Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
File: kMuqazbmzWh0x47UWk-N1xcwMdk.mft (raw, json)
Hash identifier: 02tdKF5pqzabnQqEEfcXdRuuZjuh+y7+iZYyGtB5MUE=
Subject key identifier: D2:EB:1B:82:0A:B2:2F:F8:32:33:8B:EC:C4:5A:18:CF:34:75:82:9A
Authority key identifier: 90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
Certificate issuer: /CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Certificate serial: 01968021A6781BF5CED7195A896835C7BC3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
Manifest number: 0A85
Signing time: Tue 29 Apr 2025 06:00:10 +0000
Manifest this update: Tue 29 Apr 2025 06:00:10 +0000
Manifest next update: Wed 30 Apr 2025 06:00:10 +0000
Files and hashes: 1: c4U2evb93678CsrZ2ZQQemAPoFw.roa (hash: 5ZLOIZ+BzX8i3ipSMR9csvqZ6+nojKYy3y5RkNukgEE=)
2: kMuqazbmzWh0x47UWk-N1xcwMdk.crl (hash: IEhBQoW/Nqbua5Xk9OQ2r/QSXKOOSKvoyYTbMtyVx94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:21:a6:78:1b:f5:ce:d7:19:5a:89:68:35:c7:bc:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Validity
Not Before: Apr 29 06:00:10 2025 GMT
Not After : Apr 30 06:00:10 2025 GMT
Subject: CN=d2eb1b820ab22ff832338becc45a18cf3475829a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d8:c4:79:d0:42:1a:b2:58:60:90:d6:73:d9:
30:c7:17:07:82:75:96:2e:50:60:b6:11:c0:51:57:
a9:cc:54:4d:76:6d:f7:0e:19:0c:89:28:1d:2b:1b:
c2:97:05:25:0d:b3:dc:da:52:45:69:f2:55:d7:4f:
13:84:1c:cd:8f:5a:47:02:51:19:9b:70:59:54:fb:
59:ae:9b:e5:52:b5:79:72:28:83:f5:0c:ae:0f:ca:
6a:2e:fc:c6:76:9c:4a:82:60:db:df:b0:35:04:16:
e4:aa:9b:47:07:c3:fb:9d:af:d4:6c:ac:2f:9e:b6:
dc:ac:f1:a8:08:7e:15:db:20:08:eb:a9:6e:45:6a:
a6:a2:6d:fb:97:64:dd:64:16:40:1c:b2:4e:53:fe:
80:df:54:57:0b:4f:5b:58:c1:8f:59:7e:b9:93:a7:
c3:3a:b8:89:db:a6:cb:78:3a:96:a6:a6:08:0c:60:
90:2d:f7:3f:f8:92:ba:cc:f2:2e:42:21:f1:b7:23:
f6:d7:28:13:03:13:61:88:b5:ce:ba:0b:4d:da:11:
9e:e8:ca:f8:b3:d8:d1:65:ce:f2:1f:9c:43:81:fc:
0b:2b:de:d7:2f:74:af:3d:63:67:cb:78:99:ae:c6:
d2:e0:09:da:a7:5f:fb:89:2b:6f:55:4b:93:d4:c9:
2d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:EB:1B:82:0A:B2:2F:F8:32:33:8B:EC:C4:5A:18:CF:34:75:82:9A
X509v3 Authority Key Identifier:
keyid:90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:b9:f1:61:94:27:28:71:fe:52:ec:27:47:10:e1:c7:c7:56:
53:82:aa:6b:d1:1d:e7:5e:a1:ec:24:c9:23:4e:fd:fa:3c:91:
68:2b:f2:2f:9b:c6:69:92:30:26:16:0a:d3:99:f4:13:56:79:
5f:0b:42:c1:a0:15:92:26:53:a0:32:be:62:33:43:d0:fa:f1:
14:5b:f9:73:99:ae:3e:3c:b8:74:2e:05:78:91:8b:c6:5d:bb:
e7:4c:d6:3a:77:f5:ec:db:73:71:7d:8f:27:e8:04:18:9d:01:
bd:cd:c0:5f:0c:d7:fc:dd:f0:bd:7a:b7:4f:92:50:3f:93:19:
df:22:d4:89:35:69:30:8c:21:9e:a8:f8:17:ed:bb:a1:af:89:
e5:9e:48:e7:8b:30:cf:ac:3c:dd:6c:df:c6:67:98:4c:4a:bc:
66:13:57:4b:43:a7:69:42:8e:0f:23:8a:5a:00:87:ad:b9:f6:
1b:5a:04:7f:16:51:27:f9:30:ab:8c:17:fa:07:9e:50:df:5a:
62:b3:12:21:a9:63:48:13:07:75:3d:d6:50:bd:d2:a2:5d:50:
b6:cf:83:b8:7f:de:e7:9b:fa:f5:24:b6:03:3e:5e:e2:7e:0e:
5f:6d:73:fb:f8:08:1d:8d:55:43:6a:31:e3:ff:81:73:95:e5:
23:95:e4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:41:16 2025 by rpki-client