Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
File: fKlis7F-7waeOrohKIuyxkIhv-0.mft (raw, json)
Hash identifier: vqgoi5egYNrapxgyj3gwqTpuJCOZwvf7lBM4SZ+f4EA=
Subject key identifier: C2:5C:D8:16:F6:23:5C:EE:F9:2D:74:45:52:11:F3:5F:EB:29:B5:0D
Authority key identifier: 7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
Certificate issuer: /CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Certificate serial: 01967F7D465C628D7AF3F510B58B0F9B671C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
Manifest number: F1
Signing time: Tue 29 Apr 2025 03:00:38 +0000
Manifest this update: Tue 29 Apr 2025 03:00:38 +0000
Manifest next update: Wed 30 Apr 2025 03:00:38 +0000
Files and hashes: 1: KHa9mVj-WNELt7pSCK9ooFTGrNA.roa (hash: UqMuiUZn2GrnQQZzSZEJPEZOfxeCUD81uoCK7byK2Vc=)
2: fKlis7F-7waeOrohKIuyxkIhv-0.crl (hash: F/Id+KbGONCx58U6jCiND4ygvaqAA6AWxUp0cpXvZbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:7d:46:5c:62:8d:7a:f3:f5:10:b5:8b:0f:9b:67:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Validity
Not Before: Apr 29 03:00:38 2025 GMT
Not After : Apr 30 03:00:38 2025 GMT
Subject: CN=c25cd816f6235ceef92d74455211f35feb29b50d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ce:57:a4:0a:94:be:c1:1c:14:d3:b2:f8:7d:
f5:69:78:b0:00:a8:51:09:87:50:47:28:8f:cd:7b:
b5:ac:5b:d7:bc:49:31:44:b4:61:d9:a6:1c:1b:ac:
e6:17:cd:3c:79:e8:27:67:23:98:1f:be:4a:0a:f6:
f3:69:ca:94:3e:88:2e:ee:36:db:72:3d:b4:bc:ac:
39:6c:41:dd:f1:17:10:da:8d:82:60:eb:96:6b:80:
8e:ca:be:53:32:aa:ed:8e:e2:21:de:c9:ea:c5:7f:
3a:98:51:da:7b:52:96:81:af:4a:42:9f:61:fe:34:
1b:0c:83:83:34:e9:55:94:de:7d:61:95:67:7e:7f:
02:9b:3b:79:d3:6b:0d:6f:5f:ef:e9:da:87:ed:07:
1d:ba:75:d9:4f:fc:f8:e6:a0:1d:29:2a:27:4d:b6:
47:5a:00:04:62:90:23:5e:5b:15:44:1d:16:4a:a4:
bb:f5:d2:5c:be:f5:98:91:a0:22:bf:d0:93:6a:b4:
76:c4:7d:ae:e9:42:b6:95:50:7a:f6:17:8c:0b:a2:
86:d9:4a:fb:46:ba:ea:2a:cc:90:03:31:1d:b4:66:
bd:f8:51:8d:ff:d3:5f:31:31:c6:f4:4a:42:2a:e9:
02:2e:6e:df:16:c6:9a:ea:63:3d:f1:09:fe:74:8a:
8d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5C:D8:16:F6:23:5C:EE:F9:2D:74:45:52:11:F3:5F:EB:29:B5:0D
X509v3 Authority Key Identifier:
keyid:7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:d7:90:92:d0:9b:47:b4:45:ea:42:44:15:7b:40:4f:c1:de:
82:a2:66:a4:f9:65:9b:3c:bd:1d:b2:0c:88:17:f0:8e:13:da:
60:c7:2c:b6:fa:a4:0b:b0:7e:9b:56:79:aa:05:a3:7f:48:6a:
f5:1c:2a:77:87:70:5b:2b:29:03:ac:aa:5f:3f:eb:da:5f:79:
f5:a6:4b:2f:5b:f6:e6:1e:b1:79:c6:37:fd:47:f0:63:95:d4:
bb:94:2e:4e:c0:37:8d:79:d9:d7:95:0f:03:97:58:ef:d4:28:
22:ed:65:25:4a:71:9e:99:0d:90:05:a1:d7:02:cb:d6:56:64:
10:44:64:c5:21:2d:f6:75:51:54:53:aa:a3:b6:31:f6:76:d9:
35:38:87:66:21:27:36:87:f6:de:a1:41:d9:3d:f4:9a:63:bb:
48:3e:90:cb:d8:d1:28:c9:13:df:0d:f8:f4:47:73:85:37:a8:
6b:71:96:1b:aa:1a:b4:07:46:bf:08:54:da:d2:8a:40:e0:33:
23:51:ad:1b:0d:c1:fd:10:a7:3b:b2:44:dd:4a:e0:27:1a:01:
98:32:e2:00:4a:fd:b4:59:df:53:f8:b6:08:0e:9f:9e:9a:b8:
f8:fc:9b:ca:f4:79:91:76:9f:35:8d:e8:91:5a:7c:2b:7a:bc:
8a:ca:4c:f4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ/fUZcYo168/UQtYsPm2ccMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjYTk2MmIzYjE3ZWVmMDY5ZTNhYmEyMTI4OGJiMmM2NDIy
MWJmZWQwHhcNMjUwNDI5MDMwMDM4WhcNMjUwNDMwMDMwMDM4WjAzMTEwLwYDVQQD
EyhjMjVjZDgxNmY2MjM1Y2VlZjkyZDc0NDU1MjExZjM1ZmViMjliNTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8c5XpAqUvsEcFNOy+H31aXiwAKhR
CYdQRyiPzXu1rFvXvEkxRLRh2aYcG6zmF808eegnZyOYH75KCvbzacqUPogu7jbb
cj20vKw5bEHd8RcQ2o2CYOuWa4COyr5TMqrtjuIh3snqxX86mFHae1KWga9KQp9h
/jQbDIODNOlVlN59YZVnfn8Cmzt502sNb1/v6dqH7QcdunXZT/z45qAdKSonTbZH
WgAEYpAjXlsVRB0WSqS79dJcvvWYkaAiv9CTarR2xH2u6UK2lVB69heMC6KG2Ur7
RrrqKsyQAzEdtGa9+FGN/9NfMTHG9EpCKukCLm7fFsaa6mM98Qn+dIqNAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMJc2Bb2I1zu+S10RVIR81/rKbUNMB8GA1UdIwQY
MBaAFHypYrOxfu8Gnjq6ISiLssZCIb/tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZktsaXM3Ri03d2FlT3JvaEtJdXl4a0lodi0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9mMDE3ZGYtMGQwZi00YTM2LWFjMjUt
NDk2OGFhYWZjNTliLzEvZktsaXM3Ri03d2FlT3JvaEtJdXl4a0lodi0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9mMDE3ZGYtMGQwZi00YTM2LWFjMjUtNDk2OGFhYWZjNTli
LzEvZktsaXM3Ri03d2FlT3JvaEtJdXl4a0lodi0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFNeQktCb
R7RF6kJEFXtAT8HegqJmpPllmzy9HbIMiBfwjhPaYMcstvqkC7B+m1Z5qgWjf0hq
9Rwqd4dwWyspA6yqXz/r2l959aZLL1v25h6xecY3/UfwY5XUu5QuTsA3jXnZ15UP
A5dY79QoIu1lJUpxnpkNkAWh1wLL1lZkEERkxSEt9nVRVFOqo7Yx9nbZNTiHZiEn
Nof23qFB2T30mmO7SD6Qy9jRKMkT3w349EdzhTeoa3GWG6oatAdGvwhU2tKKQOAz
I1GtGw3B/RCnO7JE3UrgJxoBmDLiAEr9tFnfU/i2CA6fnpq4+PybyvR5kXafNY3o
kVp8K3q8ispM9A==
-----END CERTIFICATE-----
Generated at Tue Apr 29 07:50:48 2025 by rpki-client