Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json)
Hash identifier: bwYRsrNW83eY/WItZl4qSopv696F3GckTsJEZx9e73Y=
Subject key identifier: BB:F2:02:50:09:D0:89:4F:37:FD:EC:39:84:C6:F4:C5:64:65:C0:EA
Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Certificate serial: 0196741DF9103AFD6BBB501B875CD745475A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
Manifest number: 0504
Signing time: Sat 26 Apr 2025 22:00:43 +0000
Manifest this update: Sat 26 Apr 2025 22:00:43 +0000
Manifest next update: Sun 27 Apr 2025 22:00:43 +0000
Files and hashes: 1: j0Asbb5ngsOWlyvv7kth_3yoBYM.roa (hash: O/JfF/netiv5OyRHt3hhhICYzLbMzCW+fJQdQl7HVfM=)
2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: WTSAAlv6Uv1XL0MSpASu39ve+9BIh8QFIW5r34W5MsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1d:f9:10:3a:fd:6b:bb:50:1b:87:5c:d7:45:47:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Validity
Not Before: Apr 26 22:00:43 2025 GMT
Not After : Apr 27 22:00:43 2025 GMT
Subject: CN=bbf2025009d0894f37fdec3984c6f4c56465c0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b0:b6:6e:75:8d:9e:d5:1c:79:5e:bf:72:f9:
bc:07:79:15:7f:03:bd:56:e8:f6:1c:16:80:73:64:
87:88:ce:14:ed:d7:cf:c4:7c:fe:d8:e9:c3:ae:1f:
bf:ef:e2:0a:75:07:2d:8f:d3:66:d1:7f:bb:d9:41:
94:02:f0:3e:84:bc:da:04:45:11:1b:58:66:7d:90:
1f:07:94:b8:ff:3a:71:d3:18:ed:5a:0a:f7:3e:96:
85:a6:28:86:39:20:eb:25:1d:e0:3d:61:c1:fb:7f:
d9:4d:33:d5:62:46:30:10:5f:6f:f1:e6:a8:73:f7:
13:1b:05:ea:f3:5c:60:2a:9d:ee:e4:13:64:ee:23:
c4:92:90:01:07:31:08:2a:23:6a:3e:b5:0d:aa:ea:
5e:60:6a:11:53:a8:73:3a:66:d6:3f:0b:f2:e3:6f:
c5:a9:4f:f7:11:c5:07:08:ea:a0:9c:4f:07:c1:7f:
c5:06:27:8f:58:be:43:c6:92:84:c6:11:a1:18:1e:
e2:80:52:8b:38:04:a0:4c:15:d9:9f:4f:38:29:da:
3f:f3:b4:d0:70:17:32:14:29:d4:17:65:be:f3:6a:
17:1f:53:59:67:c1:03:b0:d3:ab:27:f7:31:f0:22:
a8:3e:78:61:04:91:81:eb:71:23:f9:6b:6f:96:97:
94:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F2:02:50:09:D0:89:4F:37:FD:EC:39:84:C6:F4:C5:64:65:C0:EA
X509v3 Authority Key Identifier:
keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:f3:ca:53:ae:24:b4:53:c7:66:08:47:36:69:33:6c:09:3e:
0e:9d:ff:d6:54:ca:bb:bf:f0:eb:00:a0:80:5b:8a:0e:f4:8d:
24:82:9c:ed:f3:8c:fb:17:f7:ec:30:90:03:19:68:55:fc:a8:
aa:b2:22:da:63:65:ab:8f:3f:19:61:a6:81:c5:11:14:09:e5:
83:aa:2e:cf:51:bd:f1:01:09:b2:ba:1c:3f:64:42:58:cf:01:
50:08:49:84:45:f7:0f:a4:cd:38:7f:bf:ad:89:19:40:4e:61:
85:08:df:80:18:23:27:c5:6a:8e:2d:82:e0:fb:ea:76:1e:12:
1b:05:e9:41:d6:01:71:81:02:ec:f0:67:23:8f:45:19:5b:ab:
f2:21:19:ef:0d:37:3a:b4:ee:b0:89:c3:10:b0:76:a7:34:39:
0a:74:ac:fe:f8:9b:45:f1:df:90:1f:17:ef:01:02:14:98:e2:
44:5b:f9:55:83:5a:5c:a2:91:5a:6a:07:e4:5a:0c:27:f6:84:
9d:69:5f:68:c3:24:78:8d:7b:46:c0:4c:6f:f0:12:66:c2:31:
58:e1:a6:0f:32:b4:3d:80:fe:61:5c:1d:45:43:ea:10:b3:d3:
c6:d9:ed:1a:e0:31:4b:4d:cb:67:68:4a:f3:db:98:4a:c7:b1:
23:04:7f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:50:34 2025 by rpki-client