Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4721ac-c4fd-46af-9a91-40ae9247cc64/1/KhSRXif4v0Bcz8qUtsUwvU0-VMA.mft
File: KhSRXif4v0Bcz8qUtsUwvU0-VMA.mft (raw, json)
Hash identifier: /R91H/u+Ha8e6TqKYvdH6xPurZSrRHp8r6toKugRa6A=
Subject key identifier: 36:5F:53:BB:B2:C7:03:C0:C8:DE:EB:F1:A3:54:A2:4A:CB:41:F5:BA
Authority key identifier: 2A:14:91:5E:27:F8:BF:40:5C:CF:CA:94:B6:C5:30:BD:4D:3E:54:C0
Certificate issuer: /CN=2a14915e27f8bf405ccfca94b6c530bd4d3e54c0
Certificate serial: 01969CACE0B17EFEAA4ECE5A06528A2C6D07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhSRXif4v0Bcz8qUtsUwvU0-VMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4721ac-c4fd-46af-9a91-40ae9247cc64/1/KhSRXif4v0Bcz8qUtsUwvU0-VMA.mft
Manifest number: 0758
Signing time: Sun 04 May 2025 19:01:37 +0000
Manifest this update: Sun 04 May 2025 19:01:37 +0000
Manifest next update: Mon 05 May 2025 19:01:37 +0000
Files and hashes: 1: KhSRXif4v0Bcz8qUtsUwvU0-VMA.crl (hash: Gy3wr8aGeT+qSKpHcgUAlvmQHCuvWgzO9paIt47b8Gk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/4721ac-c4fd-46af-9a91-40ae9247cc64/1/KhSRXif4v0Bcz8qUtsUwvU0-VMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/4721ac-c4fd-46af-9a91-40ae9247cc64/1/KhSRXif4v0Bcz8qUtsUwvU0-VMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KhSRXif4v0Bcz8qUtsUwvU0-VMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 13:58:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9c:ac:e0:b1:7e:fe:aa:4e:ce:5a:06:52:8a:2c:6d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a14915e27f8bf405ccfca94b6c530bd4d3e54c0
Validity
Not Before: May 4 19:01:37 2025 GMT
Not After : May 5 19:01:37 2025 GMT
Subject: CN=365f53bbb2c703c0c8deebf1a354a24acb41f5ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:58:9d:d4:d3:0c:f6:d1:93:d0:6e:fe:2f:30:
84:5a:1e:9b:00:69:fa:5c:41:e8:af:63:b3:c9:a0:
7e:64:2f:e1:13:ba:4b:61:99:01:cc:25:97:74:8c:
9b:bb:1b:37:35:6c:ba:57:47:75:d3:7e:e9:fd:5b:
e3:a5:59:b4:ac:4b:bc:0b:97:e3:40:62:a6:87:4b:
bd:b2:b8:f3:29:6a:33:7e:67:8c:2d:7f:72:5d:05:
ed:5a:f6:65:13:8d:8e:16:5c:6f:6f:19:23:77:e3:
c7:45:1d:ac:59:43:4d:10:f4:8c:d2:71:67:da:9a:
03:39:8c:ec:aa:11:f5:6a:a7:3d:4c:15:8c:8d:f2:
c5:cf:1d:84:0d:40:f9:f8:55:d4:f4:eb:27:32:1b:
1f:ee:68:45:ea:d2:b6:48:ab:05:4c:4f:43:a2:c2:
5a:74:41:bf:0b:ae:92:ef:f4:17:10:66:b5:1d:a6:
38:e2:90:a3:b8:0a:0c:7e:80:b4:9d:f0:b9:6f:f1:
a1:77:7a:71:99:a0:20:96:3e:d8:32:fb:6d:38:23:
9c:77:4a:c4:61:bd:c8:7d:94:65:10:41:ff:3f:45:
25:c1:e9:55:95:7b:40:3b:80:a8:91:6c:63:62:37:
9a:58:ce:4f:13:d1:13:49:5f:46:6e:8c:48:61:e1:
84:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:5F:53:BB:B2:C7:03:C0:C8:DE:EB:F1:A3:54:A2:4A:CB:41:F5:BA
X509v3 Authority Key Identifier:
keyid:2A:14:91:5E:27:F8:BF:40:5C:CF:CA:94:B6:C5:30:BD:4D:3E:54:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhSRXif4v0Bcz8qUtsUwvU0-VMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4721ac-c4fd-46af-9a91-40ae9247cc64/1/KhSRXif4v0Bcz8qUtsUwvU0-VMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4721ac-c4fd-46af-9a91-40ae9247cc64/1/KhSRXif4v0Bcz8qUtsUwvU0-VMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:2b:21:b3:ea:19:6b:0c:93:e7:7e:41:44:f1:a6:ce:21:3d:
78:f5:4e:9d:23:3b:1f:ba:70:8a:14:cd:56:4d:da:bc:6f:e8:
47:d2:3a:75:20:56:3f:e4:7e:45:80:49:86:84:cd:26:57:75:
f1:4d:61:71:42:07:31:2d:89:a4:17:59:30:5b:6d:39:58:6b:
d4:25:21:b3:10:dc:90:19:ce:12:39:ad:c3:e8:96:f1:17:3b:
16:3e:62:04:18:e5:89:4c:22:26:45:da:9b:ea:a9:7d:b0:e8:
37:ee:a2:50:e9:9b:0b:49:0c:03:cc:d4:48:c1:19:cb:65:59:
be:37:3b:48:8f:36:7b:b1:e8:63:ab:47:0f:78:42:7a:c9:cf:
af:81:08:85:5b:94:b2:e1:63:86:17:b0:7d:e4:c2:86:3a:c9:
ad:44:b1:15:6b:fc:0a:89:bc:31:69:5a:52:c8:59:de:55:3f:
d1:ee:87:59:1f:9b:2b:b6:90:06:aa:90:9a:f1:9d:f2:4e:ed:
5d:ba:de:be:2d:59:51:9a:97:ed:c2:92:a1:16:29:41:ea:ee:
fb:32:5a:68:8c:23:1d:ed:ad:f0:66:34:10:0e:e7:dc:8a:94:
01:ac:90:f1:31:c8:e9:70:96:6e:b2:f6:01:05:c1:4d:92:7f:
b1:43:ab:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZacrOCxfv6qTs5aBlKKLG0HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMTQ5MTVlMjdmOGJmNDA1Y2NmY2E5NGI2YzUzMGJkNGQz
ZTU0YzAwHhcNMjUwNTA0MTkwMTM3WhcNMjUwNTA1MTkwMTM3WjAzMTEwLwYDVQQD
EygzNjVmNTNiYmIyYzcwM2MwYzhkZWViZjFhMzU0YTI0YWNiNDFmNWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFid1NMM9tGT0G7+LzCEWh6bAGn6
XEHor2OzyaB+ZC/hE7pLYZkBzCWXdIybuxs3NWy6V0d1037p/VvjpVm0rEu8C5fj
QGKmh0u9srjzKWozfmeMLX9yXQXtWvZlE42OFlxvbxkjd+PHRR2sWUNNEPSM0nFn
2poDOYzsqhH1aqc9TBWMjfLFzx2EDUD5+FXU9OsnMhsf7mhF6tK2SKsFTE9DosJa
dEG/C66S7/QXEGa1HaY44pCjuAoMfoC0nfC5b/Ghd3pxmaAglj7YMvttOCOcd0rE
Yb3IfZRlEEH/P0UlwelVlXtAO4CokWxjYjeaWM5PE9ETSV9GboxIYeGEVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDZfU7uyxwPAyN7r8aNUokrLQfW6MB8GA1UdIwQY
MBaAFCoUkV4n+L9AXM/KlLbFML1NPlTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2hTUlhpZjR2MEJjejhxVXRzVXd2VTAtVk1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC80NzIxYWMtYzRmZC00NmFmLTlhOTEt
NDBhZTkyNDdjYzY0LzEvS2hTUlhpZjR2MEJjejhxVXRzVXd2VTAtVk1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC80NzIxYWMtYzRmZC00NmFmLTlhOTEtNDBhZTkyNDdjYzY0
LzEvS2hTUlhpZjR2MEJjejhxVXRzVXd2VTAtVk1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABSshs+oZ
awyT535BRPGmziE9ePVOnSM7H7pwihTNVk3avG/oR9I6dSBWP+R+RYBJhoTNJld1
8U1hcUIHMS2JpBdZMFttOVhr1CUhsxDckBnOEjmtw+iW8Rc7Fj5iBBjliUwiJkXa
m+qpfbDoN+6iUOmbC0kMA8zUSMEZy2VZvjc7SI82e7HoY6tHD3hCesnPr4EIhVuU
suFjhhewfeTChjrJrUSxFWv8Com8MWlaUshZ3lU/0e6HWR+bK7aQBqqQmvGd8k7t
Xbrevi1ZUZqX7cKSoRYpQeru+zJaaIwjHe2t8GY0EA7n3IqUAayQ8THI6XCWbrL2
AQXBTZJ/sUOrEQ==
-----END CERTIFICATE-----
Generated at Sun May 4 22:58:37 2025 by rpki-client