Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.mft
File: klPiFMjlpvQTRb5oL2gmVbGr6ls.mft (raw, json)
Hash identifier: eFcWUuxPDRM553RDNrlGmK36mL7y87CBikMNlCCj/Zg=
Subject key identifier: 01:63:1E:CB:74:33:0B:52:77:3A:20:0E:AF:09:94:77:6E:FA:92:13
Authority key identifier: 92:53:E2:14:C8:E5:A6:F4:13:45:BE:68:2F:68:26:55:B1:AB:EA:5B
Certificate issuer: /CN=9253e214c8e5a6f41345be682f682655b1abea5b
Certificate serial: 019675306C0C1A8637E69E6B2E9496CD5BA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klPiFMjlpvQTRb5oL2gmVbGr6ls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.mft
Manifest number: 04CA
Signing time: Sun 27 Apr 2025 03:00:29 +0000
Manifest this update: Sun 27 Apr 2025 03:00:29 +0000
Manifest next update: Mon 28 Apr 2025 03:00:29 +0000
Files and hashes: 1: g9a2AgSYQsELLiSB_-OegEcbQ9I.roa (hash: ImJVXRp/ldmW9cQsi6+awLuGwVI0Qm+zTXoZ5uHaLy0=)
2: klPiFMjlpvQTRb5oL2gmVbGr6ls.crl (hash: BFdSEvLlcmkZSk0lrEXYNX2kVLDU9XLVa0I+yLIVkcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.mft
rsync://rpki.ripe.net/repository/DEFAULT/klPiFMjlpvQTRb5oL2gmVbGr6ls.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 03:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:6c:0c:1a:86:37:e6:9e:6b:2e:94:96:cd:5b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9253e214c8e5a6f41345be682f682655b1abea5b
Validity
Not Before: Apr 27 03:00:29 2025 GMT
Not After : Apr 28 03:00:29 2025 GMT
Subject: CN=01631ecb74330b52773a200eaf0994776efa9213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:66:5a:c4:ef:27:5f:02:bd:c5:db:5a:22:d9:
ca:2f:3b:ba:7b:7c:ba:e0:84:92:04:fb:8b:db:5c:
5c:e6:ad:5c:17:cd:aa:d9:31:60:81:8a:f9:46:37:
21:14:39:25:14:be:3e:10:86:94:4e:87:c8:4e:d5:
fe:37:ce:87:eb:ce:dd:18:32:ed:97:e2:66:23:af:
e6:5e:ec:d0:87:96:50:d4:61:85:9e:8b:7e:f7:7f:
34:95:0e:f0:0b:74:35:39:b4:ad:f4:ad:77:1c:f9:
4e:33:7a:d6:01:10:ed:e1:c5:3a:b6:2a:0d:2f:0b:
ce:ee:3f:da:ff:4d:83:7f:50:58:eb:db:73:58:67:
2b:1d:b2:9e:dd:27:53:9a:75:fe:15:18:d4:5b:75:
e5:6b:8a:64:11:7a:aa:54:c1:ff:f1:aa:8b:fe:67:
01:b6:43:06:c6:77:98:8b:4b:56:3a:50:ff:50:b6:
ee:c6:a4:f6:ba:03:2b:88:44:a0:82:7b:de:61:13:
47:0c:d3:e9:9c:b2:ba:a9:c6:b6:96:eb:9b:fd:3d:
3b:6d:55:2f:29:09:b3:a8:6c:ee:a5:df:59:a8:22:
9e:bb:64:bc:20:f1:04:44:65:37:5b:8f:88:da:db:
26:ca:84:ea:0a:0e:2d:88:f2:18:47:82:05:ea:02:
e6:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:63:1E:CB:74:33:0B:52:77:3A:20:0E:AF:09:94:77:6E:FA:92:13
X509v3 Authority Key Identifier:
keyid:92:53:E2:14:C8:E5:A6:F4:13:45:BE:68:2F:68:26:55:B1:AB:EA:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klPiFMjlpvQTRb5oL2gmVbGr6ls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/51a4a3-7304-4613-8a80-ca3b1cac69c7/1/klPiFMjlpvQTRb5oL2gmVbGr6ls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:5f:0e:db:4a:a5:58:3a:55:02:f7:7a:4b:5e:91:9b:e8:81:
1f:31:c3:b2:cb:e4:4d:e0:f6:ad:a4:ee:4f:fd:be:53:e5:ea:
36:68:1a:d2:40:44:1b:16:7b:c3:61:af:90:28:f9:2a:cd:33:
4a:5c:3e:5d:a1:bb:08:84:15:08:cd:6b:fb:91:f8:15:e0:de:
3c:e6:2e:c2:e7:c7:4a:c4:5e:aa:e9:6e:02:47:2e:d9:ca:ac:
8f:10:f3:c7:1d:27:c5:79:74:bc:09:95:c2:fa:13:d5:2b:f9:
b3:50:18:24:18:59:c3:a6:7c:06:f2:4a:1e:d9:6d:59:88:8f:
00:e6:8e:78:57:11:af:7c:f3:5a:86:c2:77:9a:7d:85:3c:43:
9b:d2:c8:08:6d:f2:cd:55:8d:fc:01:59:8c:29:64:b9:a3:74:
b5:f3:95:b1:19:95:ce:53:3e:9f:08:b8:c2:6e:e3:07:28:5c:
a7:94:b5:b8:eb:c0:88:d5:02:f2:c9:e4:d0:f4:40:51:95:8a:
fa:8f:c8:00:3b:19:3c:34:d1:b3:77:5b:ea:b6:c2:5b:6a:05:
d2:54:0a:64:b7:8e:ca:f2:fa:ef:18:a7:c1:1d:88:12:ad:ee:
5b:19:f7:73:d1:08:8a:1c:ae:b1:91:2a:00:a7:d5:aa:2e:91:
68:59:90:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:17:42 2025 by rpki-client