Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
File: KiZGBSRa8gGcKTw3KPal4lXYnyU.mft (raw, json)
Hash identifier: Xa34rnT/in9PQi+tNsBpA0waMPVlhBUDC3r7AXj4vLc=
Subject key identifier: C5:D2:88:E7:FF:B0:C8:DA:84:50:46:11:49:79:DA:3F:E4:BC:1F:38
Authority key identifier: 2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
Certificate issuer: /CN=2a264605245af2019c293c3728f6a5e255d89f25
Certificate serial: 019680591DEF90E9D348BBBCCDA51C14F9A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
Manifest number: 1514
Signing time: Tue 29 Apr 2025 07:00:46 +0000
Manifest this update: Tue 29 Apr 2025 07:00:46 +0000
Manifest next update: Wed 30 Apr 2025 07:00:46 +0000
Files and hashes: 1: 3KSN_k3KfyRIpkOpKsbbz9Bqq5E.roa (hash: iHgOduhUsida+9pHg8iFsStpH/s/1dREHiJkoJW0aww=)
2: KiZGBSRa8gGcKTw3KPal4lXYnyU.crl (hash: gbQNrQSlYgVgbSZA23Z/6QqG8mib869vLpLLA1Kf6A4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:59:1d:ef:90:e9:d3:48:bb:bc:cd:a5:1c:14:f9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a264605245af2019c293c3728f6a5e255d89f25
Validity
Not Before: Apr 29 07:00:46 2025 GMT
Not After : Apr 30 07:00:46 2025 GMT
Subject: CN=c5d288e7ffb0c8da845046114979da3fe4bc1f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f8:23:d1:09:9c:64:24:28:99:7b:7c:2c:14:
26:95:2b:76:61:32:1e:72:17:68:92:1f:4b:24:c2:
90:8c:41:b2:1d:b0:60:90:a1:a8:af:a1:27:27:66:
4e:3f:82:3b:18:ff:c9:b3:b9:22:13:43:72:d7:94:
37:b9:49:bc:b0:fa:bd:59:32:50:5d:92:63:06:8a:
e1:fc:09:9e:7e:e4:1e:f4:e8:74:ab:33:2d:7a:d2:
97:c5:77:5e:17:21:9b:a8:a7:8a:ac:67:ca:d9:68:
00:dd:80:6e:33:cc:3b:9d:be:70:07:1d:9a:b5:8c:
ce:53:0a:c5:e0:79:99:63:8a:6a:91:0e:49:b7:d8:
7a:30:3c:b4:46:48:f9:f8:ec:d8:45:3d:62:aa:28:
6f:d3:08:74:5a:f6:71:93:ec:4b:5a:55:0a:c9:89:
3d:cd:25:15:4b:f7:db:d1:c2:41:dd:d6:4a:1b:15:
99:6b:97:c8:cf:86:ee:e7:e6:a6:23:b4:bd:1f:d7:
52:99:39:6b:d1:c3:e6:c3:40:67:bf:c8:dd:63:5a:
e6:2a:ca:b6:dc:a2:9a:7d:64:f5:7b:64:b3:16:88:
02:72:ae:04:ed:e7:f7:b6:eb:21:a0:74:a9:6a:c9:
1f:13:ea:14:83:15:51:f9:e9:38:d0:94:87:33:68:
34:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D2:88:E7:FF:B0:C8:DA:84:50:46:11:49:79:DA:3F:E4:BC:1F:38
X509v3 Authority Key Identifier:
keyid:2A:26:46:05:24:5A:F2:01:9C:29:3C:37:28:F6:A5:E2:55:D8:9F:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KiZGBSRa8gGcKTw3KPal4lXYnyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2d11bb-5e2e-4085-a34b-359b64d709b9/1/KiZGBSRa8gGcKTw3KPal4lXYnyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:dc:f5:80:41:91:e3:ec:20:8d:d6:18:e7:ed:e1:08:85:de:
7f:f2:d3:69:49:5a:c6:c6:d4:e1:92:72:32:30:48:d0:49:0b:
ba:64:6b:94:87:89:9a:18:ee:5c:00:d0:dc:c6:ba:4a:a5:9b:
0c:ed:60:ae:64:56:76:2b:8f:c0:6e:76:36:1c:39:a4:9b:b5:
74:ef:2a:e7:17:5d:26:5e:45:a7:f9:a7:8c:31:fb:e1:a9:fd:
dd:d9:67:71:19:96:e5:d8:c7:48:e3:3d:cc:3a:ca:52:a1:e2:
23:65:a1:be:88:1b:9e:81:4b:f5:91:4f:4f:7b:b1:c5:f9:e2:
a0:4c:01:e2:14:98:c3:48:0f:20:62:82:fd:c3:0e:22:9b:17:
0d:a6:0b:0a:23:38:12:0d:c6:c7:16:e8:68:8e:5e:05:51:71:
02:54:7f:f6:56:97:fc:e1:c7:aa:22:a1:21:ff:83:ca:be:e6:
58:e5:6a:b7:79:36:77:55:99:af:fa:8a:3f:0b:fd:2b:dd:70:
fe:9a:42:cc:fe:f4:10:20:84:1c:93:c1:5e:80:a9:3f:68:61:
fa:db:81:a5:5f:88:3d:a1:ee:c6:52:a3:f8:3e:35:bd:d3:ff:
61:8b:45:05:f1:83:d6:95:bb:ea:45:7b:5b:9c:77:c2:f8:12:
0f:64:ca:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:24:25 2025 by rpki-client