Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: +nhgERNOfvBf65Hi+lkLadsuEdBxYybObchvE3Zg7YI=
Subject key identifier: 01:75:D6:7E:84:F9:9D:28:74:B6:41:33:4F:CD:71:90:5F:B7:4B:82
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 019681A246D708A398BFDEFC377B6F973181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 1516
Signing time: Tue 29 Apr 2025 13:00:17 +0000
Manifest this update: Tue 29 Apr 2025 13:00:17 +0000
Manifest next update: Wed 30 Apr 2025 13:00:17 +0000
Files and hashes: 1: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: MKsNpcecw/jq1I/tT5utyTZb0wBeGGgUleW8NwmcSNw=)
2: r4bjJ2cCOInhIlG1f9hIdTm3g6M.roa (hash: aZToxg96BEY8Qvj4uVJxCXKyOgQmRt2zg6OKjNY/eQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:a2:46:d7:08:a3:98:bf:de:fc:37:7b:6f:97:31:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Apr 29 13:00:17 2025 GMT
Not After : Apr 30 13:00:17 2025 GMT
Subject: CN=0175d67e84f99d2874b641334fcd71905fb74b82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1a:53:a6:46:b8:57:89:cd:c6:19:ad:b4:79:
ec:a8:4f:81:5c:57:cb:b7:04:cc:47:e8:7d:ad:9b:
3e:2b:09:b9:43:e2:ee:5a:cd:cf:4c:5f:44:e3:34:
17:8c:f9:d2:63:12:ce:d0:6a:5f:cb:25:a6:6a:1d:
5e:9c:31:f8:9f:e8:41:c7:71:be:a5:4d:57:7b:0c:
10:0a:10:30:d1:18:d0:a7:a2:43:e6:53:47:12:77:
79:fa:2d:28:69:6f:fa:83:d7:5e:50:74:1c:9b:a2:
d5:34:d1:77:20:e8:07:93:28:1a:b4:97:57:0e:e6:
07:cb:37:f2:11:3d:77:e5:fd:75:69:dd:ca:a8:70:
a7:8e:1b:9d:e4:7c:fd:96:00:52:d1:0d:3a:bf:e5:
da:d3:22:01:0f:32:22:94:15:48:8f:f2:58:9f:6a:
ea:f6:73:df:99:35:29:09:0d:ba:09:1b:eb:de:1b:
88:3b:20:aa:a5:bf:8b:bc:e1:df:4f:5b:ba:f5:7d:
e7:1f:a5:dd:2e:f6:15:93:7f:cd:c3:bc:c2:57:fb:
9d:81:12:e7:d6:84:ab:55:31:4c:13:2c:89:05:77:
85:40:a6:82:75:a6:2a:bd:ca:7f:22:82:5e:6b:ba:
a0:be:92:4d:91:2a:18:00:5e:8a:5d:8f:25:bb:2b:
8f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:75:D6:7E:84:F9:9D:28:74:B6:41:33:4F:CD:71:90:5F:B7:4B:82
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:65:ce:5f:44:6e:d4:08:a8:5f:74:ea:9d:38:76:9c:9b:9c:
67:ce:25:0e:e7:bd:dd:80:a0:bd:18:21:e9:41:24:5a:da:0f:
09:d0:8f:f4:ee:cc:a5:bd:aa:3c:df:57:92:ad:28:9f:d8:6b:
68:34:ad:22:c3:ba:82:d4:20:aa:ce:c3:4f:9d:31:d8:51:df:
bb:20:91:38:5b:9c:3c:67:cb:85:9c:48:63:6d:75:92:ea:78:
5f:e2:38:d6:49:9b:47:99:91:5b:66:7b:7b:1e:2d:e1:cd:5d:
52:34:96:d3:9f:ac:12:33:ef:42:8a:a5:a2:22:d7:60:b8:c4:
c6:10:89:13:a8:67:3a:f0:4f:b0:b3:a7:0b:1e:80:b3:27:36:
78:c1:15:1b:5f:b7:f8:b6:d7:b5:fb:a6:0e:06:0c:92:24:5e:
3d:20:d1:54:ed:26:33:34:93:f1:46:1d:ef:38:e8:65:cd:f6:
75:00:6a:7d:1a:01:84:5f:85:f5:9e:8f:94:53:c1:93:89:ec:
6b:46:b9:c4:3d:b0:2d:29:eb:e1:29:7c:b5:51:76:fb:0c:00:
1b:5a:05:0d:82:56:c2:dd:df:c2:b3:ed:5f:53:46:97:ad:9c:
85:37:a1:67:32:77:46:f7:c3:c7:5d:b6:b8:c1:9e:e7:51:ec:
c5:20:e7:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:47:31 2025 by rpki-client