Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json)
Hash identifier: vSPVQvyNNqXqx9Nitt7q2UDcd/9MA03lTY76zNqByMY=
Subject key identifier: 62:F5:BA:13:1F:35:59:6D:1B:17:38:63:E5:57:02:90:D1:88:A5:DD
Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Certificate serial: 01976C61E6192B2DCA090C8E3D2E940E44C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
Manifest number: 1594
Signing time: Sat 14 Jun 2025 03:00:44 +0000
Manifest this update: Sat 14 Jun 2025 03:00:44 +0000
Manifest next update: Sun 15 Jun 2025 03:00:44 +0000
Files and hashes: 1: 0l-uuc0ta--zZGivAH1vRPmB_34.roa (hash: N3+ixN59bx1CAdzBVH5dBhTA7XSG6tSZGbX7+qQ9kkU=)
2: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: OMik/XV59irBHwZ77FTXO0Pb0VVGR6uel2In2duIhqU=)
3: ZjCHU3LEGq34M383f_KumGN_eB4.roa (hash: YxlGAgs8g3hAPxhoH9iP3cLnbEfE9zXQU/84spENz30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:e6:19:2b:2d:ca:09:0c:8e:3d:2e:94:0e:44:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Validity
Not Before: Jun 14 03:00:44 2025 GMT
Not After : Jun 15 03:00:44 2025 GMT
Subject: CN=62f5ba131f35596d1b173863e5570290d188a5dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a1:f5:7c:aa:c5:c0:c2:fa:a6:50:e4:3c:d7:
6a:9e:da:05:49:33:bc:b3:07:65:92:99:79:c8:e4:
0b:5e:17:04:aa:21:be:cc:83:24:6b:4c:86:5a:97:
f9:41:d4:a4:21:16:44:22:d0:fb:65:6e:04:8d:91:
a1:f2:e2:9c:4a:b2:72:72:59:90:20:ff:ee:fc:89:
05:b1:2a:6a:8d:4f:7d:78:34:a7:da:b6:67:2b:8f:
e8:6a:3d:cd:cb:63:29:f7:e2:a8:ee:f3:26:b4:a2:
28:dc:b0:63:b4:64:a1:b4:46:34:49:59:d7:de:86:
a0:fa:09:fe:4c:a3:f9:19:70:36:72:f4:3d:3f:b4:
88:6e:c5:53:85:84:a8:e9:ea:e6:fd:0e:4d:5c:ad:
5b:95:18:30:53:73:16:07:76:a5:be:70:17:c1:55:
1e:ed:8f:2a:d0:b3:d9:14:2c:60:74:11:da:8b:0e:
6e:28:2f:40:86:92:f5:47:f0:bb:aa:27:3a:38:0a:
6a:89:bf:75:c0:99:7d:d9:21:77:a2:76:91:da:2a:
24:d3:1b:27:d2:31:75:23:95:48:c6:4a:1f:26:8a:
01:3a:8b:5a:5f:09:26:22:d8:72:75:2e:96:3e:80:
08:01:00:27:10:07:4b:ae:4a:65:fa:5b:cd:3f:31:
ea:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F5:BA:13:1F:35:59:6D:1B:17:38:63:E5:57:02:90:D1:88:A5:DD
X509v3 Authority Key Identifier:
keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:a2:39:bd:fa:9b:fd:f1:9b:58:b9:65:28:4b:84:39:9b:bd:
a7:10:0f:bc:a7:7e:be:22:12:f5:f7:76:c8:3d:54:3b:14:fe:
be:46:7a:f4:3b:96:44:21:bf:2d:0f:b3:06:c9:ff:45:2e:fd:
56:af:1c:db:a1:b7:0a:61:13:64:52:d2:c4:69:e1:e0:ed:b0:
97:2a:01:15:b2:55:f6:5f:06:68:52:90:b8:62:64:08:bd:b3:
b1:a9:3c:eb:e8:86:29:89:fc:af:f3:76:b7:89:15:84:96:02:
14:17:fc:8c:3c:ca:67:a4:f0:56:71:cb:63:1b:29:82:df:70:
39:60:3f:4e:5f:e7:14:15:30:0e:c8:12:e9:54:0b:27:16:76:
6b:a6:24:83:07:ed:13:bf:34:66:40:7b:12:a2:21:25:4f:f8:
bd:55:ce:12:e4:b3:eb:2a:d6:d0:6a:82:00:c2:32:f1:b1:ba:
d0:84:b0:79:6a:e3:84:d9:ed:91:70:b3:c6:6e:79:20:0b:6e:
25:3e:0d:43:0a:9c:1c:a2:ad:3b:e0:36:ac:f9:9c:ac:34:b3:
18:b0:7f:a8:ef:2a:cf:b2:46:2d:e1:e3:e8:c9:37:5b:f6:2c:
55:c9:5a:01:f9:ae:9e:1e:43:9e:25:bf:07:68:06:17:f1:1d:
c0:e9:ed:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsYeYZKy3KCQyOPS6UDkTAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5YjNhNzE3NjY1YTExMzdlOTlkYzhmYWQyMmUzZTdmOThk
Yjg5NzMwHhcNMjUwNjE0MDMwMDQ0WhcNMjUwNjE1MDMwMDQ0WjAzMTEwLwYDVQQD
Eyg2MmY1YmExMzFmMzU1OTZkMWIxNzM4NjNlNTU3MDI5MGQxODhhNWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaH1fKrFwML6plDkPNdqntoFSTO8
swdlkpl5yOQLXhcEqiG+zIMka0yGWpf5QdSkIRZEItD7ZW4EjZGh8uKcSrJyclmQ
IP/u/IkFsSpqjU99eDSn2rZnK4/oaj3Ny2Mp9+Ko7vMmtKIo3LBjtGShtEY0SVnX
3oag+gn+TKP5GXA2cvQ9P7SIbsVThYSo6erm/Q5NXK1blRgwU3MWB3alvnAXwVUe
7Y8q0LPZFCxgdBHaiw5uKC9AhpL1R/C7qic6OApqib91wJl92SF3onaR2iok0xsn
0jF1I5VIxkofJooBOotaXwkmIthydS6WPoAIAQAnEAdLrkpl+lvNPzHqHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGL1uhMfNVltGxc4Y+VXApDRiKXdMB8GA1UdIwQY
MBaAFCmzpxdmWhE36Z3I+tIuPn+Y24lzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgt
NjY5ZjdhNzYxNjMxLzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgtNjY5ZjdhNzYxNjMx
LzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbqI5vfqb
/fGbWLllKEuEOZu9pxAPvKd+viIS9fd2yD1UOxT+vkZ69DuWRCG/LQ+zBsn/RS79
Vq8c26G3CmETZFLSxGnh4O2wlyoBFbJV9l8GaFKQuGJkCL2zsak86+iGKYn8r/N2
t4kVhJYCFBf8jDzKZ6TwVnHLYxspgt9wOWA/Tl/nFBUwDsgS6VQLJxZ2a6Ykgwft
E780ZkB7EqIhJU/4vVXOEuSz6yrW0GqCAMIy8bG60ISweWrjhNntkXCzxm55IAtu
JT4NQwqcHKKtO+A2rPmcrDSzGLB/qO8qz7JGLeHj6Mk3W/YsVclaAfmunh5DniW/
B2gGF/EdwOnt3g==
-----END CERTIFICATE-----
Generated at Sat Jun 14 10:06:25 2025 by rpki-client