Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
File: KeRudYZejUoIHktd2kbTyUADZ5s.mft (raw, json)
Hash identifier: As1OYPdZReaUSZ5nXYOe8pItjH+EZQswEfe1E6BrGBQ=
Subject key identifier: F7:85:C1:CA:B3:2E:3F:EB:71:AA:08:9A:44:F9:BF:B7:ED:B1:C6:AA
Authority key identifier: 29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
Certificate issuer: /CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Certificate serial: 019680902EADF14E12B2C79383B460AFC159
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
Manifest number: 13F3
Signing time: Tue 29 Apr 2025 08:00:54 +0000
Manifest this update: Tue 29 Apr 2025 08:00:54 +0000
Manifest next update: Wed 30 Apr 2025 08:00:54 +0000
Files and hashes: 1: KeRudYZejUoIHktd2kbTyUADZ5s.crl (hash: zz+YzeX/m9yOIOOx876oaSuxm/gSPM/P6QVMIu6LL5s=)
2: sYwqpJAH6xt25FV658_Z0b8PqQ4.roa (hash: nTc7YSWaucHsViUALBoDYtryVR1AkC4pCCvnaDdeVwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 08:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:90:2e:ad:f1:4e:12:b2:c7:93:83:b4:60:af:c1:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Validity
Not Before: Apr 29 08:00:54 2025 GMT
Not After : Apr 30 08:00:54 2025 GMT
Subject: CN=f785c1cab32e3feb71aa089a44f9bfb7edb1c6aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:58:56:ab:6f:6a:6f:45:2d:07:03:b6:bf:df:
68:7f:79:0d:fb:e5:0e:e4:db:d9:ec:63:39:12:d7:
f1:c4:9d:79:a2:69:b8:a5:35:5d:41:7c:c9:84:d9:
2f:ba:bd:84:e4:49:eb:52:3d:db:1f:b7:19:1a:d0:
4f:6c:dc:ed:19:89:10:8d:a2:18:69:a2:5b:ff:a3:
3e:91:90:6d:c7:f9:50:58:20:ac:94:aa:15:b6:99:
61:74:a6:61:3f:10:6a:00:36:3d:04:dd:6e:fb:52:
83:4c:11:37:db:ac:b1:1d:62:5b:c4:26:4c:6d:ed:
44:3f:3c:84:c5:32:3a:1f:6c:60:76:a1:52:fb:db:
29:9a:52:83:af:98:4e:27:9f:7e:83:91:4b:76:bb:
27:d7:19:70:78:b3:72:28:57:a1:a6:70:cd:ab:73:
c2:58:c7:39:18:4d:45:d1:af:b5:dc:68:a4:40:eb:
fa:e3:e4:d1:3d:ba:d8:f0:8e:b4:ff:85:b1:42:ae:
c3:42:e6:4d:83:f0:68:2b:7c:c1:c2:16:a7:41:ca:
72:1b:14:3e:d7:bf:24:f8:53:1d:91:a9:5b:a8:45:
8a:f6:a6:ae:c6:0d:50:89:e6:44:d3:92:93:51:70:
16:1a:0f:39:ec:a2:6c:4c:d4:77:6f:3d:29:75:65:
44:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:85:C1:CA:B3:2E:3F:EB:71:AA:08:9A:44:F9:BF:B7:ED:B1:C6:AA
X509v3 Authority Key Identifier:
keyid:29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:4e:07:8e:c6:65:af:9f:21:6b:4b:d3:3a:53:a0:79:a4:c2:
c8:8c:11:b2:3c:61:bc:4c:ec:16:7e:ca:20:fc:00:c7:4d:2e:
d0:10:b4:ca:cc:b6:95:4c:2f:3b:7f:9f:c6:3c:e3:8a:7d:6c:
ae:b0:8c:7c:4f:15:ba:c7:92:3a:97:00:f0:9b:bd:50:a4:bd:
f2:4b:67:1f:82:2e:64:31:f1:16:ae:3b:e5:9f:b0:ac:11:d3:
93:a0:d8:c2:1b:ed:cb:d7:09:df:8d:98:3c:fb:86:c9:ae:60:
26:98:82:99:e1:fc:2e:5a:7e:a2:21:3d:38:79:ac:4f:28:12:
7f:98:96:b1:d6:b7:6c:cc:e4:88:74:cd:30:b9:9c:99:0d:d5:
3e:87:3f:16:2c:3d:85:41:9f:da:eb:75:d1:2c:9f:53:88:e2:
0e:4d:71:43:f8:2d:d8:6b:da:e1:97:53:26:dd:72:20:e5:46:
c3:5e:63:58:00:4b:0d:2a:37:a3:89:af:24:e0:75:fc:14:65:
ea:44:17:dd:8f:8e:83:b5:ff:21:f9:f8:81:91:7b:fb:87:6d:
b3:18:54:e9:7c:a2:c0:5d:f4:71:c2:99:f1:fe:09:04:ce:87:
be:ac:1a:37:59:40:58:44:be:c8:14:8a:23:ed:0c:5f:b2:f4:
23:f6:60:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 15:22:42 2025 by rpki-client