Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
File: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft (raw, json)
Hash identifier: jMBHDiug9sz6S3XlZdSfEKoRXlLq/R4GzHJYLupDSVo=
Subject key identifier: F4:BB:E4:7C:40:C5:A4:2B:C0:6C:CC:2E:F1:66:4A:D4:2E:0E:7E:F4
Authority key identifier: 91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
Certificate issuer: /CN=91362d3c0953e8c933f0092a589b75494904f962
Certificate serial: 01968F94DEA05188C30142B86E285E3AB498
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
Manifest number: 13CD
Signing time: Fri 02 May 2025 06:00:20 +0000
Manifest this update: Fri 02 May 2025 06:00:20 +0000
Manifest next update: Sat 03 May 2025 06:00:20 +0000
Files and hashes: 1: gF4h3hPUiQwbrFzucTsw-cGzGHQ.roa (hash: EmUyYOWtfES7R4OmRJxOMl7sM7cF9x8yLjgV5Oo/MqY=)
2: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl (hash: eMKvoCl14wXZ3SzWhmmGajCGTOMkUU2KVSWVGn7YENc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:94:de:a0:51:88:c3:01:42:b8:6e:28:5e:3a:b4:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91362d3c0953e8c933f0092a589b75494904f962
Validity
Not Before: May 2 06:00:20 2025 GMT
Not After : May 3 06:00:20 2025 GMT
Subject: CN=f4bbe47c40c5a42bc06ccc2ef1664ad42e0e7ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:aa:f9:40:96:8f:60:51:e6:4c:94:04:03:fb:
26:94:3d:e9:b6:4f:77:1e:65:e1:b6:25:a4:23:03:
62:3a:da:64:d5:ff:fa:1b:e1:73:c1:2f:ea:20:87:
82:9e:c4:a2:95:67:f6:7e:92:f1:4d:c8:91:9b:c1:
53:8b:7b:dc:50:fc:9f:00:2e:15:c1:27:de:2e:6f:
21:d7:55:d4:67:6d:2c:d9:a1:db:f0:dc:0a:2d:f9:
11:ad:a2:55:76:8c:22:b3:55:d0:2b:82:e5:c8:6b:
e7:44:17:fb:1c:3a:1b:b8:27:3c:c1:c8:3f:b9:71:
14:a9:58:48:d1:b3:2a:e0:de:f2:e3:aa:93:aa:12:
f3:cc:eb:07:8f:86:3d:54:e6:a7:72:ce:4a:17:d4:
c6:c6:48:c6:7d:74:44:0d:0d:98:62:a6:9a:f1:cf:
72:5d:51:b9:32:ef:b7:c7:b1:e6:67:ed:91:b1:ac:
aa:4f:04:18:bd:13:0c:bf:51:9b:33:d7:d3:df:74:
1f:30:71:1d:f9:29:93:87:94:8d:01:8d:5b:f1:4e:
da:14:b8:6f:ff:ee:ca:ed:a4:54:ef:ef:96:c3:84:
2b:82:05:5b:c2:9c:b4:ba:4a:af:ba:80:aa:a2:be:
77:b9:7f:cf:37:e4:ab:76:e9:7e:73:93:2d:86:c1:
6e:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:BB:E4:7C:40:C5:A4:2B:C0:6C:CC:2E:F1:66:4A:D4:2E:0E:7E:F4
X509v3 Authority Key Identifier:
keyid:91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:0d:8c:a0:c0:8a:3e:6a:cf:f3:88:74:06:be:e0:10:5c:8d:
53:a6:f1:8c:42:49:47:d9:9c:d4:f5:02:c5:f7:e8:80:98:07:
2d:f3:57:b2:ec:58:91:04:24:1e:85:36:d2:c6:12:0c:4d:ae:
98:35:7c:8e:d6:fa:55:ce:52:ac:00:41:86:68:52:97:5f:d0:
ec:48:66:2d:f7:fe:59:c5:9c:d9:b2:61:ac:cb:9b:b6:2e:c1:
a8:e9:64:73:20:d0:24:e8:42:28:d8:43:28:a9:58:d6:08:65:
6f:cc:91:92:78:8a:39:03:42:ae:0d:3f:55:0f:7f:4c:15:83:
48:4e:a3:77:c4:65:a4:89:c0:ec:17:b5:9c:28:66:76:0a:4d:
3b:a1:17:88:73:1c:a5:12:86:a9:24:46:16:41:42:45:3b:a6:
1d:0e:81:67:af:49:d1:3b:42:02:88:26:b1:7a:a7:0f:cb:c4:
4a:6d:7b:54:43:8c:a4:1b:3c:12:e0:fd:37:63:3d:2d:98:1d:
ba:9c:98:68:1a:f9:88:24:9d:9f:9b:b3:ee:fa:68:98:e5:96:
bb:b9:47:0d:99:e3:fe:be:30:cc:12:cf:ef:66:f2:97:f8:6c:
a3:d0:04:4a:fc:1b:61:85:a3:87:a9:31:3d:3a:5e:5c:a9:ea:
e5:ca:56:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 09:38:53 2025 by rpki-client