Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: HUeRfVWWKDUGq2wtVf4WjzDSFxDpoZl48ygPZwi5DKs=
Subject key identifier: 1F:5D:66:26:CF:80:AA:81:AE:DB:B3:97:8E:7E:7B:3D:42:0C:02:20
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 019685EDDEDF0AFE90B4922A8A66A5D8B304
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 05D4
Signing time: Wed 30 Apr 2025 09:01:20 +0000
Manifest this update: Wed 30 Apr 2025 09:01:20 +0000
Manifest next update: Thu 01 May 2025 09:01:20 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: 3xeZF571utKHhZt33lIfBz15qiy2V6I3uakalthldpo=)
2: wd_UoJqlC6X8mKMfS7O-YEGVRuo.roa (hash: xFPdoUnkz2JIkzmQ5taq1hUGjTFKvPuKX93R37CXGQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:ed:de:df:0a:fe:90:b4:92:2a:8a:66:a5:d8:b3:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: Apr 30 09:01:20 2025 GMT
Not After : May 1 09:01:20 2025 GMT
Subject: CN=1f5d6626cf80aa81aedbb3978e7e7b3d420c0220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b3:cb:cf:5e:64:95:af:7f:9c:8d:c2:c3:3d:
82:61:e4:88:45:cc:89:64:7e:d7:5d:1e:f6:d0:b1:
98:06:95:3d:22:3a:19:66:a4:91:2c:fc:26:55:71:
63:42:2c:ff:08:91:2f:d2:dc:93:77:38:68:ba:d9:
b7:82:cb:fd:92:e1:e3:be:32:a4:68:e9:b0:75:c0:
ff:41:06:f5:dc:6e:69:91:bb:7a:e5:6f:60:86:77:
88:98:de:5e:49:2d:b0:06:08:a8:09:bb:5b:2b:8e:
2a:5a:2f:7c:8c:96:41:30:63:7f:1c:c0:a0:52:23:
68:3f:f2:74:77:d8:b3:45:b7:a6:d4:59:27:0f:7b:
90:14:e5:49:82:f5:38:27:43:07:f1:5e:ed:95:b6:
91:9f:3b:86:79:db:37:c9:0d:c3:20:f3:84:a9:44:
5d:bf:ca:fd:4c:dc:31:3b:7e:24:02:a5:8e:f9:ee:
49:51:e9:b4:51:14:6a:6b:3e:05:01:8f:01:c0:08:
a4:72:db:a4:cc:46:44:04:14:0b:af:f2:b1:5a:4c:
f0:36:f3:84:22:36:fa:23:96:5f:96:52:96:98:3e:
c6:c8:f5:0f:00:b2:9d:35:6e:ae:8b:00:11:c3:00:
5d:a7:39:de:72:00:4e:a1:fb:08:85:5a:bd:62:59:
c0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5D:66:26:CF:80:AA:81:AE:DB:B3:97:8E:7E:7B:3D:42:0C:02:20
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:b3:3b:33:68:27:89:63:ea:29:e5:1e:4c:cb:89:cb:46:26:
11:cd:ac:91:8c:15:74:be:33:d9:8b:c9:21:56:56:51:14:06:
4d:8b:25:64:d7:8d:8f:8c:94:3f:7f:14:51:b1:1b:64:34:ec:
63:24:c7:24:90:e7:1a:ca:7f:49:e8:96:76:7b:f7:97:ab:17:
7f:f8:1b:5d:44:92:aa:cb:d4:45:11:20:fc:1d:d3:9e:8f:70:
1b:95:00:bc:d7:f1:f1:27:31:94:99:4a:63:ef:df:1a:a8:0d:
59:bd:56:7e:a7:5a:da:1e:c1:5c:fb:7d:44:db:d8:b4:a2:fd:
de:3a:cf:68:2f:ee:03:e3:66:02:3b:46:42:a5:60:d0:57:c7:
79:47:53:fd:32:d3:2a:ee:b4:dc:68:f3:ad:80:3c:6b:c4:40:
7a:7c:0f:5e:af:8c:92:a5:68:b8:05:e6:07:04:7c:cb:ee:cf:
19:7e:da:cc:03:6a:09:26:ef:07:b0:3f:3f:c2:2a:77:e9:7d:
b5:e5:24:e1:53:d2:89:a2:62:40:af:b2:2f:9e:e3:75:16:4d:
41:ae:6c:23:ef:75:08:f8:0d:c0:17:e5:6c:ec:45:28:81:a8:
3a:5d:24:f2:3c:22:6f:8f:fd:9c:f7:69:da:3c:89:75:4c:88:
5a:03:d8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 13:34:01 2025 by rpki-client