Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
File: khjNJev3TLGwBLAe5QVQP_8kbWE.mft (raw, json)
Hash identifier: AOdRcyc/nojMYVa4NFbEvEPhfQai3dV76u6Tggc9pWo=
Subject key identifier: 98:FF:C2:F3:9F:B0:BA:0B:F3:36:D4:F9:02:10:91:A9:25:C9:B6:EA
Authority key identifier: 92:18:CD:25:EB:F7:4C:B1:B0:04:B0:1E:E5:05:50:3F:FF:24:6D:61
Certificate issuer: /CN=9218cd25ebf74cb1b004b01ee505503fff246d61
Certificate serial: 019676E81FF45DB732A31FC91733D8A298BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
Manifest number: 033E
Signing time: Sun 27 Apr 2025 11:00:46 +0000
Manifest this update: Sun 27 Apr 2025 11:00:46 +0000
Manifest next update: Mon 28 Apr 2025 11:00:46 +0000
Files and hashes: 1: hzP2EY4V13WQH8d_pNPxVTI0pdE.roa (hash: p8JhkO3NrYZd+pd4+yMBXMa+gMDLxEDL5Q92aazBUYw=)
2: khjNJev3TLGwBLAe5QVQP_8kbWE.crl (hash: E+xhzcElaFjDSf8qLerIaauGWfieYFcB5hZKSa42DPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:1f:f4:5d:b7:32:a3:1f:c9:17:33:d8:a2:98:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9218cd25ebf74cb1b004b01ee505503fff246d61
Validity
Not Before: Apr 27 11:00:46 2025 GMT
Not After : Apr 28 11:00:46 2025 GMT
Subject: CN=98ffc2f39fb0ba0bf336d4f9021091a925c9b6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:62:af:7c:21:73:aa:27:66:c0:05:70:5e:e3:
ed:60:34:4c:f6:bf:80:8e:e7:65:be:6d:29:ae:40:
6f:3d:1a:2c:60:3d:d7:e8:67:ea:ca:cd:26:06:cb:
29:74:27:63:bd:0b:5d:ff:ee:ce:f4:85:e0:6f:bf:
34:35:81:13:89:79:fe:da:24:07:27:f0:3c:43:aa:
4a:ca:03:c1:b0:3a:25:6a:41:9d:c6:c6:85:f9:1b:
13:76:3c:93:51:41:3b:9f:69:e1:e3:64:65:2a:f2:
e5:c4:30:94:c8:8a:b5:ff:a3:cd:cb:37:1c:11:f4:
43:e2:ff:d8:44:f1:39:65:fc:8c:a4:1f:66:f0:35:
f7:9b:07:dc:2e:88:d9:bf:16:da:ac:da:6a:5b:a2:
f2:ef:00:27:12:83:88:c4:66:5d:80:33:1c:6e:fc:
c1:4d:81:87:44:00:29:b6:ed:28:fc:23:08:f8:bc:
8d:8e:45:8a:90:d1:c2:7f:81:3f:07:01:6c:1d:88:
14:cb:fe:1e:3d:92:c6:f9:fd:22:00:06:6b:44:ae:
89:62:ad:d4:82:c7:27:85:87:9b:ee:67:f2:48:13:
b2:d1:12:5a:8b:2b:59:53:ef:a9:2b:6f:23:0c:09:
63:8c:e1:eb:cd:54:2d:ad:b5:f8:ba:43:2d:76:d7:
55:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:FF:C2:F3:9F:B0:BA:0B:F3:36:D4:F9:02:10:91:A9:25:C9:B6:EA
X509v3 Authority Key Identifier:
keyid:92:18:CD:25:EB:F7:4C:B1:B0:04:B0:1E:E5:05:50:3F:FF:24:6D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khjNJev3TLGwBLAe5QVQP_8kbWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/46e223-6d23-4795-9525-bc877ce9061a/1/khjNJev3TLGwBLAe5QVQP_8kbWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:02:b3:43:44:cb:fd:dd:d1:10:12:48:85:94:00:40:e1:cd:
8d:dd:4c:5f:b3:8e:ae:a5:92:93:76:24:15:e2:be:00:c9:67:
a3:bd:55:c4:33:e6:d4:4a:63:a0:8f:02:d9:8f:ac:f6:f8:6b:
72:fe:12:f5:29:37:74:7e:97:01:1a:ad:d8:1c:56:16:81:44:
93:48:b9:8b:30:73:0a:db:ad:08:15:e9:14:14:60:b1:77:e1:
e3:0e:92:cb:45:a7:77:cb:a6:c6:40:a9:b5:8b:6f:4b:61:f1:
bb:f0:a5:39:09:39:23:41:1e:80:54:5b:3a:39:9a:69:03:3a:
15:38:a2:6a:47:d4:a4:30:89:2a:23:51:73:36:87:3e:e0:65:
82:f3:48:a8:4a:36:70:7b:48:59:46:16:29:d8:5d:5b:df:10:
de:6a:6f:bd:bb:da:6f:37:c9:42:4d:5a:55:19:c7:82:88:8a:
5b:51:02:ce:dd:c7:1c:f3:a7:af:fd:18:93:33:0d:07:17:f7:
58:9b:14:c5:88:ac:1f:ef:9b:9e:6e:32:59:3e:0c:96:c6:22:
c4:a8:47:27:4b:82:fe:f1:bd:22:30:7d:ea:8e:54:67:ec:6b:
f9:21:d4:12:d2:24:25:12:67:5d:dd:93:3a:4f:e1:08:b3:dd:
1d:27:69:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:04:39 2025 by rpki-client