Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: nS9usjecZ4X+ZXbm2KGqDCleS9pY4uxLyNnAqRFNUic=
Subject key identifier: 14:C9:CE:92:13:D0:6E:D5:B9:83:AC:AB:C0:FD:B8:DE:88:AB:9D:52
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 019674FA15A2BE3D946137E717596E8834EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 01FF
Signing time: Sun 27 Apr 2025 02:01:08 +0000
Manifest this update: Sun 27 Apr 2025 02:01:08 +0000
Manifest next update: Mon 28 Apr 2025 02:01:08 +0000
Files and hashes: 1: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: gO+fNJ/bchew129HZeng4dz846a7tTPkYSeJ+zxYDqY=)
2: ffvaic9mo-Ox_7Jsdhd4jhWeyvM.roa (hash: nAU1XWM3o+xHaVb0+VtmU8Q3s90CIRxbMQo+s7S+UMk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:fa:15:a2:be:3d:94:61:37:e7:17:59:6e:88:34:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Apr 27 02:01:08 2025 GMT
Not After : Apr 28 02:01:08 2025 GMT
Subject: CN=14c9ce9213d06ed5b983acabc0fdb8de88ab9d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bd:96:e9:3f:ea:3a:7b:42:c6:76:b9:5f:1b:
37:46:60:9a:52:3b:72:99:e5:17:58:68:6d:93:87:
96:ed:fc:e2:14:28:01:44:13:89:4f:20:6d:18:9e:
eb:d2:7c:3a:46:9d:fc:c5:ac:31:35:6a:31:e1:8b:
5f:9d:1f:1c:99:e0:9c:82:0c:09:34:09:28:38:59:
d0:ad:8a:3b:66:7d:c0:26:1f:11:6e:1e:8f:59:c7:
00:76:ae:f4:3e:31:2e:1c:f2:b4:e0:9d:22:3a:1f:
be:75:91:67:a5:82:d1:9a:05:0f:c9:36:73:2b:72:
f4:57:34:8e:b7:54:49:50:21:90:42:d6:b7:6e:cc:
28:7c:c0:ff:86:ed:b3:30:5b:8e:58:39:2d:01:36:
d7:72:34:51:2e:c5:26:4b:e2:bd:a4:ca:93:c1:98:
92:5b:71:b9:15:e1:86:78:77:f8:74:6b:8f:a6:65:
2c:8f:44:76:c3:2d:45:11:54:4b:17:90:41:e7:1d:
74:97:35:3f:3f:c7:46:e5:da:2d:d0:54:70:e5:4f:
dc:90:02:3b:f7:9d:23:18:cc:d3:ae:9c:bd:7b:91:
a4:8b:41:71:0d:01:35:30:b6:d2:c4:45:c6:d4:0a:
56:7a:85:6d:15:36:31:34:53:32:04:d6:26:6b:6c:
b3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C9:CE:92:13:D0:6E:D5:B9:83:AC:AB:C0:FD:B8:DE:88:AB:9D:52
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ff:0d:12:f4:bc:ea:c3:79:8d:77:72:b8:9b:c0:3e:5b:f2:
d4:5b:42:81:02:6f:73:4b:f6:6f:ba:67:5f:17:26:1a:ec:82:
06:1e:a9:3c:8f:2f:a8:ea:d1:b4:f7:5a:3f:59:eb:2a:73:11:
f2:be:5b:6e:a1:f0:55:5a:8a:77:da:6f:ac:72:3f:22:f0:b5:
64:1a:fc:42:e0:40:1c:4c:03:06:17:e0:55:aa:86:14:84:85:
5b:80:7f:7c:ee:a7:24:54:ea:5d:b6:da:21:ac:98:f7:ad:90:
65:df:96:15:a6:40:aa:d4:19:58:34:e2:f9:7f:17:b0:c9:c5:
1c:c7:3d:c5:e3:83:fb:93:3e:86:ac:50:60:c0:67:41:bb:e2:
37:9d:90:92:d3:d9:98:e7:94:7a:65:34:6f:a0:bb:ac:03:9d:
f9:76:b6:82:92:1f:f3:b0:ec:ea:42:34:74:7d:1a:9e:d7:cd:
f8:51:c1:f5:23:f0:2c:17:0e:62:a5:6c:93:06:08:f3:72:03:
ae:a0:05:80:c4:da:47:65:3a:44:d9:7e:8a:7a:c1:d7:59:62:
97:db:ef:c6:3d:51:5f:13:f8:65:8d:a2:36:d5:8b:ed:25:54:
25:91:24:16:20:b7:f6:60:15:a2:70:14:9d:e1:90:8d:de:50:
60:61:0a:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:31:13 2025 by rpki-client