Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
File: kh2gU5IfUoNniBiPgvYt1aqXP-k.mft (raw, json)
Hash identifier: 8W+2mylMhX/OZWnSxfAj+lKve7uMHtuVJWxvEXKO9Fk=
Subject key identifier: A8:DA:35:A7:DA:97:A0:1B:0A:5B:4C:50:18:1C:6D:7D:F9:2D:8F:6E
Authority key identifier: 92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
Certificate issuer: /CN=921da053921f52836788188f82f62dd5aa973fe9
Certificate serial: 01964BFD57FB8FB1DF8AB1AE1BE45F0E5ACA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
Manifest number: 0DBE
Signing time: Sat 19 Apr 2025 03:00:16 +0000
Manifest this update: Sat 19 Apr 2025 03:00:16 +0000
Manifest next update: Sun 20 Apr 2025 03:00:16 +0000
Files and hashes: 1: kh2gU5IfUoNniBiPgvYt1aqXP-k.crl (hash: svVDA9nNXVFp00kGkQH8mcF/A5+JwUDFgoCXLnE8/n4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:fd:57:fb:8f:b1:df:8a:b1:ae:1b:e4:5f:0e:5a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921da053921f52836788188f82f62dd5aa973fe9
Validity
Not Before: Apr 19 03:00:16 2025 GMT
Not After : Apr 20 03:00:16 2025 GMT
Subject: CN=a8da35a7da97a01b0a5b4c50181c6d7df92d8f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a2:ec:4c:76:09:7d:df:a9:cd:f3:86:a9:02:
41:60:81:56:30:67:a2:46:6a:30:11:3d:98:67:16:
94:98:bf:5b:1e:1c:38:1a:35:19:40:89:4b:98:22:
10:b4:04:4b:4f:a5:46:dd:78:98:e1:a3:a6:f6:1f:
55:31:c4:a7:77:15:ed:55:94:76:3b:20:e5:7e:43:
f8:cd:cf:70:c5:44:f9:e0:36:c5:c7:66:a3:7f:2f:
ab:02:26:bf:98:ba:3d:9b:07:9e:40:f7:21:8c:aa:
13:7d:31:da:9d:6a:41:0b:db:85:da:f7:90:5d:ef:
ba:cb:72:d3:5c:bd:0e:52:84:1c:d1:f6:2a:c8:78:
8b:35:35:b9:9c:5c:28:b5:3f:b0:a9:2d:31:0e:48:
3d:ae:69:9b:18:9e:df:fa:73:8a:c9:3a:1c:00:97:
79:ee:34:a7:95:fc:ef:22:bb:ac:08:be:7e:a9:69:
69:ee:d4:2b:21:76:81:c4:c9:60:43:32:08:e5:7d:
1e:0a:a1:9d:be:6c:67:e4:d1:be:99:eb:d3:68:eb:
f6:a7:d9:3e:0a:56:31:56:16:85:46:71:d7:4f:51:
51:fe:81:28:57:6f:22:0e:ee:90:8f:17:41:7d:e9:
a5:fc:2b:9e:23:32:24:7e:fc:64:19:d0:6a:b9:77:
fb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:DA:35:A7:DA:97:A0:1B:0A:5B:4C:50:18:1C:6D:7D:F9:2D:8F:6E
X509v3 Authority Key Identifier:
keyid:92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:e6:b2:cd:db:97:f6:30:34:e5:0d:46:6a:d3:c8:23:a7:51:
48:34:17:7f:6d:b6:de:0d:fb:b3:16:5a:6f:db:e2:99:1c:ab:
6b:79:d7:7f:f6:1b:a3:c6:22:04:82:cc:61:b4:e6:b7:c0:7b:
74:d3:19:29:dd:89:bf:a4:7e:dc:7a:dc:79:81:08:44:0d:99:
de:60:27:72:7f:8e:5f:fa:d5:59:de:51:72:be:e7:27:13:15:
cc:5b:38:09:20:d0:a9:93:1f:b3:c2:e9:80:8a:9c:ef:54:ef:
69:c1:66:3c:95:a7:b2:f7:cf:3d:ef:9d:72:ed:3b:be:55:5e:
1f:0a:8e:7d:fc:81:b7:50:c5:df:a3:96:d6:a6:d5:ea:a3:d6:
81:2a:5d:a2:89:1a:a1:2d:66:ed:a8:b7:0a:39:fd:3f:5f:a7:
8e:8d:49:c4:44:50:8d:06:92:38:60:6c:c7:22:fa:eb:7e:7a:
cd:36:df:f3:bc:ee:7b:d9:63:18:3f:95:5e:51:20:e0:f7:27:
f7:b5:0d:d5:1a:65:d2:64:74:2b:8d:51:a1:ca:cf:d5:c5:a0:
31:a7:76:27:5c:a4:b6:e0:47:f3:97:40:db:5d:41:57:c1:6b:
c0:57:88:35:aa:6c:cf:56:8a:ca:e1:2f:13:8e:0b:a4:30:69:
06:85:26:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZL/Vf7j7HfirGuG+RfDlrKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWRhMDUzOTIxZjUyODM2Nzg4MTg4ZjgyZjYyZGQ1YWE5
NzNmZTkwHhcNMjUwNDE5MDMwMDE2WhcNMjUwNDIwMDMwMDE2WjAzMTEwLwYDVQQD
EyhhOGRhMzVhN2RhOTdhMDFiMGE1YjRjNTAxODFjNmQ3ZGY5MmQ4ZjZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqLsTHYJfd+pzfOGqQJBYIFWMGei
RmowET2YZxaUmL9bHhw4GjUZQIlLmCIQtARLT6VG3XiY4aOm9h9VMcSndxXtVZR2
OyDlfkP4zc9wxUT54DbFx2ajfy+rAia/mLo9mweeQPchjKoTfTHanWpBC9uF2veQ
Xe+6y3LTXL0OUoQc0fYqyHiLNTW5nFwotT+wqS0xDkg9rmmbGJ7f+nOKyTocAJd5
7jSnlfzvIrusCL5+qWlp7tQrIXaBxMlgQzII5X0eCqGdvmxn5NG+mevTaOv2p9k+
ClYxVhaFRnHXT1FR/oEoV28iDu6QjxdBfeml/CueIzIkfvxkGdBquXf7HwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKjaNafal6AbCltMUBgcbX35LY9uMB8GA1UdIwQY
MBaAFJIdoFOSH1KDZ4gYj4L2LdWqlz/pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2gyZ1U1SWZVb05uaUJpUGd2WXQxYXFYUC1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8zZTZlYTUtMGQ0ZS00MzRmLWE2ZjMt
ZWIzNDZkOWNlOWUwLzEva2gyZ1U1SWZVb05uaUJpUGd2WXQxYXFYUC1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS8zZTZlYTUtMGQ0ZS00MzRmLWE2ZjMtZWIzNDZkOWNlOWUw
LzEva2gyZ1U1SWZVb05uaUJpUGd2WXQxYXFYUC1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYeayzduX
9jA05Q1GatPII6dRSDQXf2223g37sxZab9vimRyra3nXf/Ybo8YiBILMYbTmt8B7
dNMZKd2Jv6R+3HrceYEIRA2Z3mAncn+OX/rVWd5Rcr7nJxMVzFs4CSDQqZMfs8Lp
gIqc71TvacFmPJWnsvfPPe+dcu07vlVeHwqOffyBt1DF36OW1qbV6qPWgSpdooka
oS1m7ai3Cjn9P1+njo1JxERQjQaSOGBsxyL66356zTbf87zue9ljGD+VXlEg4Pcn
97UN1Rpl0mR0K41RocrP1cWgMad2J1yktuBH85dA211BV8FrwFeINapsz1aKyuEv
E44LpDBpBoUmMQ==
-----END CERTIFICATE-----
Generated at Sat Apr 19 05:41:18 2025 by rpki-client