Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
File: kNzOkQAEUUlMQ8FdFy2i651beVY.mft (raw, json)
Hash identifier: DTl2MPX/5363T5tVviE/HrfxXeVaONAz4aLaKiL59Pk=
Subject key identifier: 7D:30:37:95:BF:BE:3F:92:C6:3F:CC:C4:84:41:DA:9C:4C:BD:B7:A5
Authority key identifier: 90:DC:CE:91:00:04:51:49:4C:43:C1:5D:17:2D:A2:EB:9D:5B:79:56
Certificate issuer: /CN=90dcce91000451494c43c15d172da2eb9d5b7956
Certificate serial: 01967AFBD27D187E9751EC9581A16DDCD6C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
Manifest number: 1513
Signing time: Mon 28 Apr 2025 06:00:45 +0000
Manifest this update: Mon 28 Apr 2025 06:00:45 +0000
Manifest next update: Tue 29 Apr 2025 06:00:45 +0000
Files and hashes: 1: 4COA7EoK---RVhokcyyZ55j8IXE.roa (hash: 7qjze9UZTxm2x0zZOdskcsGbC7b8KEyBHHGZAVSSicA=)
2: kNzOkQAEUUlMQ8FdFy2i651beVY.crl (hash: VyjAcWdsYkT20BHaLghuNd0+HSIgfT1CrX9ArQad9pY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:fb:d2:7d:18:7e:97:51:ec:95:81:a1:6d:dc:d6:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dcce91000451494c43c15d172da2eb9d5b7956
Validity
Not Before: Apr 28 06:00:45 2025 GMT
Not After : Apr 29 06:00:45 2025 GMT
Subject: CN=7d303795bfbe3f92c63fccc48441da9c4cbdb7a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ef:ff:03:a4:3b:16:8c:fa:ba:4c:68:79:60:
b1:10:bf:81:30:62:55:d6:7f:c4:b3:be:81:3d:e2:
27:e3:32:d5:44:96:75:9f:0c:de:13:2d:31:74:65:
4d:ce:a0:f8:53:42:5a:19:aa:c0:68:44:9d:d9:32:
73:bb:72:cb:c5:87:62:63:5f:e8:c9:ad:1e:4e:14:
9c:df:46:d2:20:b0:2e:b2:80:61:24:00:f0:fe:6e:
6f:ec:d2:bc:bd:e1:36:b2:f2:ea:51:ba:8b:a7:20:
3c:4a:bf:4b:61:58:54:e3:43:c0:4a:2f:54:86:fe:
1d:75:91:8a:b5:58:6b:5e:85:ca:98:74:83:c7:31:
08:fc:86:17:70:bc:cd:7a:ca:c4:d5:35:a3:f6:b0:
ca:5a:f3:2f:65:43:6f:d7:13:a6:4e:9d:04:67:3b:
2e:17:23:e6:06:83:22:97:f1:33:09:85:ec:99:fd:
38:04:a2:dd:28:91:12:dd:b8:01:29:2c:3e:7b:87:
44:98:c3:59:66:1a:36:f0:18:75:f4:fa:37:36:48:
a4:c7:1e:c5:74:ff:7d:da:d8:0e:a8:00:a2:fd:42:
36:08:cd:ba:6c:dd:23:bf:e9:b0:0c:32:08:81:c1:
62:1c:e7:de:de:e6:56:9a:79:37:32:05:fc:bd:4c:
42:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:30:37:95:BF:BE:3F:92:C6:3F:CC:C4:84:41:DA:9C:4C:BD:B7:A5
X509v3 Authority Key Identifier:
keyid:90:DC:CE:91:00:04:51:49:4C:43:C1:5D:17:2D:A2:EB:9D:5B:79:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNzOkQAEUUlMQ8FdFy2i651beVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/51fdbb-8ba2-4b7e-980f-ee60b0ddbdaa/1/kNzOkQAEUUlMQ8FdFy2i651beVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:17:65:2a:5a:83:5d:9e:6d:b5:8a:ab:87:d0:4f:ff:a3:9d:
b1:54:66:29:b5:cc:ac:3c:5a:86:37:04:11:13:98:18:44:c4:
36:48:9e:f3:8d:a9:bd:c8:5e:23:f4:0c:ad:7b:7b:5f:f1:93:
ee:ea:c6:ae:77:e2:22:60:88:7c:85:3b:74:73:76:87:b6:48:
a6:3d:11:02:51:3a:e8:56:de:e3:4a:fb:7e:2d:3d:03:b4:41:
59:25:d6:8f:02:56:9d:43:fa:5b:83:7b:17:be:60:05:8b:9b:
b8:03:3c:f2:f2:91:40:1d:83:5c:71:0c:57:a4:3c:ce:43:14:
48:d5:2c:79:7f:07:07:83:4e:e6:ed:aa:29:56:28:71:c9:f7:
73:da:47:a2:8c:2d:6f:ed:db:08:58:b0:1c:33:5b:cb:75:4c:
d2:57:8e:24:27:63:30:49:3e:d4:83:c9:8f:37:f7:97:c5:37:
0c:02:42:d3:bf:43:53:b6:2c:5d:01:6d:2c:76:db:40:5c:37:
04:48:68:34:64:59:a7:9c:e4:57:66:35:e5:b0:7e:86:b4:62:
96:83:ca:b2:ac:8c:43:07:ee:0d:ba:0f:b9:69:48:a3:fe:00:
7f:dc:7f:c0:69:78:83:c2:83:ac:e3:ba:b7:e2:f7:fb:60:91:
ab:84:ee:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 09:10:35 2025 by rpki-client