Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
File: KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft (raw, json)
Hash identifier: RIAkh0Yv4/rNXV+yuHlomV7dEWXMGJPf1q8WtGAiD9E=
Subject key identifier: 06:14:85:3C:1D:44:A4:7B:4D:CD:8A:6F:97:9A:68:02:55:17:F7:F0
Authority key identifier: 29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39
Certificate issuer: /CN=29b1210ec9105c717d098f9f0d00d9dea2322539
Certificate serial: 01968210D66C5A5009B9581A2BCEBF264010
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
Manifest number: 11E7
Signing time: Tue 29 Apr 2025 15:01:03 +0000
Manifest this update: Tue 29 Apr 2025 15:01:03 +0000
Manifest next update: Wed 30 Apr 2025 15:01:03 +0000
Files and hashes: 1: KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl (hash: 7DdSIV4yLx0CT2Aew6UzKvyRXjmky96X1ytnT77Zn58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:10:d6:6c:5a:50:09:b9:58:1a:2b:ce:bf:26:40:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b1210ec9105c717d098f9f0d00d9dea2322539
Validity
Not Before: Apr 29 15:01:03 2025 GMT
Not After : Apr 30 15:01:03 2025 GMT
Subject: CN=0614853c1d44a47b4dcd8a6f979a68025517f7f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c6:f1:65:4e:54:15:35:ef:18:d2:e5:88:96:
0f:a9:51:f9:5f:0b:5a:47:5d:8f:df:ea:8e:73:af:
ac:ff:54:b0:23:0e:63:37:56:94:77:28:69:cf:54:
5b:1f:4a:4b:8e:e4:05:45:61:6c:d9:dc:99:0c:f8:
dc:ed:84:3b:64:44:4c:26:3c:dc:d3:81:51:ea:51:
b1:55:3a:26:f4:ba:9f:f1:e5:38:ad:e7:48:cf:2a:
bc:ea:b4:ac:1a:4f:04:2d:e5:1e:e3:4d:40:a0:b7:
26:70:32:2b:ee:65:2e:b0:25:47:0e:8b:5b:a3:ef:
4b:b7:00:40:9e:2a:df:2d:63:1e:10:43:64:f7:d9:
ae:d1:0a:7b:98:c5:8f:36:df:c4:f2:73:f7:fc:99:
05:c2:a4:b3:b3:ee:8a:b5:3a:11:c1:74:6c:4a:0b:
a4:3f:77:5b:e7:57:1a:bf:47:44:80:47:ef:6d:28:
d4:3e:c4:a4:46:8b:60:7d:b9:38:5d:96:a1:b8:63:
2d:d8:ef:f2:0b:c3:98:99:a2:9f:9e:b5:d9:24:ed:
49:98:3f:7d:3b:35:40:26:1c:b3:d8:8e:79:f0:3b:
31:0c:1f:7a:4d:35:bd:7c:95:c1:b9:59:3a:73:18:
da:96:69:5b:87:34:ff:28:80:b5:df:56:ae:22:65:
82:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:14:85:3C:1D:44:A4:7B:4D:CD:8A:6F:97:9A:68:02:55:17:F7:F0
X509v3 Authority Key Identifier:
keyid:29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:12:83:b1:74:30:0c:ee:97:12:4d:af:33:0f:82:10:57:3f:
9f:e7:0a:cd:df:d0:2e:f0:b0:c2:e2:77:1b:7e:9b:5c:13:ec:
f0:37:24:0c:d1:20:82:6a:40:59:49:c7:58:02:6f:a6:fb:23:
c2:3f:57:37:d5:9f:01:0a:48:61:20:55:45:0d:99:4d:13:12:
50:4e:1d:3e:cf:5d:0b:6c:8c:0c:04:29:dc:50:22:88:e9:2f:
bb:56:0f:6c:00:dd:c3:40:fa:db:ad:ef:da:8e:f7:e1:14:37:
52:3e:24:92:b9:2b:f2:75:e0:e3:da:47:a0:f2:83:f8:aa:45:
99:85:37:ca:d0:df:f6:17:67:f8:0c:9c:17:c9:dc:52:84:14:
4a:d9:a1:73:02:57:5d:9d:3c:ee:e1:53:ea:71:1f:15:e6:49:
42:ef:d6:09:c7:df:8f:69:3c:75:8e:67:4b:cc:95:13:50:6e:
ef:64:c4:0e:95:c9:5f:8b:63:6d:ea:34:6d:05:ff:3e:ae:6e:
56:c6:4c:21:b9:6d:df:07:91:1b:a9:0e:5a:33:b3:4f:89:64:
a9:3b:52:df:e7:c2:10:71:ce:97:5d:88:82:6d:ec:fb:86:e1:
99:65:f2:51:14:d2:e3:64:63:4a:25:5e:8c:8c:25:ac:3a:72:
c0:d8:46:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaCENZsWlAJuVgaK86/JkAQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5YjEyMTBlYzkxMDVjNzE3ZDA5OGY5ZjBkMDBkOWRlYTIz
MjI1MzkwHhcNMjUwNDI5MTUwMTAzWhcNMjUwNDMwMTUwMTAzWjAzMTEwLwYDVQQD
EygwNjE0ODUzYzFkNDRhNDdiNGRjZDhhNmY5NzlhNjgwMjU1MTdmN2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8bxZU5UFTXvGNLliJYPqVH5Xwta
R12P3+qOc6+s/1SwIw5jN1aUdyhpz1RbH0pLjuQFRWFs2dyZDPjc7YQ7ZERMJjzc
04FR6lGxVTom9Lqf8eU4redIzyq86rSsGk8ELeUe401AoLcmcDIr7mUusCVHDotb
o+9LtwBAnirfLWMeEENk99mu0Qp7mMWPNt/E8nP3/JkFwqSzs+6KtToRwXRsSguk
P3db51cav0dEgEfvbSjUPsSkRotgfbk4XZahuGMt2O/yC8OYmaKfnrXZJO1JmD99
OzVAJhyz2I558DsxDB96TTW9fJXBuVk6cxjalmlbhzT/KIC131auImWCjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAYUhTwdRKR7Tc2Kb5eaaAJVF/fwMB8GA1UdIwQY
MBaAFCmxIQ7JEFxxfQmPnw0A2d6iMiU5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2JFaERza1FYSEY5Q1ktZkRRRFozcUl5SlRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9hMDBjNjEtMmQ4Ny00NjIwLTkxM2Yt
MGU0NjRjYTM5ZTc1LzEvS2JFaERza1FYSEY5Q1ktZkRRRFozcUl5SlRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy9hMDBjNjEtMmQ4Ny00NjIwLTkxM2YtMGU0NjRjYTM5ZTc1
LzEvS2JFaERza1FYSEY5Q1ktZkRRRFozcUl5SlRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANRKDsXQw
DO6XEk2vMw+CEFc/n+cKzd/QLvCwwuJ3G36bXBPs8DckDNEggmpAWUnHWAJvpvsj
wj9XN9WfAQpIYSBVRQ2ZTRMSUE4dPs9dC2yMDAQp3FAiiOkvu1YPbADdw0D6263v
2o734RQ3Uj4kkrkr8nXg49pHoPKD+KpFmYU3ytDf9hdn+AycF8ncUoQUStmhcwJX
XZ087uFT6nEfFeZJQu/WCcffj2k8dY5nS8yVE1Bu72TEDpXJX4tjbeo0bQX/Pq5u
VsZMIblt3weRG6kOWjOzT4lkqTtS3+fCEHHOl12Igm3s+4bhmWXyURTS42RjSiVe
jIwlrDpywNhGxQ==
-----END CERTIFICATE-----
Generated at Tue Apr 29 18:40:37 2025 by rpki-client