Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
File: KYlkeFHvzRmJcu09FJzLvenFXAA.mft (raw, json)
Hash identifier: 8GC+oxdwQ1BEBiynU1DxIADKTEXGyK/6EXAXtb4ZCQI=
Subject key identifier: 31:CE:A7:FD:96:E1:97:A8:7F:C9:13:C6:79:61:42:38:9A:5D:79:73
Authority key identifier: 29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00
Certificate issuer: /CN=2989647851efcd198972ed3d149ccbbde9c55c00
Certificate serial: 019650B6B994888C894F8B5CCFB27822C958
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
Manifest number: 0834
Signing time: Sun 20 Apr 2025 01:01:14 +0000
Manifest this update: Sun 20 Apr 2025 01:01:14 +0000
Manifest next update: Mon 21 Apr 2025 01:01:14 +0000
Files and hashes: 1: 1ndyHQjZ22gElMY09b9UIH97Fd0.roa (hash: d9wD6lD21fFSwiL6i7e8/Tvl1y891h5uDv49+B9KB5s=)
2: KYlkeFHvzRmJcu09FJzLvenFXAA.crl (hash: av0kLEb+27xjdImgcO6X3df+jkTP/nLhs155MfiwMVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:b6:b9:94:88:8c:89:4f:8b:5c:cf:b2:78:22:c9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989647851efcd198972ed3d149ccbbde9c55c00
Validity
Not Before: Apr 20 01:01:14 2025 GMT
Not After : Apr 21 01:01:14 2025 GMT
Subject: CN=31cea7fd96e197a87fc913c6796142389a5d7973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:fe:cf:d2:9a:0c:f6:67:a3:89:29:07:f7:1b:
72:23:15:62:18:46:88:6c:29:d3:06:84:21:89:05:
7b:04:59:e5:28:3e:79:35:ec:74:8e:27:65:98:df:
41:a5:cb:97:60:04:f0:2a:70:8d:e5:b8:93:00:d8:
49:e6:38:60:01:30:40:29:f7:81:c6:c8:53:fd:4d:
d0:f1:ae:eb:cb:d1:32:d2:59:a7:10:aa:1b:55:e8:
30:26:c1:dc:55:51:62:eb:29:6b:20:ce:9a:81:38:
0f:00:bf:61:1c:88:9f:d1:8d:9b:db:83:6c:82:d7:
6e:22:bf:d7:26:80:4a:3e:08:ef:c0:4b:5f:3d:08:
79:17:47:da:d7:88:07:af:e8:dd:e5:c2:a2:26:00:
ce:9b:09:ad:cb:a6:96:c6:05:c0:05:6a:5e:27:7c:
02:33:a9:67:a4:78:a3:29:6f:35:d6:fc:6d:b9:f2:
87:a8:8d:14:75:33:1a:f2:90:5d:60:fe:40:50:de:
ce:11:ba:8a:66:68:93:89:05:1e:3d:65:ef:7e:06:
1a:ac:a1:3d:09:d1:ff:94:43:63:52:e1:9b:e5:bd:
17:c6:8e:82:db:f2:ee:81:de:c0:06:00:19:d9:a1:
1e:58:d3:37:03:42:15:b6:11:b3:51:26:20:66:d2:
a3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CE:A7:FD:96:E1:97:A8:7F:C9:13:C6:79:61:42:38:9A:5D:79:73
X509v3 Authority Key Identifier:
keyid:29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d8:dc:53:7c:76:c1:51:d4:bf:a1:a8:06:85:53:f9:b9:13:
14:3c:57:73:1c:07:1a:cc:0b:7d:fc:8d:5b:8b:71:6a:7f:9e:
16:b0:e1:22:09:b1:57:2b:d8:33:06:4e:0e:5b:ac:3f:a0:4c:
c0:3f:58:cd:bf:68:fb:17:5f:97:5b:58:22:d2:ec:84:33:bc:
57:44:3b:c9:95:67:38:22:c5:80:b0:bd:9b:eb:cf:98:ac:48:
c7:0e:0e:ed:f5:47:3e:52:f5:4d:d4:8e:94:62:0b:44:ca:3f:
b3:af:a8:07:76:2b:7d:f7:c5:9a:39:37:f3:a7:83:82:b6:f7:
3a:81:21:42:3d:09:a5:6c:3a:e6:e3:0d:5a:f8:81:70:6e:99:
94:e9:56:d8:2b:d2:c7:74:3c:bc:29:c6:96:b1:ed:32:14:97:
fc:78:f4:b3:dd:47:8c:3d:83:bd:f1:3e:04:8c:ef:a3:e3:4b:
dd:d5:18:b5:b5:21:c3:ad:cd:c1:33:9e:9b:08:91:87:22:0a:
3b:fa:06:f9:d3:26:04:44:28:81:88:aa:c8:c0:4a:95:d9:a0:
12:9f:6e:de:e5:28:30:29:c0:20:02:e7:51:1d:8b:be:56:23:
d7:5c:c8:c0:07:79:26:59:50:8a:6c:d7:7f:76:9a:6e:12:3c:
ff:3c:7d:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZQtrmUiIyJT4tcz7J4IslYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ODk2NDc4NTFlZmNkMTk4OTcyZWQzZDE0OWNjYmJkZTlj
NTVjMDAwHhcNMjUwNDIwMDEwMTE0WhcNMjUwNDIxMDEwMTE0WjAzMTEwLwYDVQQD
EygzMWNlYTdmZDk2ZTE5N2E4N2ZjOTEzYzY3OTYxNDIzODlhNWQ3OTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/7P0poM9mejiSkH9xtyIxViGEaI
bCnTBoQhiQV7BFnlKD55Nex0jidlmN9BpcuXYATwKnCN5biTANhJ5jhgATBAKfeB
xshT/U3Q8a7ry9Ey0lmnEKobVegwJsHcVVFi6ylrIM6agTgPAL9hHIif0Y2b24Ns
gtduIr/XJoBKPgjvwEtfPQh5F0fa14gHr+jd5cKiJgDOmwmty6aWxgXABWpeJ3wC
M6lnpHijKW811vxtufKHqI0UdTMa8pBdYP5AUN7OEbqKZmiTiQUePWXvfgYarKE9
CdH/lENjUuGb5b0Xxo6C2/Lugd7ABgAZ2aEeWNM3A0IVthGzUSYgZtKj1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDHOp/2W4Zeof8kTxnlhQjiaXXlzMB8GA1UdIwQY
MBaAFCmJZHhR780ZiXLtPRScy73pxVwAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy9hYjVlODgtZDJmOS00ODdiLWJiOTIt
YTRjYjFjZmQwMGI4LzEvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy9hYjVlODgtZDJmOS00ODdiLWJiOTItYTRjYjFjZmQwMGI4
LzEvS1lsa2VGSHZ6Um1KY3UwOUZKekx2ZW5GWEFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADtjcU3x2
wVHUv6GoBoVT+bkTFDxXcxwHGswLffyNW4txan+eFrDhIgmxVyvYMwZODlusP6BM
wD9Yzb9o+xdfl1tYItLshDO8V0Q7yZVnOCLFgLC9m+vPmKxIxw4O7fVHPlL1TdSO
lGILRMo/s6+oB3YrfffFmjk386eDgrb3OoEhQj0JpWw65uMNWviBcG6ZlOlW2CvS
x3Q8vCnGlrHtMhSX/Hj0s91HjD2DvfE+BIzvo+NL3dUYtbUhw63NwTOemwiRhyIK
O/oG+dMmBEQogYiqyMBKldmgEp9u3uUoMCnAIALnUR2LvlYj11zIwAd5JllQimzX
f3aabhI8/zx9QA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 04:27:00 2025 by rpki-client