Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
File: KpTH34VXtlNEfD4G-0s3LVEgoiI.mft (raw, json)
Hash identifier: nCtAnZVqLrPq0TVsgzqh9IXAz1RYWgYDGwiktIMW6g0=
Subject key identifier: 04:FE:1D:8B:10:2F:60:B7:5F:8B:D9:28:4A:82:D3:26:40:EB:50:07
Authority key identifier: 2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
Certificate issuer: /CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Certificate serial: 0196741D9B71D72074A84AE6357C5A02A7FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
Manifest number: 150B
Signing time: Sat 26 Apr 2025 22:00:19 +0000
Manifest this update: Sat 26 Apr 2025 22:00:19 +0000
Manifest next update: Sun 27 Apr 2025 22:00:19 +0000
Files and hashes: 1: KpTH34VXtlNEfD4G-0s3LVEgoiI.crl (hash: BcAfFhOi5ME2HGtE4tvlGPtT0ghZodTQ457Wo5UD178=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 22:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1d:9b:71:d7:20:74:a8:4a:e6:35:7c:5a:02:a7:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Validity
Not Before: Apr 26 22:00:19 2025 GMT
Not After : Apr 27 22:00:19 2025 GMT
Subject: CN=04fe1d8b102f60b75f8bd9284a82d32640eb5007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d5:7d:fd:2a:a8:da:cc:d2:1a:1b:90:52:07:
15:ad:ce:33:c0:d4:5c:f9:d6:b7:13:e0:27:cb:d4:
00:6c:7c:83:33:2b:9a:e0:c7:58:c9:59:68:a7:b8:
55:c8:ed:9d:1d:e4:34:6e:e4:d8:fb:0a:6f:4f:33:
4c:c6:e7:a7:b8:50:3a:d0:33:b3:6e:59:0a:06:78:
40:38:31:00:50:34:be:9b:d6:d6:35:2b:d5:34:09:
e2:cb:db:2a:1c:85:c4:06:89:23:57:a7:dd:38:10:
20:cb:13:74:be:48:a2:6d:4c:d5:d7:df:90:30:95:
2d:14:e6:d3:45:f7:e4:65:0e:af:06:ed:3b:4a:f9:
0a:9c:e1:91:ca:65:a6:1b:fa:78:81:b0:63:e7:af:
3f:7e:68:e6:51:9b:53:ba:b9:d1:4f:f7:86:3a:f0:
e9:8e:ce:43:6e:54:ed:be:1b:4b:f5:42:bd:6b:a9:
15:8f:a8:aa:55:9a:4e:15:9b:89:96:a2:83:d7:cd:
ba:32:e6:dc:4d:a0:e9:8e:a5:c9:61:1f:f3:8e:97:
0b:5e:1d:2c:a6:fa:47:3e:4e:03:2e:32:ff:54:6e:
28:b7:32:d8:43:5b:fa:42:88:9f:29:d1:9c:90:3d:
98:6c:86:76:d2:04:45:58:37:31:92:79:f0:41:fd:
8c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FE:1D:8B:10:2F:60:B7:5F:8B:D9:28:4A:82:D3:26:40:EB:50:07
X509v3 Authority Key Identifier:
keyid:2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:61:94:93:a9:46:af:94:0b:da:c3:83:bc:6d:4c:0a:c9:22:
a4:ac:7c:97:81:66:fc:a9:e0:09:9f:85:59:41:e9:f1:a3:11:
ed:54:5e:d8:da:a1:ba:ad:92:70:35:87:4f:5e:54:9a:f5:53:
78:8a:40:8c:86:65:c2:4d:2b:a4:3c:1b:d3:48:e8:f7:77:8e:
7e:45:7e:b0:39:95:bd:37:4b:9a:fb:0b:e0:e3:92:0b:ca:35:
1c:13:11:1b:8f:ef:71:8a:9d:20:bf:75:5e:fb:74:8d:6b:eb:
92:c9:fb:98:f6:ac:a7:e4:a8:d8:df:5d:21:58:16:b5:19:ad:
62:1f:35:dd:70:fd:85:35:5e:61:23:75:ad:de:f0:93:91:83:
42:e2:c4:29:cb:f8:fc:2b:e1:65:6f:e6:9d:ac:47:e4:01:74:
09:09:4e:63:2a:ad:5d:19:7e:c2:3b:a1:d4:e9:4c:87:f5:af:
76:00:0e:2f:58:bd:e9:41:8d:f4:46:59:a8:f7:8e:39:c5:bd:
6b:c6:d6:ec:ad:f3:32:ad:ba:89:4f:a7:6e:a5:87:6c:d0:86:
d7:58:c6:c9:03:15:27:da:bb:a3:ea:37:4c:66:73:6d:b7:e4:
57:54:63:91:71:87:01:99:d8:70:dc:25:29:93:1e:e4:73:30:
a1:33:53:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:20:02 2025 by rpki-client