Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
File: kaEXOnDkH0WTVHZpraIvDX9o81Q.mft (raw, json)
Hash identifier: IEEAV+NDtpUuJkm99ERTa9BSiQDhM2NlvEbKe4z8/cU=
Subject key identifier: 13:26:B8:DF:EC:E3:F2:7A:D6:94:BE:D0:61:2C:5A:1F:BD:D1:7A:4F
Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354
Certificate serial: 0196809001DB13CC7E134934FC181F5E7D07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
Manifest number: 1516
Signing time: Tue 29 Apr 2025 08:00:43 +0000
Manifest this update: Tue 29 Apr 2025 08:00:43 +0000
Manifest next update: Wed 30 Apr 2025 08:00:43 +0000
Files and hashes: 1: kaEXOnDkH0WTVHZpraIvDX9o81Q.crl (hash: YsVcVTXiz8PCyZUF3cglTC0613Mge1CsYyvpQ662aV0=)
2: xREpLh3GVdj1ODzVkMBccz2oKXk.roa (hash: xbsUY7nQRM1AibU2b9y10o7TiQNt9Xvh0b0IzmFT71c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 08:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:90:01:db:13:cc:7e:13:49:34:fc:18:1f:5e:7d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354
Validity
Not Before: Apr 29 08:00:43 2025 GMT
Not After : Apr 30 08:00:43 2025 GMT
Subject: CN=1326b8dfece3f27ad694bed0612c5a1fbdd17a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f4:ee:d0:5b:fe:d0:b9:a3:fb:cd:17:b3:58:
07:66:92:af:5d:79:49:7a:1f:41:59:b2:a8:01:b5:
84:4b:bd:75:62:47:ae:e0:79:31:06:d0:d5:82:64:
a7:c6:25:aa:8f:66:bc:d9:49:e3:5b:d8:14:ff:ac:
dc:30:31:9c:77:42:08:db:ca:84:4a:aa:50:3c:dd:
fe:8e:79:64:22:b0:39:df:1e:1e:29:85:e8:50:a3:
15:81:da:02:37:12:bd:21:1b:fc:7c:10:3f:41:d7:
bd:84:77:96:5c:f6:89:b6:bc:f1:15:bb:2d:7a:3b:
44:c9:88:08:fc:1f:52:18:37:6d:ce:3a:be:e3:4a:
3a:b2:83:2f:86:29:8c:a7:33:49:1d:22:15:71:ff:
d6:75:78:fb:08:9c:ad:9f:af:5c:cf:5d:30:e5:ce:
44:8c:9a:0a:e8:f5:0c:64:ab:f1:ba:57:65:4a:bf:
5f:cd:17:0a:87:b1:03:7b:a4:a8:6b:53:8d:aa:2e:
fd:6d:ec:9c:4c:58:39:c3:5a:67:26:c8:e4:81:7c:
d8:10:41:ba:cc:b3:c5:62:44:25:73:19:65:8a:44:
1d:36:5e:39:4c:85:0d:72:77:cc:90:e1:86:ea:98:
be:88:25:09:69:2d:b3:b3:91:aa:22:e8:fb:db:dc:
e8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:26:B8:DF:EC:E3:F2:7A:D6:94:BE:D0:61:2C:5A:1F:BD:D1:7A:4F
X509v3 Authority Key Identifier:
keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:fd:c4:74:6a:4a:eb:b0:cd:e3:02:c1:9f:95:58:30:d8:80:
99:e2:60:0c:1e:dc:17:ec:a0:d1:44:3e:5c:66:4b:32:4e:23:
2e:a0:14:b1:11:5f:31:87:54:ae:81:46:7b:54:76:74:94:62:
72:ee:1a:ef:2f:e0:58:5d:38:1e:e6:2f:e3:1f:ab:ba:15:1c:
f3:1a:3e:d0:a5:e0:c0:45:e4:e0:65:7a:5d:25:e4:37:49:2e:
7b:26:9d:f1:b6:d8:48:8c:93:dd:44:6f:27:44:b8:49:a2:04:
32:06:4b:d9:4d:fb:67:00:b3:08:4a:42:0c:63:a3:19:33:8f:
d0:a6:cd:ca:75:34:80:a0:58:cb:2c:16:4f:a5:c3:98:9a:e4:
1b:3d:75:15:ef:74:b6:10:df:56:3e:cc:af:ce:cb:94:21:8d:
b9:23:49:48:2d:31:26:24:cf:5b:81:e7:ef:05:db:80:9b:7a:
25:44:d4:28:e0:f2:85:d5:a6:25:fa:59:ec:f1:65:8a:3e:61:
e1:90:36:e9:04:48:40:90:ac:1d:1e:f2:75:f9:29:5c:eb:f1:
75:a9:6b:d0:87:fa:42:b2:c9:de:50:59:c5:ea:1f:2b:d6:d9:
56:54:05:3c:75:47:e9:e6:05:d9:5c:52:07:4f:fd:f4:99:88:
80:e2:1f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 12:11:11 2025 by rpki-client