Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
File: kGlKYihmrhWO0ofSUz1AuqvqbX0.mft (raw, json)
Hash identifier: +IFHhygb/LUfCFzUHyHTlGUEaxJkiDJh+ATyMFx/ljs=
Subject key identifier: 03:4D:26:FC:15:A5:87:8B:5A:F7:CB:92:C3:3A:EC:84:99:65:3F:72
Authority key identifier: 90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D
Certificate issuer: /CN=90694a622866ae158ed287d2533d40baabea6d7d
Certificate serial: 01967C45BA9F6CA480A63ED99C73B2E623B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
Manifest number: 036D
Signing time: Mon 28 Apr 2025 12:01:06 +0000
Manifest this update: Mon 28 Apr 2025 12:01:06 +0000
Manifest next update: Tue 29 Apr 2025 12:01:06 +0000
Files and hashes: 1: 9VYK0oHjjTC_b68oAyoNi7RTStA.roa (hash: 95NE4Wq8cotxnefZwzo13t7L9p4u4ZGJ0NIa1wNiJCg=)
2: bq3CHdF3ToMivmK2PU155LcLlRo.roa (hash: E2q6lH9inJ5ZH1jaNhC41RHD+yk7srEkGUdyytaHjj0=)
3: kGlKYihmrhWO0ofSUz1AuqvqbX0.crl (hash: keXCAJpv6GEBkvv6crNx49G46o9bQScigZ9R6h7jjdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 12:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:ba:9f:6c:a4:80:a6:3e:d9:9c:73:b2:e6:23:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90694a622866ae158ed287d2533d40baabea6d7d
Validity
Not Before: Apr 28 12:01:06 2025 GMT
Not After : Apr 29 12:01:06 2025 GMT
Subject: CN=034d26fc15a5878b5af7cb92c33aec8499653f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d3:4a:4c:23:a0:61:33:96:1b:76:6c:a7:0c:
f3:fd:04:63:56:85:ca:03:60:58:8e:9f:f2:87:77:
a9:ea:41:90:b7:ec:5e:09:b4:1a:5d:43:32:42:80:
83:ab:0e:3b:b4:4e:7d:93:c7:e2:d3:f0:4c:5d:1d:
1b:94:0c:a7:51:94:a2:65:f1:e1:57:d4:e0:f7:14:
fa:e3:16:54:24:80:97:7f:f3:ec:4e:9b:6b:d1:ad:
f6:84:07:7a:08:e7:d7:c8:e5:b0:3e:ba:d6:5e:00:
09:8c:45:08:3f:a6:86:71:de:af:53:b3:79:8e:ed:
41:e0:ef:e9:8f:64:9b:42:f9:30:4c:ed:b9:cb:52:
a0:ba:46:07:f3:bc:2e:f1:33:a1:3b:bc:c3:0d:47:
d5:3d:47:ec:54:e3:7c:be:8f:3d:a0:81:17:9c:ee:
f7:49:e2:01:32:30:76:ef:7f:24:87:ea:dd:0c:3f:
36:38:8e:be:4a:3b:8e:d1:6e:a8:61:f7:99:11:f5:
29:c4:6f:8d:cd:b7:17:ef:39:c3:01:f5:77:93:98:
8f:54:55:a6:65:07:ad:69:81:61:93:bf:a9:af:20:
eb:04:ec:be:c6:56:eb:fd:49:af:42:fb:e6:59:66:
6d:cf:c5:f7:97:a1:cf:fe:18:7f:db:66:88:a8:ad:
2f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4D:26:FC:15:A5:87:8B:5A:F7:CB:92:C3:3A:EC:84:99:65:3F:72
X509v3 Authority Key Identifier:
keyid:90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:dd:c1:e0:d9:dd:68:d3:59:06:13:eb:7e:5d:a0:f1:79:e5:
9e:39:99:a2:cc:f0:8f:6d:47:17:f0:3d:2e:9a:cd:dd:2b:b0:
9c:7b:b0:ad:07:f4:b1:69:2a:96:b4:55:c1:90:a1:2b:94:1d:
dd:97:44:fd:82:c4:92:79:d0:b1:40:9d:13:c1:18:ff:87:80:
7a:8e:00:3a:7f:59:16:47:a6:b3:65:35:18:90:44:50:91:ae:
aa:ef:27:fe:fe:cf:92:3e:65:21:d3:7b:56:c8:47:76:01:b3:
65:69:cb:03:f5:d6:8c:30:13:ed:c1:be:09:87:55:eb:4f:8b:
e4:d0:36:4d:41:1e:43:04:aa:37:46:60:c2:f3:c3:73:7d:2b:
cb:5d:b0:10:3c:4f:7a:8e:5b:d7:5d:c4:64:c8:6c:ee:42:bb:
7f:33:a7:07:73:3c:88:00:97:a8:b6:c8:e1:8a:3e:ae:90:b2:
8b:dc:3a:70:e5:5c:30:d6:40:f8:12:3c:a1:e5:9a:6c:c0:30:
2b:f2:a7:34:e4:9c:12:ce:ad:c4:c8:15:99:97:3a:48:cf:cd:
60:05:e3:31:5f:3c:51:a6:f4:a2:ca:19:76:17:21:1e:eb:0a:
af:c8:a2:ae:5f:18:81:5b:c5:8a:a5:19:de:41:9f:20:05:3a:
8a:bd:e9:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 16:36:59 2025 by rpki-client