Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: sFVQFCTOdgdBi2BZni+daMcFVNlysLxu6qPU0atijCs=
Subject key identifier: D0:FB:A2:93:74:9F:17:42:25:36:71:4E:02:2D:9C:20:81:70:D8:7C
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 01968FCC40794609C3D15AC78C9118C931C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 02F8
Signing time: Fri 02 May 2025 07:00:49 +0000
Manifest this update: Fri 02 May 2025 07:00:49 +0000
Manifest next update: Sat 03 May 2025 07:00:49 +0000
Files and hashes: 1: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: 5+dwChUr/8mhk1Mppso9tmlZ8MUA+HuGy8pPuhKnWyY=)
2: o05sdzj6m4fQO6_WrgnQWVEGn8s.roa (hash: 4PZyqJElCUrsee8Vele9Jxa/SXWOHXm1LP7RgEQB9SY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:cc:40:79:46:09:c3:d1:5a:c7:8c:91:18:c9:31:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: May 2 07:00:49 2025 GMT
Not After : May 3 07:00:49 2025 GMT
Subject: CN=d0fba293749f17422536714e022d9c208170d87c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5b:f1:8d:99:7c:ac:91:16:9e:33:2a:47:7c:
34:fd:06:9a:f6:55:9a:44:fc:bb:07:ba:46:4b:08:
b5:11:5f:44:05:23:10:42:9a:61:99:00:10:16:66:
2c:67:c3:18:05:78:62:67:a4:62:e4:ae:59:08:10:
da:6a:f1:ba:0d:b1:5e:2b:06:3b:3d:fd:db:9d:a1:
ea:72:2e:d1:5a:c7:75:1e:f5:3c:da:85:3f:f2:8c:
40:a2:82:78:24:9e:46:5e:77:de:d6:c4:c6:96:10:
b4:25:22:95:1a:50:f3:33:12:ac:8f:cd:f0:24:a1:
38:2e:dc:47:cb:80:60:bb:f8:62:19:df:f8:35:fb:
3c:3a:28:39:03:d4:9e:12:62:f4:ef:96:de:a9:31:
5d:47:9e:ec:83:39:51:b9:fc:70:af:33:24:cc:9a:
fd:eb:bf:ae:b8:5c:45:22:9c:db:12:2f:b0:3b:de:
61:c7:89:f5:a8:4f:10:f1:e6:1b:fc:c7:74:74:97:
a4:39:99:2d:25:1e:69:f6:14:c7:de:71:cc:19:61:
7a:c8:84:84:6a:68:32:1e:07:9f:ab:82:0d:54:2c:
ad:c1:a1:8f:0f:fa:18:fb:d2:f5:13:a8:b9:f5:a9:
8a:ce:99:78:ca:73:26:d2:d9:8b:58:6c:8a:e3:99:
76:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:FB:A2:93:74:9F:17:42:25:36:71:4E:02:2D:9C:20:81:70:D8:7C
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:af:a9:5b:2c:05:0a:55:a7:54:66:8d:3f:57:72:97:da:65:
8e:8e:79:ac:da:0b:c3:30:92:3e:01:ab:c6:28:ac:32:e1:88:
45:cc:35:ae:e8:c8:d4:61:b8:e9:96:4a:41:16:36:41:68:74:
b0:04:2a:19:d4:5a:99:32:49:43:49:a1:11:fa:53:27:e6:bb:
6d:0a:13:04:f9:ec:1d:6f:ba:0b:89:2d:0b:76:9f:f8:24:46:
34:cf:98:4a:62:7a:02:70:e4:d0:b3:ee:a4:7a:5b:f0:68:ce:
70:fe:cd:ae:7e:41:c4:b6:17:ba:eb:de:23:34:2a:48:d4:bb:
11:05:71:fa:5a:cc:c5:d3:1d:bf:20:24:9e:f0:2d:a4:ed:e5:
94:89:da:01:82:79:39:1f:16:c9:4a:36:b5:67:08:ca:0b:1f:
84:00:bd:b6:59:29:36:66:9b:2c:66:78:a9:f4:67:35:ad:16:
46:ff:de:7f:58:28:21:71:b6:73:65:75:cc:36:65:d9:a9:d2:
cf:0a:d4:19:fd:cf:e8:14:b3:28:cb:f6:c2:4d:56:83:3c:ef:
e8:bc:92:bd:f7:69:3e:64:c5:9c:80:4d:52:8f:02:15:c2:58:
55:8a:de:a2:4f:8a:b5:dc:0f:cd:2e:4e:e9:e5:fa:ae:4f:60:
ac:0f:c3:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaPzEB5RgnD0VrHjJEYyTHDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4OTU0ZTI4ZjZlMDFjYTVjNzM1M2JjMzcyZjM2OWE1ZjUx
ZDliYjQwHhcNMjUwNTAyMDcwMDQ5WhcNMjUwNTAzMDcwMDQ5WjAzMTEwLwYDVQQD
EyhkMGZiYTI5Mzc0OWYxNzQyMjUzNjcxNGUwMjJkOWMyMDgxNzBkODdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqlvxjZl8rJEWnjMqR3w0/Qaa9lWa
RPy7B7pGSwi1EV9EBSMQQpphmQAQFmYsZ8MYBXhiZ6Ri5K5ZCBDaavG6DbFeKwY7
Pf3bnaHqci7RWsd1HvU82oU/8oxAooJ4JJ5GXnfe1sTGlhC0JSKVGlDzMxKsj83w
JKE4LtxHy4Bgu/hiGd/4Nfs8Oig5A9SeEmL075beqTFdR57sgzlRufxwrzMkzJr9
67+uuFxFIpzbEi+wO95hx4n1qE8Q8eYb/Md0dJekOZktJR5p9hTH3nHMGWF6yISE
amgyHgefq4INVCytwaGPD/oY+9L1E6i59amKzpl4ynMm0tmLWGyK45l2AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFND7opN0nxdCJTZxTgItnCCBcNh8MB8GA1UdIwQY
MBaAFCiVTij24BylxzU7w3LzaaX1HZu0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9mMzcwMjctYWZjNC00NDRmLTgwMDgt
OTVjZTJjNzU1ZDQ3LzEvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS9mMzcwMjctYWZjNC00NDRmLTgwMDgtOTVjZTJjNzU1ZDQ3
LzEvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIK+pWywF
ClWnVGaNP1dyl9pljo55rNoLwzCSPgGrxiisMuGIRcw1rujI1GG46ZZKQRY2QWh0
sAQqGdRamTJJQ0mhEfpTJ+a7bQoTBPnsHW+6C4ktC3af+CRGNM+YSmJ6AnDk0LPu
pHpb8GjOcP7Nrn5BxLYXuuveIzQqSNS7EQVx+lrMxdMdvyAknvAtpO3llInaAYJ5
OR8WyUo2tWcIygsfhAC9tlkpNmabLGZ4qfRnNa0WRv/ef1goIXG2c2V1zDZl2anS
zwrUGf3P6BSzKMv2wk1Wgzzv6LySvfdpPmTFnIBNUo8CFcJYVYreok+KtdwPzS5O
6eX6rk9grA/Djg==
-----END CERTIFICATE-----
Generated at Fri May 2 15:38:07 2025 by rpki-client