Manifest number: 0B5F
Signing time: Thu 17 Apr 2025 04:00:36 +0000
Manifest this update: Thu 17 Apr 2025 04:00:36 +0000
Manifest next update: Fri 18 Apr 2025 04:00:36 +0000
Files and hashes: 1: 9cEvXYVcBJeRVXoK10hhOCyNhJY.roa (hash: ihTe2JjgXGvlLA7K+HxYQQd7iWcLoXsDNyag9kYHBGk=)
2: KeoL3n9pK8X9wLFoumFKAnLy5k0.crl (hash: 1P6JkX/+NlUZRAqbD/KTeFcMCBllzXxmyD9qdNVwE+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:e7:de:3d:d8:8d:f7:61:0b:23:06:46:7b:10:07:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Validity
Not Before: Apr 17 04:00:36 2025 GMT
Not After : Apr 18 04:00:36 2025 GMT
Subject: CN=635ffb2c11f23c5e6726d323bbb4ff3d02879547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d8:a2:eb:2c:2b:de:f3:ba:e2:fb:70:f3:8f:
34:60:09:53:04:1c:91:4e:9c:c8:0a:0d:f9:1b:58:
2d:66:09:38:7e:6b:88:79:5e:da:70:e5:9d:f5:d7:
2d:3e:d9:3b:35:78:23:db:79:05:da:64:bb:ca:2e:
e5:b7:ee:f9:3c:f6:d0:77:e4:59:e9:b1:00:d1:6d:
6d:f8:e6:db:be:a9:02:d0:63:f0:c9:87:ed:3d:c2:
4b:08:7e:e1:8a:7f:3b:66:b8:5b:db:74:2b:fd:17:
7a:23:62:e8:2c:21:bb:ee:c1:d1:a3:a8:0d:99:aa:
08:76:76:37:e9:26:3f:07:8f:4f:6a:0e:a0:a3:33:
cd:ad:b3:54:b0:49:d4:b4:4d:77:3f:c9:bb:32:7c:
36:a7:43:24:3d:86:54:51:86:72:69:27:00:f9:36:
d7:67:51:6b:81:56:77:a4:ac:96:0d:31:d9:be:05:
7e:a0:d5:5b:3b:20:81:3d:4c:85:6c:7c:68:18:cc:
cc:07:26:1f:58:0a:6a:c4:77:3d:24:17:e3:6b:2a:
6c:fc:ef:cb:8b:64:73:08:0f:3d:42:1b:37:af:5a:
15:a3:f9:18:e8:bc:b0:8e:5d:6a:c2:42:30:44:35:
d8:5d:83:07:e1:e9:4d:51:48:98:67:33:24:84:f5:
82:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:5F:FB:2C:11:F2:3C:5E:67:26:D3:23:BB:B4:FF:3D:02:87:95:47
X509v3 Authority Key Identifier:
keyid:29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:80:0c:9a:31:af:5d:51:b4:a0:11:ea:23:94:b5:17:d5:ce:
e1:dc:83:b7:17:2b:55:47:95:c6:2a:c6:15:9f:5d:63:f4:f0:
ea:6b:74:ca:72:6b:a7:01:ad:3c:3f:d8:32:77:b2:fa:29:41:
e6:0e:b0:39:36:a2:e1:1e:ac:bf:8b:c2:ac:68:52:95:bf:c6:
63:fd:06:a5:e2:77:a8:7a:7b:dc:93:ba:c8:29:d1:4c:97:f0:
be:0f:73:4b:54:8b:ba:37:97:d5:20:8a:32:b2:43:47:ba:c5:
58:3c:04:5d:86:e1:6b:2b:db:68:aa:a4:ca:01:8e:03:86:5e:
e0:f5:ed:7b:82:a2:7a:50:90:c9:d7:7f:39:3b:0d:f0:81:05:
f8:32:88:4b:7e:fc:55:36:e4:2c:a8:fa:11:2d:94:29:c4:ac:
a2:08:a7:53:c2:1c:2e:19:0f:85:ec:bc:b0:a7:9e:36:a3:dd:
08:c4:7b:d9:78:3f:6e:02:1c:25:7b:5c:3f:ff:17:bb:3d:f5:
b3:07:42:31:75:77:73:06:ab:3d:9c:c6:49:f7:9c:5d:0f:65:
38:42:17:12:da:48:5d:bb:b5:a6:2b:a2:69:90:80:44:0d:9f:
e8:3d:7b:31:40:ac:a8:39:b5:96:8a:38:4d:95:34:65:76:2c:
17:b1:86:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZB59492I33YQsjBkZ7EAfUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZWEwYmRlN2Y2OTJiYzVmZGMwYjE2OGJhNjE0YTAyNzJm
MmU2NGQwHhcNMjUwNDE3MDQwMDM2WhcNMjUwNDE4MDQwMDM2WjAzMTEwLwYDVQQD
Eyg2MzVmZmIyYzExZjIzYzVlNjcyNmQzMjNiYmI0ZmYzZDAyODc5NTQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9ii6ywr3vO64vtw8480YAlTBByR
TpzICg35G1gtZgk4fmuIeV7acOWd9dctPtk7NXgj23kF2mS7yi7lt+75PPbQd+RZ
6bEA0W1t+ObbvqkC0GPwyYftPcJLCH7hin87Zrhb23Qr/Rd6I2LoLCG77sHRo6gN
maoIdnY36SY/B49Pag6gozPNrbNUsEnUtE13P8m7Mnw2p0MkPYZUUYZyaScA+TbX
Z1FrgVZ3pKyWDTHZvgV+oNVbOyCBPUyFbHxoGMzMByYfWApqxHc9JBfjayps/O/L
i2RzCA89Qhs3r1oVo/kY6Lywjl1qwkIwRDXYXYMH4elNUUiYZzMkhPWCnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGNf+ywR8jxeZybTI7u0/z0Ch5VHMB8GA1UdIwQY
MBaAFCnqC95/aSvF/cCxaLphSgJy8uZNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2VvTDNuOXBLOFg5d0xGb3VtRktBbkx5NWswLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kMmZmNWItMDAwOC00NTcyLTkzODAt
OTc2YzA0YmRmMThmLzEvS2VvTDNuOXBLOFg5d0xGb3VtRktBbkx5NWswLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9kMmZmNWItMDAwOC00NTcyLTkzODAtOTc2YzA0YmRmMThm
LzEvS2VvTDNuOXBLOFg5d0xGb3VtRktBbkx5NWswLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS4AMmjGv
XVG0oBHqI5S1F9XO4dyDtxcrVUeVxirGFZ9dY/Tw6mt0ynJrpwGtPD/YMney+ilB
5g6wOTai4R6sv4vCrGhSlb/GY/0GpeJ3qHp73JO6yCnRTJfwvg9zS1SLujeX1SCK
MrJDR7rFWDwEXYbhayvbaKqkygGOA4Ze4PXte4KielCQydd/OTsN8IEF+DKIS378
VTbkLKj6ES2UKcSsoginU8IcLhkPhey8sKeeNqPdCMR72Xg/bgIcJXtcP/8Xuz31
swdCMXV3cwarPZzGSfecXQ9lOEIXEtpIXbu1piuiaZCARA2f6D17MUCsqDm1loo4
TZU0ZXYsF7GG4A==
-----END CERTIFICATE-----
Generated at Thu Apr 17 07:02:37 2025 by rpki-client