Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
File: KjbWeMS7ysJK5r6pokyZXEjVk_A.mft (raw, json)
Hash identifier: pKCa4++e2cv+iBaZn1pxZXi5Bsv8ELXUxaHMtNfNjNM=
Subject key identifier: 58:69:29:DE:FE:15:20:5B:C9:53:85:6E:B6:63:9C:54:2B:B6:2B:F4
Authority key identifier: 2A:36:D6:78:C4:BB:CA:C2:4A:E6:BE:A9:A2:4C:99:5C:48:D5:93:F0
Certificate issuer: /CN=2a36d678c4bbcac24ae6bea9a24c995c48d593f0
Certificate serial: 0196778CA2B7057067D9AC649317718241D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
Manifest number: 1512
Signing time: Sun 27 Apr 2025 14:00:27 +0000
Manifest this update: Sun 27 Apr 2025 14:00:27 +0000
Manifest next update: Mon 28 Apr 2025 14:00:27 +0000
Files and hashes: 1: KjbWeMS7ysJK5r6pokyZXEjVk_A.crl (hash: VLwVLwN0CMPAzwhntCsUDtc4csN3GzGvX/6vafXB1mo=)
2: zK1LIZGeSSnaNXNW0qcn6w1MLCU.roa (hash: e8RwpvlrpxWqEOoeavX1Cyz9aTwhsZ8GdJGcHGa5+Eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:a2:b7:05:70:67:d9:ac:64:93:17:71:82:41:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a36d678c4bbcac24ae6bea9a24c995c48d593f0
Validity
Not Before: Apr 27 14:00:27 2025 GMT
Not After : Apr 28 14:00:27 2025 GMT
Subject: CN=586929defe15205bc953856eb6639c542bb62bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:20:4a:72:e8:39:96:a4:4e:d3:ed:f5:28:bc:
40:81:25:4a:38:49:17:51:93:c4:91:69:c7:90:59:
70:cc:64:6f:a2:a1:20:59:69:4a:b0:c3:8f:a0:61:
fa:7a:0c:55:ad:48:7e:20:26:c1:88:f2:c4:c3:7d:
c3:42:95:18:e2:1c:f4:4f:3f:a2:33:26:36:00:0d:
9a:7d:83:22:28:d4:63:12:ae:6b:9d:d3:d2:62:87:
a6:f3:fc:c5:b1:9e:b1:40:f8:4f:c1:b3:bf:a0:8b:
67:f0:f1:74:f3:39:72:2f:02:e1:50:ae:0c:3d:1c:
c5:19:e1:3f:99:e6:f9:1e:57:e7:5b:5f:27:5b:ff:
cf:c8:67:0b:74:7b:36:f4:e1:c7:29:be:97:94:1d:
ba:ff:0d:39:88:ff:2f:5f:40:82:9c:f0:15:e5:f8:
ce:62:6b:dc:b3:a0:64:56:09:af:30:f9:ab:ec:30:
7e:45:97:fa:fe:8d:89:b8:4d:72:72:7e:ee:8f:bb:
b1:98:5c:48:73:15:31:f8:64:22:d5:fe:af:3a:0e:
e5:0f:d8:13:0f:1d:dc:d0:49:10:69:a2:77:3a:9f:
43:38:94:f3:b3:9c:a4:36:55:d4:38:1a:18:34:ce:
9e:7d:fc:af:70:e3:4e:17:92:80:ff:33:ea:29:0a:
88:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:69:29:DE:FE:15:20:5B:C9:53:85:6E:B6:63:9C:54:2B:B6:2B:F4
X509v3 Authority Key Identifier:
keyid:2A:36:D6:78:C4:BB:CA:C2:4A:E6:BE:A9:A2:4C:99:5C:48:D5:93:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KjbWeMS7ysJK5r6pokyZXEjVk_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a01fd3-a867-42c6-9a0e-df651b966b2b/1/KjbWeMS7ysJK5r6pokyZXEjVk_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:9f:a4:5c:45:1d:9e:be:6a:2f:b4:39:53:b5:90:cb:49:c7:
6d:73:a7:88:17:6d:3b:06:72:6f:98:03:96:15:fd:12:ec:d2:
27:61:07:0a:70:f4:0a:b4:22:39:dc:41:a8:74:fe:e0:ba:4a:
ca:a8:fe:53:c6:77:39:c7:ba:25:dd:cb:1e:f6:f0:18:32:c5:
4e:de:fe:4d:a8:eb:f3:ce:32:dd:b8:cc:7d:a4:57:3a:a9:97:
a8:62:ef:3c:85:d1:5a:02:20:99:fe:a8:33:ed:c8:0f:b0:e8:
41:6e:a7:f1:06:bc:b5:c2:df:6e:7f:bb:c2:9e:31:79:5e:53:
c6:dc:91:5b:f3:4e:8a:60:80:7b:30:64:69:92:74:bb:7d:4e:
17:7e:75:ba:ad:d4:57:e1:b9:e7:e0:af:03:f6:a4:44:ce:a7:
1d:6a:de:33:a3:43:cc:b5:70:c8:4d:34:8e:34:79:64:91:e5:
d8:18:c0:89:d0:40:63:01:32:8f:6e:3f:e1:44:cf:f2:e8:4f:
e2:f1:30:9c:f3:d6:1e:98:2e:22:e3:9d:bc:76:75:d0:56:ce:
55:70:7c:fb:da:64:01:49:13:82:a0:2b:66:83:b8:e7:0e:a4:
cb:8b:ce:a4:b6:f0:20:e9:de:aa:2b:98:c0:9f:ff:16:bf:72:
f2:27:42:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ3jKK3BXBn2axkkxdxgkHZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMzZkNjc4YzRiYmNhYzI0YWU2YmVhOWEyNGM5OTVjNDhk
NTkzZjAwHhcNMjUwNDI3MTQwMDI3WhcNMjUwNDI4MTQwMDI3WjAzMTEwLwYDVQQD
Eyg1ODY5MjlkZWZlMTUyMDViYzk1Mzg1NmViNjYzOWM1NDJiYjYyYmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSBKcug5lqRO0+31KLxAgSVKOEkX
UZPEkWnHkFlwzGRvoqEgWWlKsMOPoGH6egxVrUh+ICbBiPLEw33DQpUY4hz0Tz+i
MyY2AA2afYMiKNRjEq5rndPSYoem8/zFsZ6xQPhPwbO/oItn8PF08zlyLwLhUK4M
PRzFGeE/meb5HlfnW18nW//PyGcLdHs29OHHKb6XlB26/w05iP8vX0CCnPAV5fjO
Ymvcs6BkVgmvMPmr7DB+RZf6/o2JuE1ycn7uj7uxmFxIcxUx+GQi1f6vOg7lD9gT
Dx3c0EkQaaJ3Op9DOJTzs5ykNlXUOBoYNM6effyvcONOF5KA/zPqKQqIRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFhpKd7+FSBbyVOFbrZjnFQrtiv0MB8GA1UdIwQY
MBaAFCo21njEu8rCSua+qaJMmVxI1ZPwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2piV2VNUzd5c0pLNXI2cG9reVpYRWpWa19BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9hMDFmZDMtYTg2Ny00MmM2LTlhMGUt
ZGY2NTFiOTY2YjJiLzEvS2piV2VNUzd5c0pLNXI2cG9reVpYRWpWa19BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9hMDFmZDMtYTg2Ny00MmM2LTlhMGUtZGY2NTFiOTY2YjJi
LzEvS2piV2VNUzd5c0pLNXI2cG9reVpYRWpWa19BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArp+kXEUd
nr5qL7Q5U7WQy0nHbXOniBdtOwZyb5gDlhX9EuzSJ2EHCnD0CrQiOdxBqHT+4LpK
yqj+U8Z3Oce6Jd3LHvbwGDLFTt7+Tajr884y3bjMfaRXOqmXqGLvPIXRWgIgmf6o
M+3ID7DoQW6n8Qa8tcLfbn+7wp4xeV5TxtyRW/NOimCAezBkaZJ0u31OF351uq3U
V+G55+CvA/akRM6nHWreM6NDzLVwyE00jjR5ZJHl2BjAidBAYwEyj24/4UTP8uhP
4vEwnPPWHpguIuOdvHZ10FbOVXB8+9pkAUkTgqArZoO45w6ky4vOpLbwIOneqiuY
wJ//Fr9y8idCTw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 23:16:50 2025 by rpki-client