Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: wSLKFOZp8HFY5FW8KRcjFkxrdVud8jt3wFM7h4ZnOq8=
Subject key identifier: C3:5D:45:16:1A:D2:A0:7A:A6:E1:CC:8B:60:95:CD:E1:FA:C9:F8:B3
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 01967F7CEFBC87D01B91D4905365A282E094
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 146C
Signing time: Tue 29 Apr 2025 03:00:15 +0000
Manifest this update: Tue 29 Apr 2025 03:00:15 +0000
Manifest next update: Wed 30 Apr 2025 03:00:15 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: 7hWUahZPPdc2hmipAEG+bjaNmmxaA61PgX/3RR15je0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 03:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:7c:ef:bc:87:d0:1b:91:d4:90:53:65:a2:82:e0:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Apr 29 03:00:15 2025 GMT
Not After : Apr 30 03:00:15 2025 GMT
Subject: CN=c35d45161ad2a07aa6e1cc8b6095cde1fac9f8b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ba:c0:82:f2:79:45:05:b6:e8:fa:69:b9:56:
a9:52:58:0f:52:02:7a:57:2c:e6:8f:1c:14:09:95:
e2:54:e8:f1:67:66:72:50:57:46:80:a4:32:b8:ed:
31:ec:d7:1f:12:d5:16:73:f8:92:ad:6e:d8:30:74:
69:e9:91:3c:76:72:d9:62:f6:10:e9:60:4f:24:2f:
3e:a7:37:5e:d7:ef:60:5a:d0:4a:58:80:de:08:46:
d1:0e:10:9b:94:20:44:5c:00:c6:4e:1d:fe:b9:e8:
47:9b:9a:5a:ba:32:43:20:72:ba:0c:28:01:8d:bd:
cb:e3:82:cc:9f:c6:de:52:65:f8:a8:f6:1c:ca:8f:
8e:11:8d:9c:0c:a5:a6:22:1e:84:97:1b:00:67:1b:
4c:73:14:47:55:71:80:ba:3b:2a:d3:a4:06:de:eb:
76:d0:6a:66:7f:a4:15:a2:60:ff:ed:18:62:c4:3c:
71:f5:2f:9e:4e:88:87:35:f1:8b:72:00:0b:da:42:
0e:35:fd:4b:04:7b:10:3d:42:6f:97:e4:9d:2e:60:
31:45:a2:04:90:10:b5:16:82:8d:f5:19:85:cf:44:
95:2c:60:a2:c8:51:ab:e5:17:29:e9:a5:6e:19:cc:
0d:33:a5:fb:46:2d:91:16:9c:7b:2e:24:01:30:1b:
77:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5D:45:16:1A:D2:A0:7A:A6:E1:CC:8B:60:95:CD:E1:FA:C9:F8:B3
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:2c:b4:dd:32:c7:ed:16:34:e7:3b:cf:ce:c3:d6:ae:ce:a8:
93:3e:7f:62:b0:fd:96:07:bc:25:5a:18:02:57:84:53:eb:78:
60:f9:e2:3c:75:37:11:a5:93:a3:e5:2a:0b:c7:9f:da:db:e5:
0a:a5:88:47:2f:99:02:70:f0:a6:88:4b:3b:de:bf:fb:f0:33:
f6:20:5d:61:ec:94:d3:c1:93:92:84:f3:df:89:84:3b:50:a4:
26:57:f1:aa:d7:16:b7:a1:97:7b:2c:a0:bc:cf:b0:4b:99:5d:
af:b3:b4:d6:4d:d0:41:7b:9e:1f:c6:c0:9e:31:82:69:ae:df:
6d:95:e7:fd:0a:35:20:90:16:07:b8:83:96:ca:78:bc:92:88:
3d:63:a9:45:85:7c:10:7f:1d:34:d1:85:62:fd:0c:2f:20:6e:
a6:a3:2a:cf:11:9c:59:0d:a8:62:33:58:7a:d8:cb:93:1c:71:
d4:4f:76:a7:3f:96:8d:14:b3:d0:5d:79:e6:78:7b:67:47:01:
70:07:3a:31:3e:f7:e0:44:9a:80:38:50:12:7f:c3:a4:c4:50:
ed:0a:f8:ea:9d:81:ea:70:a0:9b:f1:8f:be:12:db:ed:5a:37:
c8:13:25:3d:d3:3c:dc:e8:92:eb:6c:c9:69:23:50:e2:f7:fb:
4a:fc:11:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 11:06:54 2025 by rpki-client