Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
File: KHtQElUXlEJ0oUa7rNZOaRog-gY.mft (raw, json)
Hash identifier: 8biarGik5mp8qdZ/jEXNcCpc+B2WHwATDDK6wN8mne4=
Subject key identifier: 88:47:72:5B:9C:85:5E:83:EF:05:19:27:52:B2:B0:54:42:3F:6A:8B
Authority key identifier: 28:7B:50:12:55:17:94:42:74:A1:46:BB:AC:D6:4E:69:1A:20:FA:06
Certificate issuer: /CN=287b50125517944274a146bbacd64e691a20fa06
Certificate serial: 01969ABD7BEC2F23E64951C13C5883603490
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
Manifest number: 0DCC
Signing time: Sun 04 May 2025 10:00:31 +0000
Manifest this update: Sun 04 May 2025 10:00:31 +0000
Manifest next update: Mon 05 May 2025 10:00:31 +0000
Files and hashes: 1: KHtQElUXlEJ0oUa7rNZOaRog-gY.crl (hash: mmutbUme92oHr+w5uFcioy/0kh4XNV3ZNQhGxybHfEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9a:bd:7b:ec:2f:23:e6:49:51:c1:3c:58:83:60:34:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287b50125517944274a146bbacd64e691a20fa06
Validity
Not Before: May 4 10:00:31 2025 GMT
Not After : May 5 10:00:31 2025 GMT
Subject: CN=8847725b9c855e83ef05192752b2b054423f6a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:50:2e:bd:6b:12:9d:7b:99:44:17:80:9b:cf:
4e:30:05:21:a3:ab:02:48:79:32:55:6e:63:e3:e3:
1b:0b:07:19:df:86:3d:74:68:8a:4e:b5:96:6c:0b:
7d:b8:c3:17:ed:c1:6f:9a:48:2a:01:f5:e0:01:e4:
4c:4c:3f:26:90:49:8b:58:27:5d:82:86:d5:a3:19:
00:4c:c6:94:22:ee:e0:ee:93:53:b1:1a:05:09:75:
22:48:50:87:12:6f:37:83:26:db:69:a8:08:b1:3a:
e2:74:3c:53:84:72:81:bf:4d:cf:42:68:ae:2a:12:
93:0d:0e:e8:c6:67:92:ce:26:9a:3e:a7:bc:56:c0:
2c:ba:68:b6:59:65:16:de:2e:01:26:ef:f8:9e:71:
41:ab:45:46:ed:36:31:93:8e:7a:a7:8d:85:88:fe:
78:08:71:74:66:fa:19:37:4d:9e:80:b4:bb:e9:25:
51:21:36:d6:a0:05:0c:97:92:ec:e6:87:25:82:4d:
84:1e:46:39:45:4f:03:a4:d6:7b:b0:c6:0d:4c:84:
f7:f5:ae:64:fa:7e:24:ed:cd:55:e4:e9:dd:5e:e1:
54:6e:23:b4:a6:64:84:16:88:32:53:60:93:6f:5d:
73:68:e1:d0:b7:22:23:8c:46:5b:36:71:06:d1:7b:
52:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:47:72:5B:9C:85:5E:83:EF:05:19:27:52:B2:B0:54:42:3F:6A:8B
X509v3 Authority Key Identifier:
keyid:28:7B:50:12:55:17:94:42:74:A1:46:BB:AC:D6:4E:69:1A:20:FA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHtQElUXlEJ0oUa7rNZOaRog-gY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/41a443-ee2b-4646-ba68-aab6c8ba5bd4/1/KHtQElUXlEJ0oUa7rNZOaRog-gY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:30:2e:60:7d:00:17:66:79:f7:77:05:df:e6:63:7d:8a:e6:
b5:77:d9:54:09:88:31:f1:3f:a2:cf:68:10:9d:dc:4b:14:31:
a8:05:74:70:26:2a:3c:88:00:ba:2b:17:05:d5:1a:90:41:e8:
5d:4f:a3:b3:ff:08:19:f4:cf:fb:e3:93:7e:d1:2f:4a:e4:be:
b2:53:3f:53:c8:2a:4c:8b:54:a5:cc:ae:57:e5:e9:ae:b0:14:
6b:6b:54:f1:2d:01:8a:55:05:df:9d:4f:ec:c9:ad:da:90:cb:
13:01:a6:96:da:05:38:8e:3b:2e:69:4a:d8:ad:7e:8e:2a:f2:
d6:28:95:9d:2d:b4:e5:9d:53:47:b2:a5:a1:89:f2:3b:3f:8c:
be:5b:6a:de:24:ac:61:2a:24:ba:79:0e:c8:d5:48:4a:ac:1d:
64:7d:90:87:6d:41:ab:46:f0:5c:0b:a6:c6:60:e9:6c:e6:05:
6f:ca:e2:f9:35:9c:d1:30:d5:9b:c7:e8:3b:13:e3:49:89:bb:
9f:3e:e2:5a:09:09:94:db:71:0a:ac:89:15:64:a0:12:cc:3b:
9e:49:67:a2:84:e3:84:09:6f:62:1f:b3:95:ed:01:6d:04:bf:
ca:20:2b:50:6f:42:8c:02:99:20:e3:ef:71:0d:e8:ec:36:c5:
cc:f6:d4:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 4 20:23:55 2025 by rpki-client