Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json)
Hash identifier: C0OCTjls829zLmaqBUlwMNSdubbChVFu4xjfSNrGRAA=
Subject key identifier: B1:37:B3:84:D8:D7:69:5D:29:8C:A6:F1:5A:C9:C8:EF:1F:9C:21:37
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 01976DABE67AFDB4785EF05DF143D881F0E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
Manifest number: 1591
Signing time: Sat 14 Jun 2025 09:01:11 +0000
Manifest this update: Sat 14 Jun 2025 09:01:11 +0000
Manifest next update: Sun 15 Jun 2025 09:01:11 +0000
Files and hashes: 1: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: L7QZM8JWMnOSIe2EqWyO+vJ1xqoph+w6DOj/nTuNg4c=)
2: wzuPiDmhnP7Nv_Dp2QI7h5h3O-g.roa (hash: 1/0ldOLBPILSR69hThfIMtpZUKnlBM4vs1kLEHBC5Mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:e6:7a:fd:b4:78:5e:f0:5d:f1:43:d8:81:f0:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Jun 14 09:01:11 2025 GMT
Not After : Jun 15 09:01:11 2025 GMT
Subject: CN=b137b384d8d7695d298ca6f15ac9c8ef1f9c2137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:81:72:cd:73:61:3b:88:e4:5d:5e:25:4f:e4:
64:57:e0:a5:e6:df:ce:2e:8a:c8:45:a1:65:e3:7a:
90:81:35:22:e4:be:0d:7e:f8:84:f6:ce:97:c5:39:
fd:56:e3:fa:60:c3:16:f4:eb:9a:e2:64:fa:d1:5a:
c9:f1:1e:00:5e:8b:8a:c0:7f:4d:f2:55:c6:a4:e6:
ac:f1:eb:6f:a4:c9:ce:65:a7:40:2f:cb:2e:ad:66:
f8:92:9d:9d:86:0d:eb:02:a8:f4:1e:a6:9a:92:33:
0a:c3:2d:c8:89:46:af:49:c9:33:38:d4:bc:e4:28:
ca:80:2c:25:89:9f:a6:b9:d6:1f:76:33:74:e5:69:
d1:51:5f:63:2c:f2:21:df:4c:1f:8f:14:11:95:f8:
a4:12:60:92:1c:e9:0e:cb:ae:4b:98:5a:0c:ba:5d:
9a:15:50:92:91:57:f2:d7:03:90:77:8a:22:ba:16:
be:21:ff:c5:5b:10:04:26:5e:23:c7:49:33:81:49:
e0:5e:0d:b7:32:8a:a5:72:7e:b8:21:d4:be:1f:2c:
2a:c9:84:3d:b0:e2:b3:97:2e:e3:cd:b3:0b:f9:2f:
ea:d8:c1:90:89:48:04:96:62:9a:58:3d:92:b1:40:
54:32:cb:84:74:83:52:f9:1f:4e:97:93:3f:7c:7e:
82:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:37:B3:84:D8:D7:69:5D:29:8C:A6:F1:5A:C9:C8:EF:1F:9C:21:37
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:96:71:f8:1d:f4:bc:ef:45:ee:ac:4a:b1:fe:37:4b:25:69:
b4:94:5f:39:4e:fe:cc:41:32:46:ad:80:72:c3:a3:b9:c1:9d:
73:c6:b4:fd:b8:59:c4:3a:b0:af:9e:9a:25:b8:4f:bb:98:c3:
00:28:6a:0e:53:d7:34:83:e7:cd:58:97:b3:74:de:ef:93:dc:
5e:f3:2b:7c:28:bd:bd:66:0b:38:7d:1d:a7:23:78:98:e8:f9:
72:1c:a3:91:82:a8:63:e5:d4:05:a4:da:05:66:ac:73:21:de:
d1:bb:06:2b:75:3e:9a:6e:4f:77:8e:50:da:f3:68:f0:21:61:
01:cc:ee:67:10:14:08:d8:4e:69:60:47:6d:2d:ad:9c:88:b0:
64:7d:57:ec:0f:a9:47:8e:8c:e1:37:f0:a1:59:52:84:d2:86:
19:ea:85:2d:d3:1b:bb:07:a9:46:01:63:be:cc:e0:4c:a6:a4:
68:a2:78:47:43:82:39:7a:b1:4b:fc:48:b2:01:90:c6:79:02:
17:d5:43:e5:bc:a1:ae:bd:f6:0d:f1:09:27:9c:34:ac:5c:a2:
49:b7:24:4d:e1:90:1a:d6:6d:fe:6f:a6:0d:2d:f7:a9:76:5d:
81:7a:32:05:e5:d0:1d:87:9a:0a:49:db:b5:7a:e4:73:93:62:
a8:1d:40:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtq+Z6/bR4XvBd8UPYgfDgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyODAxNmRiNTVlNjY0YmE3MjFlMTlhZTlhYjQzMTZjMTBk
OTY3MDgwHhcNMjUwNjE0MDkwMTExWhcNMjUwNjE1MDkwMTExWjAzMTEwLwYDVQQD
EyhiMTM3YjM4NGQ4ZDc2OTVkMjk4Y2E2ZjE1YWM5YzhlZjFmOWMyMTM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkoFyzXNhO4jkXV4lT+RkV+Cl5t/O
LorIRaFl43qQgTUi5L4NfviE9s6XxTn9VuP6YMMW9Oua4mT60VrJ8R4AXouKwH9N
8lXGpOas8etvpMnOZadAL8surWb4kp2dhg3rAqj0HqaakjMKwy3IiUavSckzONS8
5CjKgCwliZ+mudYfdjN05WnRUV9jLPIh30wfjxQRlfikEmCSHOkOy65LmFoMul2a
FVCSkVfy1wOQd4oiuha+If/FWxAEJl4jx0kzgUngXg23Moqlcn64IdS+HywqyYQ9
sOKzly7jzbML+S/q2MGQiUgElmKaWD2SsUBUMsuEdINS+R9Ol5M/fH6CywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLE3s4TY12ldKYym8VrJyO8fnCE3MB8GA1UdIwQY
MBaAFJKAFttV5mS6ch4Zrpq0MWwQ2WcIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83MjFhMWMtY2YzOS00NDQ4LTg4M2It
ZTg5Y2RhYjgyZTFjLzEva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC83MjFhMWMtY2YzOS00NDQ4LTg4M2ItZTg5Y2RhYjgyZTFj
LzEva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP5Zx+B30
vO9F7qxKsf43SyVptJRfOU7+zEEyRq2AcsOjucGdc8a0/bhZxDqwr56aJbhPu5jD
AChqDlPXNIPnzViXs3Te75PcXvMrfCi9vWYLOH0dpyN4mOj5chyjkYKoY+XUBaTa
BWascyHe0bsGK3U+mm5Pd45Q2vNo8CFhAczuZxAUCNhOaWBHbS2tnIiwZH1X7A+p
R46M4TfwoVlShNKGGeqFLdMbuwepRgFjvszgTKakaKJ4R0OCOXqxS/xIsgGQxnkC
F9VD5byhrr32DfEJJ5w0rFyiSbckTeGQGtZt/m+mDS33qXZdgXoyBeXQHYeaCknb
tXrkc5NiqB1Aag==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:07:48 2025 by rpki-client