Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
File: K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft (raw, json)
Hash identifier: uC9qsKL186hO1fRdIa59/oKtMazuyNjQKUc1920fUPs=
Subject key identifier: CC:3A:07:63:F2:EC:66:AB:F6:0F:82:19:FF:94:2C:79:35:90:1C:05
Authority key identifier: 2B:73:AA:84:37:BC:67:23:51:9D:0F:32:0B:F1:F1:70:41:41:A5:3D
Certificate issuer: /CN=2b73aa8437bc6723519d0f320bf1f1704141a53d
Certificate serial: 019676B14B151773EF30BA6D7343311541C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
Manifest number: 02D8
Signing time: Sun 27 Apr 2025 10:00:52 +0000
Manifest this update: Sun 27 Apr 2025 10:00:52 +0000
Manifest next update: Mon 28 Apr 2025 10:00:52 +0000
Files and hashes: 1: K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl (hash: EOKk0Yzy1/jcaw0nUPeEhfdc/5Mu7q7M98UC2ggc5FA=)
2: sWNNpgMtdwo9DAGm3hQEfuzD9Oo.roa (hash: vP2EAWCKtEv68Ix4O5DKWgGMPVW5lFga8QKrSKSQB2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b1:4b:15:17:73:ef:30:ba:6d:73:43:31:15:41:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b73aa8437bc6723519d0f320bf1f1704141a53d
Validity
Not Before: Apr 27 10:00:52 2025 GMT
Not After : Apr 28 10:00:52 2025 GMT
Subject: CN=cc3a0763f2ec66abf60f8219ff942c7935901c05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:10:52:3d:f7:21:8f:5e:4e:85:44:eb:5c:15:
0b:d1:18:35:8a:bb:d0:bf:2c:1d:e4:81:94:4b:5e:
78:aa:fc:c9:61:d4:0d:05:62:51:31:18:91:45:c2:
b6:e2:89:a7:50:8b:58:f3:4b:12:cf:04:75:ad:6d:
1a:b7:bd:58:2b:51:34:f4:98:37:9e:4b:b0:6c:91:
c5:93:42:bf:67:85:d3:c4:e9:ab:f1:fe:84:7c:12:
de:0b:a8:cc:a8:9a:6c:a7:4c:a2:d5:da:7c:23:d7:
b7:db:e8:74:78:e4:0e:9d:88:8f:a4:2b:5b:33:c0:
4b:df:8a:3f:e1:9a:62:f3:ee:ff:8a:fe:7c:60:30:
99:af:28:55:e7:5c:91:af:e2:9e:c5:e6:62:33:86:
e3:3c:60:4a:0b:e4:ad:45:34:eb:13:bc:bf:d0:e6:
bc:4d:94:45:dc:2a:e7:ac:22:e3:0e:78:c2:7e:f3:
77:f2:a2:84:57:90:b6:1b:70:7c:2f:7d:1e:e8:6f:
27:a8:29:67:bc:fe:f8:e2:2b:0b:26:b2:86:d7:89:
cf:fb:92:2e:58:c9:a8:4f:86:70:07:2b:70:0a:04:
18:d2:bb:10:18:7a:d2:4c:72:92:09:58:ff:3f:02:
bb:65:1e:92:da:90:bb:6e:06:a7:6e:3c:4d:38:11:
5e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:3A:07:63:F2:EC:66:AB:F6:0F:82:19:FF:94:2C:79:35:90:1C:05
X509v3 Authority Key Identifier:
keyid:2B:73:AA:84:37:BC:67:23:51:9D:0F:32:0B:F1:F1:70:41:41:A5:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/b0ca94-0f1b-488f-9723-521fce6b64d9/1/K3OqhDe8ZyNRnQ8yC_HxcEFBpT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:ca:a1:36:bf:a5:3c:38:70:6d:72:aa:c9:09:fc:cb:ca:ee:
84:cf:1a:a4:db:92:1d:40:f7:72:9f:09:22:c0:95:69:fc:64:
8c:09:da:cf:2b:60:62:3c:b5:77:c3:d9:3d:55:b6:d7:24:e4:
de:1f:01:76:e3:88:6e:4a:d1:8b:c1:a0:b9:14:e1:7f:3e:6e:
c6:a0:8e:d8:61:ca:62:39:c9:85:77:dc:3c:40:ab:be:07:f0:
ba:23:65:e0:f2:f2:bb:95:c2:b1:ed:cb:41:63:1a:84:a1:ec:
33:03:8a:00:36:83:8d:36:7c:91:e8:54:04:01:93:8d:51:5a:
aa:f8:80:91:dc:3b:7b:ef:72:68:9c:e7:0d:fd:8c:9f:01:d2:
d5:5e:dc:62:6b:61:96:5c:59:30:cc:aa:f4:89:15:4a:d6:f3:
29:75:c9:e4:eb:25:26:c5:6f:64:19:76:78:df:45:68:52:82:
df:01:9f:10:6e:07:5c:5a:dc:19:e3:b8:b7:cd:f6:2a:bc:32:
5a:3b:92:ee:ef:39:c6:01:6f:33:e9:31:2f:95:95:a9:f9:e6:
26:1b:44:4a:29:30:99:24:b1:92:f1:08:f8:30:d9:92:d9:a3:
2d:42:06:a4:0d:e8:32:62:f6:c1:e2:25:7c:95:7b:20:fa:c9:
55:e1:da:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2sUsVF3PvMLptc0MxFUHFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiNzNhYTg0MzdiYzY3MjM1MTlkMGYzMjBiZjFmMTcwNDE0
MWE1M2QwHhcNMjUwNDI3MTAwMDUyWhcNMjUwNDI4MTAwMDUyWjAzMTEwLwYDVQQD
EyhjYzNhMDc2M2YyZWM2NmFiZjYwZjgyMTlmZjk0MmM3OTM1OTAxYzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkBBSPfchj15OhUTrXBUL0Rg1irvQ
vywd5IGUS154qvzJYdQNBWJRMRiRRcK24omnUItY80sSzwR1rW0at71YK1E09Jg3
nkuwbJHFk0K/Z4XTxOmr8f6EfBLeC6jMqJpsp0yi1dp8I9e32+h0eOQOnYiPpCtb
M8BL34o/4Zpi8+7/iv58YDCZryhV51yRr+KexeZiM4bjPGBKC+StRTTrE7y/0Oa8
TZRF3CrnrCLjDnjCfvN38qKEV5C2G3B8L30e6G8nqClnvP744isLJrKG14nP+5Iu
WMmoT4ZwBytwCgQY0rsQGHrSTHKSCVj/PwK7ZR6S2pC7bganbjxNOBFejQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMw6B2Py7Gar9g+CGf+ULHk1kBwFMB8GA1UdIwQY
MBaAFCtzqoQ3vGcjUZ0PMgvx8XBBQaU9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzNPcWhEZThaeU5SblE4eUNfSHhjRUZCcFQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9iMGNhOTQtMGYxYi00ODhmLTk3MjMt
NTIxZmNlNmI2NGQ5LzEvSzNPcWhEZThaeU5SblE4eUNfSHhjRUZCcFQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9iMGNhOTQtMGYxYi00ODhmLTk3MjMtNTIxZmNlNmI2NGQ5
LzEvSzNPcWhEZThaeU5SblE4eUNfSHhjRUZCcFQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxcqhNr+l
PDhwbXKqyQn8y8ruhM8apNuSHUD3cp8JIsCVafxkjAnazytgYjy1d8PZPVW21yTk
3h8BduOIbkrRi8GguRThfz5uxqCO2GHKYjnJhXfcPECrvgfwuiNl4PLyu5XCse3L
QWMahKHsMwOKADaDjTZ8kehUBAGTjVFaqviAkdw7e+9yaJznDf2MnwHS1V7cYmth
llxZMMyq9IkVStbzKXXJ5OslJsVvZBl2eN9FaFKC3wGfEG4HXFrcGeO4t832Krwy
WjuS7u85xgFvM+kxL5WVqfnmJhtESikwmSSxkvEI+DDZktmjLUIGpA3oMmL2weIl
fJV7IPrJVeHakA==
-----END CERTIFICATE-----
Generated at Sun Apr 27 14:17:48 2025 by rpki-client