Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json)
Hash identifier: LOS82tDH1JFxnL3gybJygJYa0O3nVB+h0QcIAm0Cbao=
Subject key identifier: 56:A3:56:1E:F1:59:7E:75:B1:C8:39:F9:40:2F:EA:6A:82:D7:48:FE
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 019673B0133A0FDD5BEEF6EE8BE3C04ABD03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
Manifest number: 1023
Signing time: Sat 26 Apr 2025 20:00:41 +0000
Manifest this update: Sat 26 Apr 2025 20:00:41 +0000
Manifest next update: Sun 27 Apr 2025 20:00:41 +0000
Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=)
2: 7W9sev3L-VQWc6oeKqV7bwg_M78.roa (hash: iACOPZzpZ14qCk65ni/pYA1L4ve/ow82nu3m+eaX/rg=)
3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=)
4: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=)
5: gLTw3SxVghFrqUXLXX9aVQWSJyY.roa (hash: X6SiVIHlGA+Slf3SaSpTUzg9Mrw9ENcILtCCgSUB+W0=)
6: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: 5c8/RGh9HIqYvhn8ObLTfArP1Zkej+dYfrISuelua28=)
7: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:b0:13:3a:0f:dd:5b:ee:f6:ee:8b:e3:c0:4a:bd:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: Apr 26 20:00:41 2025 GMT
Not After : Apr 27 20:00:41 2025 GMT
Subject: CN=56a3561ef1597e75b1c839f9402fea6a82d748fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:70:54:62:ac:f9:82:24:3c:3a:f3:2a:e6:d6:
f3:1d:80:d6:67:24:ea:37:de:f8:3e:33:0b:d8:18:
1a:91:81:cb:2e:38:9f:db:a1:1c:a4:a3:88:fa:d2:
2b:39:83:d3:1c:d7:b1:22:68:b0:ef:cf:94:a7:ba:
fb:80:55:35:a5:d6:5c:0e:4d:54:53:85:49:cb:c2:
8b:c9:b0:77:cb:11:c3:c8:53:00:ad:c2:ef:ea:2e:
cb:ed:eb:b6:1f:22:da:8e:c8:26:21:4a:f3:3e:7d:
85:94:f7:fd:5e:c5:8a:47:74:ec:6f:59:e6:ba:f3:
19:9e:bc:b0:fd:f7:74:3d:11:c9:3e:47:2c:c4:ef:
b8:33:eb:db:57:d0:23:57:43:c6:49:ad:d3:5f:bb:
7f:b5:69:c8:a2:04:8b:58:f9:55:7c:48:f9:02:a6:
f7:ff:a0:8b:a5:69:e3:9d:e9:ba:98:62:8e:b2:7d:
13:8b:24:1a:42:90:bd:43:12:54:ca:48:44:eb:41:
a7:91:0b:e5:80:d4:94:dc:c6:f8:3e:ad:1c:7f:21:
d1:88:34:02:9a:a6:87:a3:aa:cb:ea:4d:f8:52:00:
cb:c7:0e:7c:60:66:b6:3f:40:51:ec:4b:0a:8e:b1:
43:5e:55:ff:05:12:ff:12:1f:08:5c:7c:57:a8:92:
e9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A3:56:1E:F1:59:7E:75:B1:C8:39:F9:40:2F:EA:6A:82:D7:48:FE
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:0d:39:6e:f8:39:08:87:19:f4:a1:67:b6:ed:25:0b:d8:5c:
a9:78:f4:95:19:bd:c7:14:f5:b3:14:5a:28:21:1e:38:6f:cf:
d6:7a:b3:a8:e7:2e:48:64:fd:44:4c:31:9d:df:c1:00:06:dd:
c8:03:d4:4f:f3:1a:f2:88:d4:3e:7c:e8:d5:ea:8a:dc:6f:e0:
6c:60:33:11:74:75:72:30:17:81:6e:39:0b:0c:0b:c8:82:c9:
1a:e6:ad:76:70:94:f0:95:d5:4f:ac:6f:6f:01:12:26:f6:c4:
99:8b:1d:59:25:71:b5:b6:61:0b:ef:33:34:50:67:8a:6f:f8:
d2:fa:9b:e0:9c:15:96:44:88:70:6f:aa:2e:f9:7a:0b:20:c4:
ad:99:20:4c:ca:e9:c7:09:41:6c:f9:9f:51:8e:ae:65:1b:40:
bb:50:b8:75:21:d4:80:09:b8:9a:b3:17:39:2a:13:b5:ea:e5:
a3:2d:42:5e:54:2e:34:0b:29:2f:2f:c5:58:4f:fe:b9:79:89:
ed:82:8e:1a:48:98:3d:b2:63:6b:f5:01:d2:5c:0a:91:02:3d:
89:20:2a:29:c1:d0:6c:14:59:5c:25:f0:1f:6f:a3:20:d0:4c:
97:7b:69:15:15:e9:22:41:94:2c:be:11:aa:cc:f0:f2:08:86:
4c:0e:76:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZzsBM6D91b7vbui+PASr0DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5
ZTc1MzAwHhcNMjUwNDI2MjAwMDQxWhcNMjUwNDI3MjAwMDQxWjAzMTEwLwYDVQQD
Eyg1NmEzNTYxZWYxNTk3ZTc1YjFjODM5Zjk0MDJmZWE2YTgyZDc0OGZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHBUYqz5giQ8OvMq5tbzHYDWZyTq
N974PjML2BgakYHLLjif26EcpKOI+tIrOYPTHNexImiw78+Up7r7gFU1pdZcDk1U
U4VJy8KLybB3yxHDyFMArcLv6i7L7eu2HyLajsgmIUrzPn2FlPf9XsWKR3Tsb1nm
uvMZnryw/fd0PRHJPkcsxO+4M+vbV9AjV0PGSa3TX7t/tWnIogSLWPlVfEj5Aqb3
/6CLpWnjnem6mGKOsn0TiyQaQpC9QxJUykhE60GnkQvlgNSU3Mb4Pq0cfyHRiDQC
mqaHo6rL6k34UgDLxw58YGa2P0BR7EsKjrFDXlX/BRL/Eh8IXHxXqJLpNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFajVh7xWX51scg5+UAv6mqC10j+MB8GA1UdIwQY
MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt
NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy
LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACg05bvg5
CIcZ9KFntu0lC9hcqXj0lRm9xxT1sxRaKCEeOG/P1nqzqOcuSGT9REwxnd/BAAbd
yAPUT/Ma8ojUPnzo1eqK3G/gbGAzEXR1cjAXgW45CwwLyILJGuatdnCU8JXVT6xv
bwESJvbEmYsdWSVxtbZhC+8zNFBnim/40vqb4JwVlkSIcG+qLvl6CyDErZkgTMrp
xwlBbPmfUY6uZRtAu1C4dSHUgAm4mrMXOSoTterloy1CXlQuNAspLy/FWE/+uXmJ
7YKOGkiYPbJja/UB0lwKkQI9iSAqKcHQbBRZXCXwH2+jINBMl3tpFRXpIkGULL4R
qszw8giGTA52aQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:34:03 2025 by rpki-client