Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
File: 1KA5ru5iEDsojGyLlpLPWAh0PiE.mft (raw, json)
Hash identifier: TPtqTNvXF2FlRYpVTNz3OgHMoacvIt3nndUfBNkfEa0=
Subject key identifier: A4:85:DE:3A:B4:7B:69:4E:E6:BA:07:44:CB:A5:22:C9:D3:E8:37:CB
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 019675D5499545C0180A00137E0EA77E3BBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
Manifest number: 14A2
Signing time: Sun 27 Apr 2025 06:00:34 +0000
Manifest this update: Sun 27 Apr 2025 06:00:34 +0000
Manifest next update: Mon 28 Apr 2025 06:00:34 +0000
Files and hashes: 1: 1KA5ru5iEDsojGyLlpLPWAh0PiE.crl (hash: frgTbHVXAJ9LXUMGN+HePuNfjf8ef7iPXxXsAm3I92M=)
2: s1SLHtKOtkgq5r5rHF__j6OHoGY.roa (hash: KY4xp5ySp/G6GnIfRT4waP6fnoRJIDEZEgF7zNS/QEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:49:95:45:c0:18:0a:00:13:7e:0e:a7:7e:3b:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Apr 27 06:00:34 2025 GMT
Not After : Apr 28 06:00:34 2025 GMT
Subject: CN=a485de3ab47b694ee6ba0744cba522c9d3e837cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3a:48:b0:7b:c8:33:7a:84:27:3b:b5:9c:33:
37:0e:f4:fb:f3:22:ff:bf:e5:6f:bc:b6:05:e6:5c:
04:13:26:e6:96:c4:3d:58:19:c7:ac:c5:61:11:73:
f4:bc:4d:de:fb:40:0b:91:17:3f:c2:33:fc:14:6e:
97:99:5a:39:31:06:48:6e:93:7c:0f:5c:1f:b2:da:
53:ea:23:3c:c4:b4:b0:6a:0a:76:21:36:e0:b1:bc:
05:50:99:43:06:72:db:e0:d5:fb:1e:ac:c8:9d:63:
4e:34:e8:42:c9:d1:2b:53:fc:fb:e2:d6:53:b9:f7:
b5:95:3b:7d:45:3f:96:04:d8:fe:fa:0b:09:26:c1:
b0:b3:25:d8:82:36:0b:a4:55:3a:61:85:0d:8e:45:
c9:ca:a0:c9:54:45:00:9b:64:ab:f2:85:0c:db:5e:
96:76:10:82:2f:63:c1:e2:1e:44:cd:1e:a2:f7:28:
f1:e8:c3:7e:90:0c:53:28:d9:e2:03:dd:49:07:37:
16:3d:9f:8c:ac:aa:4b:9b:50:9e:4d:87:4a:79:0e:
14:cd:3a:48:28:0d:11:bd:da:65:99:e4:b9:a7:70:
74:81:ea:f5:dd:41:25:97:35:67:b7:c6:88:a3:8b:
20:76:a3:b2:b3:e8:61:3b:f9:eb:04:46:db:ca:45:
2b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:85:DE:3A:B4:7B:69:4E:E6:BA:07:44:CB:A5:22:C9:D3:E8:37:CB
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:a4:93:d3:26:c6:88:21:a0:9d:52:d8:cd:7f:0f:4d:c0:3d:
0e:fd:ce:fe:f7:af:a5:9d:30:f5:43:b5:20:e9:ce:45:7d:f1:
b4:88:c1:28:e8:0d:be:cf:af:b1:19:96:dd:b1:b8:92:4e:bd:
1b:fe:36:6a:44:14:e3:f3:6f:d4:11:5b:48:62:95:93:b5:07:
78:56:7a:6a:43:8b:fb:df:9c:b3:7b:ef:3c:e4:e9:de:2c:8d:
30:82:cf:12:c1:b5:3c:3c:ca:69:07:7a:51:1b:86:bb:8b:80:
33:09:58:6b:2b:41:dd:82:4f:f6:b2:9f:99:f2:f5:f0:5d:33:
7f:c6:2c:df:58:5a:f9:a3:54:ef:17:e0:ab:d4:b2:80:63:71:
e5:11:4c:0a:e6:59:e3:aa:88:95:6d:83:32:b0:b3:2c:ad:92:
5f:4c:3e:15:47:63:85:90:73:b4:d2:82:68:9f:69:5a:1d:bb:
07:d1:ab:0b:51:c8:a8:91:71:af:b9:61:c8:ca:87:eb:67:79:
4f:78:05:28:f7:e3:b5:26:50:c0:a1:eb:9a:fa:42:5e:c4:4d:
cf:bd:43:01:21:37:be:56:fb:4e:ce:3c:c6:8c:80:7d:ac:55:
b5:6f:33:80:c1:d3:b4:87:b6:4c:c1:16:34:92:10:7d:dd:20:
68:67:9a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:47:04 2025 by rpki-client