Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: BNnugZyEdeJni+uOdRKSAhufekiMoc9NjTYgoKHmKMc=
Subject key identifier: 72:B7:CF:04:DE:8F:F4:51:DE:06:22:34:3D:E5:04:E8:67:B9:98:C4
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 019689255A91C08BE73FE6F45F079D83B651
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 12D2
Signing time: Thu 01 May 2025 00:00:48 +0000
Manifest this update: Thu 01 May 2025 00:00:48 +0000
Manifest next update: Fri 02 May 2025 00:00:48 +0000
Files and hashes: 1: ELPDypl8AO7yu9Qb_T04CJHIAmc.roa (hash: uMxQfCf54KpZ6vXVJrK4LBRwbGjKGq0Ym1Kz/m5o7Z0=)
2: h7jotg4RS-yoMxmLNwMHtqMIvTo.roa (hash: 0RvIPvSKfKKYiob3W8lnsFljStCAR/IAjli0EYtRtIQ=)
3: iRTljilS88fdbTnqXefNcD2KdQw.roa (hash: SYC9aJR60HZt276fl/3G18s2lWN51c7daVgQyb0yCnk=)
4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: e6uzOAx+SUz3zlokKwcX+Cn4mDkC3MWRkWoz/nlruKI=)
5: vEwnUG1RajWkcLEBWJPnIiLLgBM.roa (hash: sSHl9JnRfzO2J5TGzVLlmHvYGgd6KK351LDclJH6UZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 00:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:25:5a:91:c0:8b:e7:3f:e6:f4:5f:07:9d:83:b6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: May 1 00:00:48 2025 GMT
Not After : May 2 00:00:48 2025 GMT
Subject: CN=72b7cf04de8ff451de0622343de504e867b998c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:24:81:6a:84:4b:e6:a9:31:be:e3:65:d2:
fe:dc:f2:28:ad:8e:e7:6a:d4:5d:3c:ca:85:e8:69:
d6:ef:d3:44:a9:3d:5b:0b:d9:7c:0e:1a:5f:45:2b:
4a:ab:87:60:69:aa:db:b2:cd:06:1b:e1:da:46:3f:
43:a8:16:15:9e:53:eb:cc:69:88:2a:ef:f9:65:53:
f5:0c:d2:df:85:66:80:f3:d7:eb:b8:e6:57:14:e1:
65:c4:8e:cb:23:c5:86:50:49:8f:8c:b1:6d:72:c8:
17:b4:0c:81:d1:ac:56:ee:f3:fa:2d:a8:7d:f1:1d:
18:bb:8b:72:1d:fe:06:85:aa:ae:18:0b:08:e0:4f:
8e:4a:39:7b:2d:07:c0:9f:3e:ea:ed:a1:2d:51:0d:
dd:c4:9c:4a:1c:ce:0f:af:5c:ee:0b:a0:e4:39:2e:
e4:13:54:f6:17:2e:f0:61:11:1c:12:59:87:a4:20:
42:67:f1:27:ce:e5:c9:e8:f8:7f:e9:50:62:90:d7:
a9:86:88:6c:86:fa:ec:7e:b1:1f:6b:6d:0e:a5:21:
89:52:65:7f:f2:a0:be:27:4c:cd:97:ff:7d:ea:7a:
f0:83:7a:ed:1f:a7:de:da:95:dc:a2:75:0e:a7:b2:
3d:48:14:c0:74:19:7c:d5:6a:11:61:cd:60:1a:c7:
49:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B7:CF:04:DE:8F:F4:51:DE:06:22:34:3D:E5:04:E8:67:B9:98:C4
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ef:78:93:d8:ea:c1:1d:3c:57:2c:cc:45:34:ea:30:c7:10:
c2:56:a1:c1:d7:79:e6:37:81:95:0a:ae:c1:61:93:f5:f7:bc:
ea:14:19:cb:14:fd:24:d9:02:40:5d:94:d2:36:69:f5:8d:55:
33:65:8a:2c:8b:2c:9d:cc:9e:1b:3a:67:e9:a6:51:36:43:2d:
e9:5e:55:8b:28:b0:62:e8:b8:74:79:23:0e:b7:e3:b6:67:77:
ad:3b:da:95:3d:ea:d6:f2:9b:6b:bc:49:44:b9:fe:29:b2:68:
60:4d:be:de:c1:9b:8a:c7:e9:c3:82:e5:29:44:8c:d3:06:db:
c4:e3:21:3b:73:31:46:b8:74:b5:42:ab:86:40:dc:da:1e:b0:
80:2c:bc:3e:10:1b:f2:ff:19:5c:61:39:23:8e:07:a7:d5:5d:
21:44:93:69:ff:fd:1b:97:51:a0:2b:d6:57:c3:d3:03:06:41:
58:19:56:72:13:b7:23:10:50:62:8e:91:56:6d:9e:b3:7d:f3:
ca:95:d2:6d:4a:81:77:33:be:bb:88:b0:13:f7:c4:da:e5:56:
47:70:58:ab:cb:1f:4d:de:7a:89:13:36:3b:d1:29:d8:b1:24:
43:7e:17:69:34:89:ff:93:f8:57:c6:ee:7f:d3:21:3a:55:3a:
ec:9c:b0:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaJJVqRwIvnP+b0Xwedg7ZRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNDVlYWQ4ZDNmMTI4NDQwMmI2Zjc1NjE0YTg3MjU3NTAz
Y2UxYmMwHhcNMjUwNTAxMDAwMDQ4WhcNMjUwNTAyMDAwMDQ4WjAzMTEwLwYDVQQD
Eyg3MmI3Y2YwNGRlOGZmNDUxZGUwNjIyMzQzZGU1MDRlODY3Yjk5OGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1t8kgWqES+apMb7jZdL+3PIorY7n
atRdPMqF6GnW79NEqT1bC9l8DhpfRStKq4dgaarbss0GG+HaRj9DqBYVnlPrzGmI
Ku/5ZVP1DNLfhWaA89fruOZXFOFlxI7LI8WGUEmPjLFtcsgXtAyB0axW7vP6Lah9
8R0Yu4tyHf4GhaquGAsI4E+OSjl7LQfAnz7q7aEtUQ3dxJxKHM4Pr1zuC6DkOS7k
E1T2Fy7wYREcElmHpCBCZ/EnzuXJ6Ph/6VBikNephohshvrsfrEfa20OpSGJUmV/
8qC+J0zNl/996nrwg3rtH6fe2pXconUOp7I9SBTAdBl81WoRYc1gGsdJiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHK3zwTej/RR3gYiND3lBOhnuZjEMB8GA1UdIwQY
MBaAFJFF6tjT8ShEArb3VhSocldQPOG8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzct
MmFkMTk1MjY0YzcyLzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzctMmFkMTk1MjY0Yzcy
LzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAke94k9jq
wR08VyzMRTTqMMcQwlahwdd55jeBlQquwWGT9fe86hQZyxT9JNkCQF2U0jZp9Y1V
M2WKLIssncyeGzpn6aZRNkMt6V5ViyiwYui4dHkjDrfjtmd3rTvalT3q1vKba7xJ
RLn+KbJoYE2+3sGbisfpw4LlKUSM0wbbxOMhO3MxRrh0tUKrhkDc2h6wgCy8PhAb
8v8ZXGE5I44Hp9VdIUSTaf/9G5dRoCvWV8PTAwZBWBlWchO3IxBQYo6RVm2es33z
ypXSbUqBdzO+u4iwE/fE2uVWR3BYq8sfTd56iRM2O9Ep2LEkQ34XaTSJ/5P4V8bu
f9MhOlU67Jyw7Q==
-----END CERTIFICATE-----
Generated at Thu May 1 10:04:17 2025 by rpki-client