Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
File: KgzEYwHIsf1GOSkwGPulNlOiZbI.mft (raw, json)
Hash identifier: Rny6VvwDGZg1UDUF+YIbONBG00feBzNuyW09QW1upY4=
Subject key identifier: 1B:76:41:F9:63:6D:89:9E:7D:BC:99:6F:9C:9E:6D:02:1E:F8:26:E1
Authority key identifier: 2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
Certificate issuer: /CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Certificate serial: 0196730B35F176C534052CB74E1F37307129
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
Manifest number: 1511
Signing time: Sat 26 Apr 2025 17:00:36 +0000
Manifest this update: Sat 26 Apr 2025 17:00:36 +0000
Manifest next update: Sun 27 Apr 2025 17:00:36 +0000
Files and hashes: 1: 25LU7394eXHg-PBe4_GLTG3VIkw.roa (hash: HyP22/g9CSOKH8mPcT6JDAYedjiAUR/5O/lp9cDajCk=)
2: KgzEYwHIsf1GOSkwGPulNlOiZbI.crl (hash: 9ZmeHXLyC1UDvQmgK/85o6pSh93RN53mZZYKG+MFxFk=)
3: VUqvat4WtfuUczhMBY4TDvxEK_s.roa (hash: Zqzw2dEApvnq4zRqyWAKudIEokzGJ+rSfWzcaKX+at0=)
4: jfIFCuUZlCfoxkAB48zp-OMBSv0.roa (hash: tfMbXizXQYE7ANVbZs7KN2qDtk5wxuAhU53t/l8imds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:0b:35:f1:76:c5:34:05:2c:b7:4e:1f:37:30:71:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Validity
Not Before: Apr 26 17:00:36 2025 GMT
Not After : Apr 27 17:00:36 2025 GMT
Subject: CN=1b7641f9636d899e7dbc996f9c9e6d021ef826e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ed:89:e9:fc:fe:69:c3:cc:29:87:12:c4:9b:
e2:1b:e9:4a:07:51:ea:2c:07:6e:09:0f:3b:be:cd:
cb:08:12:40:ee:66:9e:95:ed:d8:64:fe:3e:b4:4b:
3f:bc:64:9a:04:b4:01:a1:05:e3:db:9a:db:fb:ce:
73:10:79:ee:f8:5d:81:60:51:58:c3:1e:59:d7:4e:
ad:e2:ff:35:ce:2d:d0:ca:10:95:07:87:45:b2:ac:
5f:51:bd:f3:cf:ab:04:e4:bf:7c:c6:53:e1:cb:a5:
36:cd:46:2f:e9:a9:6c:e0:3a:8b:91:b6:12:65:15:
17:02:38:60:39:85:a1:8a:8e:53:75:a5:7b:2d:b4:
b9:32:75:de:dd:54:3f:90:e7:19:3f:27:d1:41:7a:
7b:09:37:36:9a:4c:24:52:05:2f:c2:5d:50:e7:b6:
9b:d4:bf:04:a1:11:0f:7c:0e:83:e1:56:4f:35:d4:
a8:c0:37:80:45:42:2f:05:ca:a4:03:e5:2d:b2:ce:
31:6e:5f:87:69:7e:53:00:14:ea:65:67:0b:3a:9d:
cd:9e:df:54:ba:b2:9e:54:28:58:f8:3a:57:f8:5a:
14:8f:a5:5b:c9:e4:0f:cf:c6:66:e0:e8:16:00:6b:
ac:9e:f2:0e:e7:e4:3f:a2:7d:91:74:bd:b5:d3:f2:
7a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:76:41:F9:63:6D:89:9E:7D:BC:99:6F:9C:9E:6D:02:1E:F8:26:E1
X509v3 Authority Key Identifier:
keyid:2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:be:68:c1:4b:ff:ba:81:25:44:e7:83:2d:a9:2e:40:72:fd:
da:0d:fd:2b:04:e5:15:d7:6f:8e:66:1c:5a:1b:4a:ed:4d:38:
1d:23:14:da:3c:9c:84:46:9c:89:44:47:ab:a5:49:0e:87:89:
a7:d8:c5:39:73:b7:f9:12:cb:88:f7:83:be:9c:e2:99:3b:df:
67:28:bd:3f:c3:c3:94:93:6a:44:7d:7e:20:4c:b5:29:ec:5d:
0a:73:7d:5f:d3:c8:89:83:0d:88:30:31:2c:0e:c9:a1:fd:ea:
24:69:1d:6d:df:1b:a3:a9:a7:2a:1d:6f:d6:13:73:70:46:45:
c4:5d:7b:1a:4d:04:3b:70:81:f2:14:bc:b0:04:59:0f:2e:81:
91:7f:e5:29:fb:09:27:a7:6d:40:d7:ca:f3:e8:28:9a:8c:8d:
da:35:b6:1f:9e:f4:06:ea:39:ab:04:26:7e:2e:e4:fe:15:13:
8a:fd:d5:2e:98:42:d5:18:1d:a1:b3:7f:62:ca:06:aa:4f:5a:
73:ff:13:16:58:3b:a2:36:aa:fd:47:a2:d5:ef:b4:99:22:6b:
f1:57:a7:07:82:5d:f6:04:0f:82:56:99:06:ab:f7:c5:cc:da:
7d:d5:c8:e3:fa:74:a0:ee:d1:72:1d:80:49:b9:12:74:06:a4:
f4:11:d9:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 01:29:45 2025 by rpki-client