Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: 1aMXymAyxYVG64+LI3UWj1b3FK59IuUm2uIKx0qE8AI=
Subject key identifier: A8:6E:F2:FF:2E:45:94:78:2F:1D:72:A1:01:6F:FE:71:F1:D8:45:D5
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 0196775576E39A7CC281C5F949377FC7253E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 1511
Signing time: Sun 27 Apr 2025 13:00:11 +0000
Manifest this update: Sun 27 Apr 2025 13:00:11 +0000
Manifest next update: Mon 28 Apr 2025 13:00:11 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: XD8QN5B0i8+DTqr3+hmXpgcvQgKygjPhu7hrtGfdcnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 13:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:76:e3:9a:7c:c2:81:c5:f9:49:37:7f:c7:25:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Apr 27 13:00:11 2025 GMT
Not After : Apr 28 13:00:11 2025 GMT
Subject: CN=a86ef2ff2e4594782f1d72a1016ffe71f1d845d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:66:d5:18:c4:33:69:f9:7f:c6:11:85:bb:9b:
92:a6:aa:cc:66:3c:77:ce:04:a4:46:95:61:ec:ea:
97:45:01:00:7c:fb:af:08:9b:91:ce:2b:3f:b3:36:
d8:aa:01:58:89:fe:91:f2:7f:d7:c2:98:51:11:54:
8d:ab:63:b8:2a:95:03:4c:4d:84:60:49:8d:38:a2:
c3:4d:4f:12:96:56:8a:d4:d2:fe:3d:fc:e8:59:8d:
7f:65:61:0c:c1:7d:47:1d:c8:74:1a:64:1c:1d:d5:
7f:c2:ac:65:2a:cd:6f:ef:90:78:9f:13:40:38:ae:
d9:15:1c:f8:1b:1d:75:a7:ee:39:bd:32:4e:5f:fa:
96:1e:57:07:57:b6:a8:a1:d8:b3:f0:07:70:a1:8a:
71:15:bf:82:58:35:16:e1:06:4c:97:a8:94:2b:4b:
cf:80:0e:21:de:cb:b9:3b:94:79:be:87:1e:97:4b:
6c:ba:2d:92:b4:43:5b:c4:b5:76:2b:3c:c6:13:47:
c2:c3:7d:ec:54:43:9b:e9:12:c1:7f:2c:1e:9d:27:
b8:f7:47:2a:d2:73:11:a6:db:d9:7b:04:d6:27:2f:
2d:29:ce:f4:6d:04:87:4f:96:52:fc:9c:51:81:00:
15:ef:f0:bd:6f:e8:b8:2a:93:c6:79:69:73:bb:5a:
7e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:6E:F2:FF:2E:45:94:78:2F:1D:72:A1:01:6F:FE:71:F1:D8:45:D5
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5e:29:ba:14:e8:9e:df:80:73:80:85:3b:5a:e1:3b:2c:21:
1f:22:45:89:c3:cd:eb:5b:14:e4:c8:fa:69:c8:ce:71:4a:f1:
67:60:7b:c8:45:89:f8:99:ce:60:56:ba:11:18:eb:0f:d7:bd:
c1:bd:27:2a:3b:d6:7a:f1:df:df:46:74:fb:36:74:43:5e:ac:
37:b5:9d:02:1e:da:97:ff:bc:1a:26:ab:0d:3c:e0:08:48:86:
b0:31:08:89:55:21:05:c8:0d:f4:32:c8:2a:17:43:de:c8:52:
29:39:b9:b9:cb:4a:1f:79:0f:46:67:4a:65:57:73:5f:b8:67:
ec:fb:7a:d4:ec:4d:83:6b:81:8c:b7:97:96:4a:de:85:f7:4a:
aa:6f:d9:b8:e6:95:b5:3f:09:72:45:f6:2f:9c:d0:b4:97:fe:
3f:9c:06:3d:c8:f6:f5:b0:89:d2:d5:fc:6b:dc:62:c2:5f:fd:
8d:39:6d:7d:fc:d4:18:4c:18:6b:f5:f8:70:ce:99:66:b9:87:
f4:92:28:d9:bc:55:15:fb:13:34:a3:5b:a8:1b:90:96:c1:12:
82:ab:c5:62:68:7e:45:24:43:c9:c4:96:2e:2b:56:c7:a7:9a:
ca:ef:f2:d2:36:e0:7e:e0:72:cb:6e:7c:c5:58:db:0a:5f:70:
86:d7:5d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:21:24 2025 by rpki-client