Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
File: K6OJMzWM9mz_O2zj97wlF_3UdCE.mft (raw, json)
Hash identifier: 5CxXW76jKn9oDn9hTgYIRSVP/fwsXTHenniuaiYPMrM=
Subject key identifier: 45:40:5E:E9:8B:F4:2B:EB:26:6D:E2:5B:78:32:08:7E:E4:13:FE:C8
Authority key identifier: 2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21
Certificate issuer: /CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421
Certificate serial: 01967943E5F5249C27FC7F4AF569DD1E63D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
Manifest number: 0686
Signing time: Sun 27 Apr 2025 22:00:14 +0000
Manifest this update: Sun 27 Apr 2025 22:00:14 +0000
Manifest next update: Mon 28 Apr 2025 22:00:14 +0000
Files and hashes: 1: K6OJMzWM9mz_O2zj97wlF_3UdCE.crl (hash: XfLwUuS5VuQ3Bg7OIijH7peVOuwDGZK+wYM9XMb01OM=)
2: P79z5YTtoWEv9LCPfIAUkH_6t6o.roa (hash: bkjECat6qqt16K0V047quWng6+v1DMCdWPWmzkArqVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 22:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:43:e5:f5:24:9c:27:fc:7f:4a:f5:69:dd:1e:63:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421
Validity
Not Before: Apr 27 22:00:14 2025 GMT
Not After : Apr 28 22:00:14 2025 GMT
Subject: CN=45405ee98bf42beb266de25b7832087ee413fec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ea:c0:d1:f5:d4:9d:1a:b7:a4:bd:a8:42:32:
af:08:7b:c3:46:02:25:73:2b:fa:63:c1:ea:44:b5:
4d:98:00:e4:a1:98:a9:32:4c:1f:1d:ff:c4:dd:3a:
49:d2:fe:11:81:38:c4:fd:70:e1:7b:85:0e:ea:30:
93:9d:1b:e4:fa:c2:80:86:25:44:96:5c:9b:e1:86:
3c:c3:5a:a0:30:c5:bd:e2:31:ee:e6:88:c4:da:67:
ec:7d:04:66:3c:31:61:40:d4:58:5e:48:c3:dd:2a:
4e:1c:b6:e5:55:c6:d5:5d:92:c9:95:e9:e6:af:29:
69:f8:cd:ba:a2:7b:5a:0d:d9:d5:01:64:7a:96:d9:
47:ae:e3:d1:f5:35:97:76:62:51:39:97:e9:7a:8a:
25:5e:a3:d8:84:0e:c7:40:d0:f5:8e:e2:a4:bb:48:
c3:2a:3e:e8:d8:49:b5:4d:ca:3e:60:69:0b:bc:c4:
62:71:21:da:97:95:6d:81:23:6b:a8:15:ea:22:60:
e9:04:13:21:2c:a9:2e:29:ee:5d:10:9b:5b:f5:5e:
33:76:f2:95:9a:85:3b:cb:4a:d3:61:f7:e1:23:02:
a5:24:2b:32:d4:0f:02:3f:43:07:3e:5f:d2:21:4e:
1f:d6:38:67:f3:38:d1:a8:1c:c8:47:e4:67:72:bb:
d0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:40:5E:E9:8B:F4:2B:EB:26:6D:E2:5B:78:32:08:7E:E4:13:FE:C8
X509v3 Authority Key Identifier:
keyid:2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:d7:fe:f6:72:8f:b2:a4:d7:3e:3f:22:da:3b:aa:fa:13:22:
22:47:d4:36:cf:64:4f:e5:d0:cf:0e:2f:6d:cf:00:40:28:01:
52:c3:0d:b1:0a:5c:c9:64:3c:d4:97:ae:e3:a2:18:a9:99:59:
c8:eb:2d:47:69:91:50:a4:44:1d:43:2a:10:ca:d0:9c:9f:f3:
14:79:13:6f:89:9a:0a:c8:c5:a2:2d:8f:f2:e4:2c:77:62:78:
7c:b3:26:3e:96:9c:97:a0:04:56:62:5d:79:70:48:16:12:2e:
5b:0e:92:7a:ad:e2:4d:8b:63:76:a5:b4:91:11:79:22:f9:b0:
c5:74:68:f7:8c:ea:73:fb:18:7d:e5:e6:51:73:60:f6:e5:90:
2a:a1:33:b0:0e:09:4e:9a:91:fc:69:f3:48:b6:86:8b:a8:8f:
66:52:81:c0:98:18:c0:6f:7a:6b:e3:00:cf:ac:9a:92:13:f6:
8a:fa:66:18:d9:b8:25:ae:31:da:f5:7c:38:9e:6e:62:0a:ff:
1c:56:22:48:01:cc:e9:80:f5:62:ce:46:89:7f:ac:21:46:ec:
bb:a2:6d:27:58:10:d1:da:29:2c:e5:09:fe:25:80:2a:7a:b7:
22:cd:41:45:e5:a8:ea:e0:d9:a6:9f:fb:d6:00:4d:d4:f3:77:
3f:3a:70:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 04:10:37 2025 by rpki-client