Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: QwrzqJSg1b6fXGgAosGEM/x/No+Tze+fRCk24OnS8Ho=
Subject key identifier: FD:81:F1:CB:5D:32:EF:6B:30:80:C3:B2:C3:FC:54:57:EA:38:4B:FE
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 01967F0F26FA2B5043A80111EF51FB72A990
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 1511
Signing time: Tue 29 Apr 2025 01:00:21 +0000
Manifest this update: Tue 29 Apr 2025 01:00:21 +0000
Manifest next update: Wed 30 Apr 2025 01:00:21 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: OcTWSPKBXoa4NIFNnbOYyyWDoEEdfYMjJ1CIunrZEIA=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:0f:26:fa:2b:50:43:a8:01:11:ef:51:fb:72:a9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: Apr 29 01:00:21 2025 GMT
Not After : Apr 30 01:00:21 2025 GMT
Subject: CN=fd81f1cb5d32ef6b3080c3b2c3fc5457ea384bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:35:3b:d8:7f:a3:91:b2:8b:9d:78:56:af:14:
d1:fa:3c:23:2a:2e:50:f6:01:3f:4e:ed:26:52:b8:
f9:15:97:32:00:b7:fb:ed:4e:bd:ab:41:5f:07:ac:
bf:03:f1:f8:a9:8a:94:3f:54:db:b2:bd:9e:91:f5:
92:90:2d:62:af:e4:74:9e:cc:e2:0e:b3:db:84:a0:
17:49:14:24:05:13:3b:0e:98:25:83:43:22:c3:14:
48:21:02:b6:61:3a:0a:72:1a:e3:92:a3:35:d6:cf:
0a:ff:f7:1a:b6:d6:e1:00:5a:37:1d:08:5d:c4:8d:
36:db:41:81:23:e4:ec:43:4c:49:42:eb:38:46:58:
d9:ed:e5:1d:c4:d6:a6:2e:07:a8:fe:b4:f5:ef:33:
49:ee:30:7b:7d:b9:d4:96:16:f7:dd:16:a8:ec:76:
a8:12:a2:8a:2f:04:d4:01:e4:a6:5c:40:6a:54:f6:
be:9b:74:60:b3:8e:29:a6:03:b5:01:ed:ba:d0:3b:
94:e6:fb:d6:3b:ac:0d:52:f1:cc:c2:04:95:bb:3d:
ac:1a:54:8c:51:2f:ab:4e:f9:a8:63:f4:29:41:f6:
d2:a7:db:38:ec:46:e2:42:d2:8d:33:a7:98:5a:3b:
22:44:29:d1:19:94:60:0a:ba:93:06:f2:b4:c0:62:
d6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:81:F1:CB:5D:32:EF:6B:30:80:C3:B2:C3:FC:54:57:EA:38:4B:FE
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:75:f8:44:0d:e5:ea:50:61:42:d5:a4:18:dc:7d:bc:97:e1:
00:52:2b:61:51:57:57:eb:db:56:65:73:57:45:ba:f1:3f:68:
a3:a7:e5:87:65:3f:71:7b:5b:60:79:25:2f:a7:6d:9f:e0:e8:
e7:15:7d:7d:02:ac:b8:b7:51:8b:75:11:85:52:8e:fb:5f:1d:
d9:1f:55:e0:79:73:af:b6:eb:75:0c:ef:06:96:17:d8:58:6e:
48:00:50:38:21:e6:9f:ac:22:21:a3:6f:49:8a:2c:63:69:15:
e0:47:c1:17:da:fb:24:dd:3d:f7:cc:1c:0e:bb:55:d3:ea:80:
ac:f9:00:11:24:34:a1:e3:05:b2:19:7c:85:1e:18:db:98:df:
71:17:c9:2e:17:c6:b9:bc:0d:29:5e:b5:16:ea:c8:f3:5a:5f:
c8:f4:bf:92:c0:b5:31:8a:d6:0b:3b:50:41:86:94:7e:84:52:
63:b1:20:e5:46:1f:86:fc:f1:9a:11:f4:cb:2a:5c:ac:17:b3:
42:5f:cd:b3:46:36:74:d5:3b:ba:37:9f:f5:f1:a1:7a:39:ca:
64:8c:6b:8d:1b:d1:8f:16:ab:37:43:97:6a:a4:ae:3d:53:6b:
12:06:59:1d:e9:67:6a:7f:b9:ce:e4:91:d1:82:52:ff:85:53:
02:00:2a:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ/Dyb6K1BDqAER71H7cqmQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ODliNTg5MTIwZDM5ZWExNGZmNTM5NjNiZjIzMTU3ZDMy
NDk1ZWEwHhcNMjUwNDI5MDEwMDIxWhcNMjUwNDMwMDEwMDIxWjAzMTEwLwYDVQQD
EyhmZDgxZjFjYjVkMzJlZjZiMzA4MGMzYjJjM2ZjNTQ1N2VhMzg0YmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zU72H+jkbKLnXhWrxTR+jwjKi5Q
9gE/Tu0mUrj5FZcyALf77U69q0FfB6y/A/H4qYqUP1Tbsr2ekfWSkC1ir+R0nszi
DrPbhKAXSRQkBRM7Dpglg0MiwxRIIQK2YToKchrjkqM11s8K//cattbhAFo3HQhd
xI0220GBI+TsQ0xJQus4RljZ7eUdxNamLgeo/rT17zNJ7jB7fbnUlhb33Rao7Hao
EqKKLwTUAeSmXEBqVPa+m3Rgs44ppgO1Ae260DuU5vvWO6wNUvHMwgSVuz2sGlSM
US+rTvmoY/QpQfbSp9s47EbiQtKNM6eYWjsiRCnRGZRgCrqTBvK0wGLWCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP2B8ctdMu9rMIDDssP8VFfqOEv+MB8GA1UdIwQY
MBaAFCmJtYkSDTnqFP9TljvyMVfTJJXqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9mMDgxNzAtOGQ5Mi00Y2ZhLWI3MzMt
ZmJkYmU1MTRkZjVhLzEvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9mMDgxNzAtOGQ5Mi00Y2ZhLWI3MzMtZmJkYmU1MTRkZjVh
LzEvS1ltMWlSSU5PZW9VXzFPV09fSXhWOU1rbGVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ3X4RA3l
6lBhQtWkGNx9vJfhAFIrYVFXV+vbVmVzV0W68T9oo6flh2U/cXtbYHklL6dtn+Do
5xV9fQKsuLdRi3URhVKO+18d2R9V4Hlzr7brdQzvBpYX2FhuSABQOCHmn6wiIaNv
SYosY2kV4EfBF9r7JN0998wcDrtV0+qArPkAESQ0oeMFshl8hR4Y25jfcRfJLhfG
ubwNKV61FurI81pfyPS/ksC1MYrWCztQQYaUfoRSY7Eg5UYfhvzxmhH0yypcrBez
Ql/Ns0Y2dNU7ujef9fGhejnKZIxrjRvRjxarN0OXaqSuPVNrEgZZHelnan+5zuSR
0YJS/4VTAgAqwg==
-----END CERTIFICATE-----
Generated at Tue Apr 29 09:36:36 2025 by rpki-client