Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft
File: kYaHyFQkQhcMxR71MW05Y2CXCNw.mft (raw, json)
Hash identifier: MXvLv+h+igREQeTc66hwcP0XgpNUUagmHFPCmh43ijQ=
Subject key identifier: 03:29:C2:1D:4D:0F:08:9F:C6:1E:16:88:29:3E:9C:C6:C9:31:66:F8
Authority key identifier: 91:86:87:C8:54:24:42:17:0C:C5:1E:F5:31:6D:39:63:60:97:08:DC
Certificate issuer: /CN=918687c8542442170cc51ef5316d3963609708dc
Certificate serial: 01968B4AA87B0848FBA5D8DD3A982A11DC43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYaHyFQkQhcMxR71MW05Y2CXCNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft
Manifest number: 1126
Signing time: Thu 01 May 2025 10:00:47 +0000
Manifest this update: Thu 01 May 2025 10:00:47 +0000
Manifest next update: Fri 02 May 2025 10:00:47 +0000
Files and hashes: 1: kYaHyFQkQhcMxR71MW05Y2CXCNw.crl (hash: qM/fKCcywgdR/xZ429Wh94xOTIJe+bhLgd145cGZmcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYaHyFQkQhcMxR71MW05Y2CXCNw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:4a:a8:7b:08:48:fb:a5:d8:dd:3a:98:2a:11:dc:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918687c8542442170cc51ef5316d3963609708dc
Validity
Not Before: May 1 10:00:47 2025 GMT
Not After : May 2 10:00:47 2025 GMT
Subject: CN=0329c21d4d0f089fc61e1688293e9cc6c93166f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:45:d9:9c:5b:ae:ad:0c:a4:95:d9:0a:75:18:
92:66:c6:66:df:57:ae:28:38:f3:aa:a5:6e:a1:95:
7e:f6:42:8b:5c:4f:6e:a1:29:5e:8f:be:4f:18:d7:
92:92:2f:d4:f5:9b:a6:57:8a:93:1e:3a:a4:a3:c4:
49:c5:e1:08:e0:60:4a:57:59:64:a9:63:f5:59:91:
73:9e:b4:ab:ec:58:28:15:28:a4:78:ab:92:15:06:
56:69:b6:8b:11:7c:45:95:6e:4f:9d:94:71:76:58:
e8:40:eb:e0:35:1d:c5:b7:4d:75:7a:2a:48:44:3c:
cc:6e:1b:75:05:e0:65:b4:07:65:5b:91:8a:7b:ba:
94:4d:79:6e:45:a2:c1:0c:3f:db:49:1d:b5:a5:b1:
89:39:b1:da:b7:03:d2:7d:a5:ed:51:ce:d2:20:f2:
d2:dd:ee:66:f0:00:2a:67:97:57:e5:6b:26:3b:f0:
d4:c1:c8:dc:b4:9d:a3:0d:27:2e:e7:92:c7:ad:19:
9c:4a:03:5e:cb:4d:21:34:c1:b5:22:d5:bf:e3:06:
cd:23:67:7d:71:2b:cf:f9:2f:7d:ff:43:fd:6e:21:
89:f4:a8:e9:b5:83:f2:29:40:0a:c7:45:6d:6c:08:
6d:c3:42:23:db:55:c2:01:a4:df:34:40:7f:87:64:
b4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:29:C2:1D:4D:0F:08:9F:C6:1E:16:88:29:3E:9C:C6:C9:31:66:F8
X509v3 Authority Key Identifier:
keyid:91:86:87:C8:54:24:42:17:0C:C5:1E:F5:31:6D:39:63:60:97:08:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYaHyFQkQhcMxR71MW05Y2CXCNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:b5:2c:7f:5e:a4:59:18:79:f2:f1:5c:38:81:7f:66:55:ab:
b6:d5:77:18:8e:b5:0a:08:fa:c4:0f:f1:c4:5d:0e:23:45:24:
9e:b7:3b:9a:06:3c:15:c9:5e:8c:2e:35:39:87:76:36:a0:c1:
03:6f:1e:d9:6a:c5:c2:79:4c:b9:26:14:29:34:31:ec:fc:80:
81:f9:b3:7d:23:c7:bc:b3:bf:5b:35:26:ab:28:f3:bd:70:d4:
1e:e6:95:19:08:b4:b2:5a:f4:b8:d9:14:f9:28:ed:af:e8:04:
d2:47:1d:60:e4:b3:e5:d0:a1:bf:8d:07:5a:3a:61:71:e5:3c:
1d:35:a3:ea:b2:c0:2b:49:44:e0:84:58:d9:64:06:8f:35:f6:
4e:92:e9:1b:a8:3f:e8:36:23:89:f0:92:fe:c9:94:91:67:ad:
30:9c:9c:0a:42:e0:00:b4:99:5f:33:7d:3d:87:27:df:a4:3e:
8a:01:f5:7d:54:c7:79:0f:51:b3:fe:50:2f:a9:3f:07:79:1c:
68:f1:f5:5d:3d:8e:67:8c:39:c7:1a:10:e8:12:cd:cb:b7:b6:
52:62:37:0f:46:fd:66:da:8a:4b:d7:ca:79:91:c1:30:f0:52:
19:05:24:cb:3e:6f:b2:2f:49:39:93:aa:f0:27:51:9d:34:c2:
2f:68:51:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 14:08:55 2025 by rpki-client