Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json)
Hash identifier: LfDuD62r4wVdH1eXW8qfsnrm4FX0DSvI+LLy3CWLSVc=
Subject key identifier: 9F:74:EC:FD:28:3E:91:15:39:C2:6D:5D:D3:22:CB:09:77:CA:BE:91
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 019678685FCFB2BD8E4F0600D411205A1673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
Manifest number: 1512
Signing time: Sun 27 Apr 2025 18:00:28 +0000
Manifest this update: Sun 27 Apr 2025 18:00:28 +0000
Manifest next update: Mon 28 Apr 2025 18:00:28 +0000
Files and hashes: 1: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: lkpOBvhblwU0RpJ1sh1LP/Ry2FrKYngPruyr9MNKEms=)
2: wzuPiDmhnP7Nv_Dp2QI7h5h3O-g.roa (hash: 1/0ldOLBPILSR69hThfIMtpZUKnlBM4vs1kLEHBC5Mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:5f:cf:b2:bd:8e:4f:06:00:d4:11:20:5a:16:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Apr 27 18:00:28 2025 GMT
Not After : Apr 28 18:00:28 2025 GMT
Subject: CN=9f74ecfd283e911539c26d5dd322cb0977cabe91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2e:b4:39:19:00:1e:e9:47:5d:cc:51:a2:66:
16:82:19:68:e1:a1:38:46:60:28:66:fd:93:ff:58:
ca:f7:1b:27:82:46:9b:bd:de:25:ed:7c:ce:b3:48:
2d:38:5f:89:c5:e8:c5:49:41:e6:10:3b:53:27:5b:
f6:65:b3:e9:26:8a:fb:59:b9:0e:c9:b8:37:55:6f:
f1:36:e0:a0:7b:8f:89:54:5b:5b:2a:de:9f:c8:54:
86:5d:b6:a4:c4:d8:fc:d4:41:83:01:4c:95:c8:b6:
70:71:74:86:ff:37:24:f2:29:8a:a1:8e:e4:51:eb:
a4:53:1d:91:85:78:98:29:39:41:a8:44:8b:1c:a2:
c5:8e:cc:e6:1f:d1:cc:c2:72:02:0a:17:d0:07:2d:
12:0b:88:27:fe:27:22:ca:b6:29:7e:6c:6a:a5:68:
3e:b8:9f:98:08:d9:23:ad:10:78:d1:2e:ab:9a:6a:
96:72:fd:89:90:8a:9e:9d:24:3d:4a:ae:36:a4:f4:
51:aa:62:8a:84:70:89:e8:d6:c1:ac:58:f3:e4:60:
42:7a:41:47:1f:23:cb:18:c6:a7:9d:2a:b5:3b:63:
dc:86:2d:80:a6:2a:4e:10:09:e4:d3:1d:04:47:03:
9b:f5:69:c8:3d:da:f3:15:14:07:99:fc:d8:12:3f:
9d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:74:EC:FD:28:3E:91:15:39:C2:6D:5D:D3:22:CB:09:77:CA:BE:91
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:e6:f4:97:ae:29:2e:1b:97:65:79:6f:29:a8:de:a0:99:93:
b4:af:aa:df:ea:de:c6:7e:df:30:d3:7f:bd:25:a8:3e:54:0e:
5a:a3:ad:51:62:30:88:2e:f8:88:6e:3a:73:59:df:e9:ba:8a:
a0:74:94:90:d2:6b:93:10:0f:d1:ac:c3:4b:56:1f:3e:d6:d2:
7c:b5:4c:54:91:f3:47:2b:fd:9b:06:66:f4:ca:f6:9b:d6:59:
e6:fe:df:47:c7:06:46:fb:d2:82:a9:42:20:65:6f:22:33:74:
d4:85:74:05:75:1c:69:9e:52:73:9c:ae:1b:bf:88:9e:a1:dc:
7a:ce:af:fe:8b:d6:fe:60:f1:a4:1a:cc:76:4d:dd:50:86:85:
f5:a6:d1:cd:31:e2:f2:02:91:3a:53:32:16:a1:11:d4:32:ca:
0e:d2:b0:ca:7e:bb:ef:06:71:87:63:16:3a:cf:d6:da:72:b0:
51:c7:b8:22:e2:cf:7d:0e:d2:e4:54:02:df:c8:09:87:95:93:
93:53:e8:15:a2:67:9c:51:73:29:78:65:c7:61:bd:b9:4a:94:
af:2c:f2:42:89:79:77:df:03:23:77:09:c6:72:6b:4e:90:cc:
e8:8a:4e:65:88:a6:da:c0:8b:62:4f:4a:a3:56:4a:21:bb:85:
ba:f8:b9:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:18:12 2025 by rpki-client