Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft
File: kiluMEh7qUY-S2rcgat9pkfDn-c.mft (raw, json)
Hash identifier: /XroKbO9/eIWxgLRCqWV+ozpyZBFMQM+eTgTmoX58Hc=
Subject key identifier: 96:83:AA:0E:31:84:96:AD:12:EC:0B:C2:AA:19:75:C0:3B:A2:09:82
Authority key identifier: 92:29:6E:30:48:7B:A9:46:3E:4B:6A:DC:81:AB:7D:A6:47:C3:9F:E7
Certificate issuer: /CN=92296e30487ba9463e4b6adc81ab7da647c39fe7
Certificate serial: 019680593C8A0096658A5DAC1AE06F3BAB06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiluMEh7qUY-S2rcgat9pkfDn-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft
Manifest number: 1515
Signing time: Tue 29 Apr 2025 07:00:53 +0000
Manifest this update: Tue 29 Apr 2025 07:00:53 +0000
Manifest next update: Wed 30 Apr 2025 07:00:53 +0000
Files and hashes: 1: i-OzQF2bcpPJxDcOX5kIL87LKyE.roa (hash: y62UPCmvVteCyYBr7OynuTmwVuaAEnPLTcqTccWvdJo=)
2: kiluMEh7qUY-S2rcgat9pkfDn-c.crl (hash: TiaJ+NCCKo0mFQMFCcjJHYwwrZewNtXAWrA3MxCdNj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft
rsync://rpki.ripe.net/repository/DEFAULT/kiluMEh7qUY-S2rcgat9pkfDn-c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 07:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:59:3c:8a:00:96:65:8a:5d:ac:1a:e0:6f:3b:ab:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92296e30487ba9463e4b6adc81ab7da647c39fe7
Validity
Not Before: Apr 29 07:00:53 2025 GMT
Not After : Apr 30 07:00:53 2025 GMT
Subject: CN=9683aa0e318496ad12ec0bc2aa1975c03ba20982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f3:c7:fd:d7:6d:b1:d0:aa:ec:10:24:2b:50:
92:ff:41:ac:7b:b6:a3:db:d0:b5:d6:82:25:86:45:
e2:e5:77:90:37:40:98:61:42:65:e0:0c:65:d4:a4:
3a:6d:ab:5a:d7:a9:9e:67:ee:d3:89:5d:df:72:c1:
9a:a3:74:8a:e0:bd:8a:25:9f:11:ad:6d:c9:a5:c6:
58:09:a4:e4:26:95:fc:71:bf:ec:4c:25:5c:11:7c:
aa:8f:71:34:2a:20:ff:6b:f1:53:28:ab:b2:fb:68:
91:e1:2a:c9:6c:fe:5e:2b:f7:8d:ce:31:20:6a:a4:
ef:6c:b9:4e:fd:99:5a:de:e4:31:b7:76:f1:36:e7:
62:43:e9:4f:63:b2:ea:47:1b:18:89:71:16:f3:f1:
c2:7f:b6:71:cb:c8:4c:dc:49:0c:5d:11:34:f4:01:
0b:aa:79:aa:48:8c:4e:6c:b5:cb:46:f1:89:a8:a3:
b8:5b:5c:f7:0f:b3:74:09:2d:51:eb:77:35:59:4c:
56:db:9d:ee:d9:d5:b4:c0:2b:40:86:49:99:29:c6:
96:7f:b1:1e:91:79:76:43:d7:38:d6:4d:32:46:8f:
2f:83:b2:f3:b6:5d:8b:ef:76:3d:67:32:e7:73:62:
6e:74:2f:94:82:12:a5:79:71:0d:b6:8e:b3:70:d5:
72:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:83:AA:0E:31:84:96:AD:12:EC:0B:C2:AA:19:75:C0:3B:A2:09:82
X509v3 Authority Key Identifier:
keyid:92:29:6E:30:48:7B:A9:46:3E:4B:6A:DC:81:AB:7D:A6:47:C3:9F:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiluMEh7qUY-S2rcgat9pkfDn-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:39:0a:f6:5d:07:33:ad:2e:a8:d8:5e:75:df:b8:5f:05:ab:
ea:c4:1f:22:5f:bd:e2:26:52:be:30:3a:e3:1e:bf:99:91:89:
bb:08:6f:37:63:15:cd:10:3e:38:e6:6e:0f:80:62:41:5c:32:
4b:4a:c2:68:e2:78:a1:33:be:2f:6d:7c:ce:ec:34:f9:fe:04:
d9:da:82:7b:e4:32:ad:df:5d:74:98:7f:41:4f:25:44:c2:ff:
31:5e:4a:de:ac:e3:7b:9e:d2:92:11:69:8e:88:07:e6:1f:c2:
bc:23:59:e0:c3:6b:a1:0e:77:c5:7e:60:3b:f3:58:9b:51:3c:
37:0f:ca:0f:32:16:da:28:86:e7:02:71:55:fe:8c:6c:d3:22:
ca:48:51:7f:38:38:30:ef:c3:92:e5:7d:5f:20:47:4a:f2:7f:
48:ca:d8:48:28:cf:1e:8e:4a:0e:92:98:bb:b7:d4:5e:bd:01:
3b:24:dc:b0:dd:ca:eb:0c:c7:38:63:4e:eb:55:28:cd:76:b2:
86:74:d6:19:68:4b:77:9d:5f:5d:8c:fc:09:93:29:6b:89:90:
5a:94:d7:1d:43:4d:05:57:f9:85:7f:b0:c9:e7:f6:65:cf:38:
39:5a:eb:09:8a:b7:97:74:e3:51:42:fc:37:0d:29:ec:f3:ea:
c3:e8:d8:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 12:08:24 2025 by rpki-client