Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
File: KfFNQRwg7PxJYhX82w9D2EchkJY.mft (raw, json)
Hash identifier: noWv4zhTKr/dJaAO1K3xMLDupvYK7JPLePvtKpMwYlw=
Subject key identifier: 09:1C:71:7C:33:86:2E:7F:17:0C:88:55:16:96:7C:2A:7E:0E:A7:F0
Authority key identifier: 29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
Certificate issuer: /CN=29f14d411c20ecfc496215fcdb0f43d847219096
Certificate serial: 019691155646295942299EFF4CFF8C4284C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
Manifest number: 11B0
Signing time: Fri 02 May 2025 13:00:16 +0000
Manifest this update: Fri 02 May 2025 13:00:16 +0000
Manifest next update: Sat 03 May 2025 13:00:16 +0000
Files and hashes: 1: K3k_GCXnaMv59dLKq-rHfPOR6HE.roa (hash: 5Q6jyJMRb9gad/mJLct+/fYWsLJ0GiEE1wJJESuoLsM=)
2: KfFNQRwg7PxJYhX82w9D2EchkJY.crl (hash: F/xYr23mP/oPojmMwJ1Pk3tdGJdfld7L7trBTu+AExY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 13:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:15:56:46:29:59:42:29:9e:ff:4c:ff:8c:42:84:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f14d411c20ecfc496215fcdb0f43d847219096
Validity
Not Before: May 2 13:00:16 2025 GMT
Not After : May 3 13:00:16 2025 GMT
Subject: CN=091c717c33862e7f170c885516967c2a7e0ea7f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b9:55:de:9d:3d:72:ad:cc:65:29:2b:d5:18:
72:80:dd:1e:29:24:0b:9c:ae:47:c4:38:8e:09:f8:
f7:93:ae:b3:70:05:28:ee:98:2a:aa:0b:70:7b:43:
24:68:cf:0c:66:fc:82:d0:f9:d3:15:ce:4e:60:5a:
cf:d7:05:43:69:2e:b6:70:b4:56:6f:c5:9f:02:d2:
db:cd:d4:e1:3c:97:f3:a5:0b:3d:c4:38:7b:f3:4a:
2a:98:dc:46:2d:17:00:d4:1c:e4:fa:6d:d8:f2:b3:
3a:08:dd:39:d9:14:2f:28:57:5f:59:a2:0e:b9:1d:
5f:9f:19:e9:4f:40:00:a3:d4:7f:ab:78:a8:a2:7c:
37:29:8a:fd:2d:8b:1e:5e:40:0b:3a:5e:1a:42:2f:
4b:b1:27:99:aa:71:c8:20:57:28:92:7a:4a:84:88:
fe:a7:68:e5:38:ae:60:38:07:4b:a7:0b:0f:95:18:
3e:57:79:1b:3e:26:72:ee:10:b5:e9:2c:27:2e:88:
d5:56:cb:4e:fe:03:8c:04:8d:f3:4f:78:72:d7:ed:
be:93:44:29:b0:d5:2c:79:69:55:51:7b:51:a2:7d:
83:5f:67:6d:8b:bb:7b:23:76:07:bf:a8:40:1a:27:
ea:30:f8:d5:5e:27:f1:f2:7b:b3:a7:57:83:87:1c:
c5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1C:71:7C:33:86:2E:7F:17:0C:88:55:16:96:7C:2A:7E:0E:A7:F0
X509v3 Authority Key Identifier:
keyid:29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:84:79:dd:50:b3:dc:b8:ae:be:f5:e5:63:7c:6e:5d:78:40:
82:ef:c4:32:81:01:0f:67:e4:19:57:f8:df:45:37:01:fd:0f:
30:4e:33:ab:5a:5f:20:9f:a5:77:71:35:4e:d7:b0:64:08:61:
7b:ba:14:bb:c6:95:c6:e1:05:6d:17:98:88:af:b6:8e:20:7c:
25:95:39:1c:e0:78:69:31:b5:24:fb:0e:86:af:f6:46:d1:a5:
76:25:2d:45:dc:6d:ea:f2:8c:66:6e:40:2f:1e:c3:d3:e0:e6:
b7:09:da:b3:1e:7f:16:8a:f5:bb:4b:d9:0a:4a:3f:a0:ba:1f:
51:32:41:81:4a:69:5f:7e:64:26:ee:9d:6c:33:6c:24:06:4a:
14:d4:64:f2:ff:a6:39:fc:0a:d2:25:bb:98:8a:7f:4d:b5:14:
00:db:41:51:f9:e9:25:41:5d:66:e4:2c:c1:48:34:6a:6e:a7:
7d:e8:cf:fb:63:7c:48:1e:80:da:c3:14:53:4e:08:18:25:c8:
26:1d:0e:d7:4e:33:0e:42:ce:67:39:d6:66:64:fb:8b:e1:7a:
1b:22:10:84:a2:b2:5a:9e:6b:ba:86:67:51:8c:f6:17:13:3b:
5a:8e:b2:ce:2b:66:2e:64:7b:2a:f7:bc:d0:90:50:b2:23:25:
88:90:e4:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 00:00:20 2025 by rpki-client