Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
File: Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft (raw, json)
Hash identifier: iJdAbSb6Yp9T1rpDphkzqw+HTza2phkIczukiHj01Pk=
Subject key identifier: 58:8C:49:9D:EC:3F:B5:B8:8B:4F:08:13:A2:8C:32:04:17:0D:40:A5
Authority key identifier: 2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
Certificate issuer: /CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Certificate serial: 01967EA176843950EFF9655D129BB6C6DD46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
Manifest number: 0E41
Signing time: Mon 28 Apr 2025 23:00:32 +0000
Manifest this update: Mon 28 Apr 2025 23:00:32 +0000
Manifest next update: Tue 29 Apr 2025 23:00:32 +0000
Files and hashes: 1: Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl (hash: A/au8c+xSDKsWr5PtjdHtY5YFlf+roMsc39DnTVw2Wk=)
2: so_dnSs4BnrVZYioQ2oy6VOroHk.roa (hash: EXJQLyqb51APlznWLoV0tXq0fpUDEu2dhVkLYk30HsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 23:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a1:76:84:39:50:ef:f9:65:5d:12:9b:b6:c6:dd:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac89af05d20711e0a94e84bf4b44766362c5083
Validity
Not Before: Apr 28 23:00:32 2025 GMT
Not After : Apr 29 23:00:32 2025 GMT
Subject: CN=588c499dec3fb5b88b4f0813a28c3204170d40a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:43:5a:45:14:4d:a0:66:fb:3a:c6:4d:da:21:
6e:fa:7d:a5:0a:82:34:a5:87:9d:2a:91:2a:6e:c3:
e4:a5:9a:d3:da:d5:4c:38:ca:05:3f:b3:98:4e:23:
ce:4b:62:b5:c2:1b:51:06:8a:ca:0b:4d:88:49:30:
4e:d1:b2:0f:78:51:45:df:e0:7b:ff:34:fa:00:2f:
f1:5f:98:bb:3d:fb:5e:c4:d2:c5:a8:9a:c5:2e:f4:
73:04:82:ad:70:b2:b1:c0:db:4b:d3:c1:96:ce:09:
19:f7:dc:ab:26:46:c2:75:05:86:8c:cd:ce:9b:ff:
20:c2:b7:0c:ac:f5:70:b8:2a:2e:7b:91:f2:fa:10:
9b:3a:23:ca:32:40:39:83:b7:91:60:c0:24:f8:a4:
99:4f:a9:b1:7b:a6:a4:da:69:94:15:41:3c:e7:43:
3f:83:67:11:b8:5b:63:ba:33:28:8c:0b:9a:a5:53:
9a:aa:1b:dc:63:44:21:02:ab:d7:e4:f2:af:85:15:
7f:e9:6e:c4:f5:0d:a1:aa:3e:96:24:a2:2f:47:6a:
e8:b9:b5:e2:3f:af:15:a7:c7:a5:2a:bb:08:7c:86:
80:59:1d:24:b3:19:82:37:44:6e:e8:bc:e4:e8:52:
3c:f1:23:08:6c:28:65:92:85:b6:27:fc:77:20:6d:
5b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8C:49:9D:EC:3F:B5:B8:8B:4F:08:13:A2:8C:32:04:17:0D:40:A5
X509v3 Authority Key Identifier:
keyid:2A:C8:9A:F0:5D:20:71:1E:0A:94:E8:4B:F4:B4:47:66:36:2C:50:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ksia8F0gcR4KlOhL9LRHZjYsUIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/c9330d-4d4a-4458-888a-e362a90edec1/1/Ksia8F0gcR4KlOhL9LRHZjYsUIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:c6:c5:f6:76:65:47:15:9e:9c:a5:7a:30:a9:8c:28:a1:00:
92:0c:f5:c5:eb:00:b9:57:97:71:72:2b:9a:36:17:d2:c5:c0:
08:a2:28:c9:61:46:02:a7:89:08:70:9f:0d:01:e2:c6:3c:aa:
4d:35:57:ef:b1:ed:34:f4:6a:2e:7d:7a:ca:a5:fc:38:c1:09:
b5:47:59:79:79:ae:89:4b:cb:b1:eb:d6:7b:34:05:ad:6e:1a:
eb:7d:a2:4d:e7:b1:73:90:d6:1b:a3:03:71:26:a3:9f:1c:0c:
26:c9:15:03:a6:92:bf:ce:10:9e:92:9d:ad:e1:89:67:01:d3:
5d:da:63:db:3a:a7:c7:7e:2d:68:e8:a0:db:33:51:fe:0f:89:
c6:93:c0:13:ee:2f:b5:68:8b:8b:0b:e7:72:1f:96:c8:4f:e8:
06:6e:71:05:46:92:7d:ef:03:4d:69:23:d7:02:5e:36:a5:3d:
65:f0:9a:74:8c:44:a0:c2:8e:e0:37:43:20:44:dc:f7:7f:23:
03:87:9f:70:d8:99:50:29:7c:f9:b7:27:d2:28:00:ce:d1:fc:
b3:a1:11:32:51:90:53:ae:eb:1f:bd:7c:a1:03:e1:3a:5a:6d:
1f:86:e9:c6:fe:4d:aa:e3:73:3a:ec:a8:a5:34:52:17:2b:2a:
2c:94:22:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:25:49 2025 by rpki-client