Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json)
Hash identifier: huxyUqXnttQadikCLK0FxB8r78dyXEu9YLjsDTtTVu4=
Subject key identifier: D6:57:39:02:83:15:47:61:BA:F9:40:AD:6E:57:AC:55:A3:7B:1A:88
Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Certificate serial: 01968322EEC097201F64A047213C01CA515F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
Manifest number: 0131
Signing time: Tue 29 Apr 2025 20:00:26 +0000
Manifest this update: Tue 29 Apr 2025 20:00:26 +0000
Manifest next update: Wed 30 Apr 2025 20:00:26 +0000
Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: tkht/zzxp8dtgtIQJ0so5gZ2zVfCtcsSd7kWIzkNZgg=)
2: BPcKYotNA4ZeZvm82W73v75zPQs.roa (hash: oHpWOGTj/PoKbHsHCYFs8uXPSnbHGEoV8KY7k9zJBk4=)
3: GkxGrjdz0A7AWmifnWDimQZWI38.roa (hash: tHXJR2KGAG4wHE8bdFOYoF9Jdtd+4jQD2aXhMHJzWK8=)
4: OFO40pbXY33B4_R6m0vxzmJtlaE.roa (hash: OKgJmR90SzKnzfJWjgu0f1y4g1wd7HW3UjBatZfs5A8=)
5: ief4j2bb-cAvwzzS1T0xB8OgxGk.roa (hash: cv2vWMrY2M65pVapU15+XFEE8tVsd4Na8PnjBxEQRuA=)
6: wkwsgzJc2eo9ng8QQ8kvMc3qjbc.roa (hash: +iuoTytPo6r5GmeijHeI4hmWR8iJmhnqPLAkE9k79sI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:22:ee:c0:97:20:1f:64:a0:47:21:3c:01:ca:51:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129
Validity
Not Before: Apr 29 20:00:26 2025 GMT
Not After : Apr 30 20:00:26 2025 GMT
Subject: CN=d657390283154761baf940ad6e57ac55a37b1a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:71:35:8c:18:dc:27:10:7c:a7:3f:8e:d7:a3:
b3:6b:34:8b:f5:00:56:43:cc:c7:ac:4d:2d:29:de:
fd:c4:69:2b:2d:2f:0e:25:90:23:01:28:45:a2:4f:
2b:d6:f1:69:df:86:8b:94:a1:40:75:04:21:d0:b9:
d1:46:a8:83:4d:0a:21:0a:10:04:39:b5:d5:6a:71:
5d:50:4c:b4:88:cc:eb:7b:c9:e2:cf:4a:7c:b4:00:
52:03:fe:5c:07:23:8c:e6:eb:a2:5b:39:fb:1a:96:
60:79:2a:d4:b9:57:08:70:25:5b:6c:a0:56:9e:e4:
48:e3:73:9e:e3:c3:ad:eb:76:d7:98:4e:16:36:1f:
a8:e8:0e:4e:e5:a4:c0:71:08:37:78:52:b2:a2:60:
ad:5a:92:6f:23:5c:30:13:3b:0b:6b:b5:44:55:da:
1c:28:83:e3:2e:ef:82:2b:cf:88:a7:85:2e:92:98:
39:25:90:69:b4:ad:fb:26:36:86:79:c1:8a:44:ca:
6a:82:87:8c:bd:32:4d:32:8d:e5:1a:a0:ac:37:bf:
fd:74:86:c9:41:ce:2e:9f:8e:c0:a6:5d:37:9b:43:
40:9c:82:2f:1b:16:f1:8f:3f:2f:8e:5f:8b:b1:0b:
07:7b:84:d6:4f:30:cd:6d:fe:17:0b:e6:72:04:b2:
d4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:57:39:02:83:15:47:61:BA:F9:40:AD:6E:57:AC:55:A3:7B:1A:88
X509v3 Authority Key Identifier:
keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:8c:d9:6e:cd:9b:c7:ac:1a:02:28:8d:2b:d8:d2:67:f1:a8:
23:b8:dd:bb:5a:89:88:6f:31:87:9d:68:28:b5:da:56:d1:0b:
4d:6a:f0:75:09:00:13:d9:ac:5e:3b:ad:26:65:a7:22:3c:6d:
e8:c5:31:2f:0b:3a:33:86:18:1b:bc:7a:b9:ff:90:9d:c9:1a:
bc:16:31:eb:be:42:9c:38:da:12:a2:52:51:bb:c1:2e:42:17:
35:a4:fa:0a:49:20:e3:a1:40:92:da:b2:a2:5e:8c:b3:83:19:
da:05:b6:20:29:38:ff:a7:fe:d5:4a:e0:c4:1b:11:40:3e:9e:
41:19:c2:ad:f3:70:de:b5:03:35:9c:07:06:5b:2b:14:2f:fe:
76:9d:1c:8a:e0:08:00:20:ee:1a:b9:57:ef:a7:bc:5a:a2:67:
03:35:eb:09:b2:e8:68:fc:da:ec:d3:99:f4:a1:67:3d:11:30:
8f:ee:76:90:4a:e1:4a:d2:54:1f:25:0e:44:b3:2d:9e:20:a4:
70:39:a2:4f:10:9b:e8:bf:f8:32:29:33:cf:de:11:3a:d5:06:
4c:07:65:f1:c3:57:92:22:f8:5f:15:ca:0f:44:55:db:a3:03:
47:84:17:f0:c8:22:7d:db:5c:70:73:5f:53:ea:c2:3c:5d:1e:
c1:9c:44:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:24:34 2025 by rpki-client