Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: USu6OrKK9gDlcNQau+o0AMPLxD2L/+12GT2AG3r94fU=
Subject key identifier: 16:F0:1D:17:C0:04:F2:8C:CC:DC:19:F9:53:1E:E1:DA:BA:EA:B4:CA
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 0196760C4AFFC169ED4DF3A5F5907436C089
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 0428
Signing time: Sun 27 Apr 2025 07:00:39 +0000
Manifest this update: Sun 27 Apr 2025 07:00:39 +0000
Manifest next update: Mon 28 Apr 2025 07:00:39 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: OEzizdWQ/TclKpSlp1kF45Yun4zE2V5xOjE5uJD+8r8=)
2: N3FIvLoAi-SrbWKri-QxAJXERl0.roa (hash: oePUnAR/4Fy7x02aEJQp05kRfdkIvxnqMAYzYP5D1B0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:4a:ff:c1:69:ed:4d:f3:a5:f5:90:74:36:c0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Apr 27 07:00:39 2025 GMT
Not After : Apr 28 07:00:39 2025 GMT
Subject: CN=16f01d17c004f28cccdc19f9531ee1dabaeab4ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3d:5d:0d:40:ca:f2:28:17:66:93:48:da:a9:
ab:87:f6:11:3d:64:cb:8a:0e:51:96:1d:5c:c4:b6:
24:b3:fc:f7:37:1c:4d:bc:d7:35:d4:c2:54:ee:c1:
4a:12:75:b5:41:f6:4f:fb:5c:41:93:68:22:c0:42:
6e:bb:85:9f:3e:d2:73:e3:00:80:57:1e:f5:bb:14:
21:46:2b:77:e9:f2:2e:c8:98:21:36:f6:6c:41:a0:
b0:f0:fc:2b:6e:e7:31:4a:ce:b4:4a:3d:db:1c:d1:
12:88:ce:f8:58:b3:38:3b:49:ff:ce:bb:0e:5d:5e:
9d:f7:b8:b6:cb:d3:69:14:d7:d3:7c:71:d4:ff:4c:
f5:ea:ae:8d:c7:8d:a7:e0:94:64:33:ad:3a:47:91:
12:3d:bd:b7:68:fc:c5:22:d6:30:20:10:aa:7b:cf:
31:29:7b:01:a9:79:a2:12:35:6d:7f:0e:a2:67:cb:
7b:0d:66:bd:b1:a7:75:58:01:93:0d:0d:3c:8e:0a:
3d:45:9a:44:83:e3:85:0d:e0:9c:11:39:81:83:a8:
8a:32:6c:70:f3:c7:4a:61:e5:88:75:03:45:87:49:
3d:19:89:e7:80:cb:b2:28:55:aa:28:b7:3e:a8:46:
dd:b3:ac:cb:33:7f:6e:c2:90:b2:ad:dc:e2:2e:6e:
19:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F0:1D:17:C0:04:F2:8C:CC:DC:19:F9:53:1E:E1:DA:BA:EA:B4:CA
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:ad:6d:f3:17:14:ec:40:4d:0c:da:9f:b2:02:44:a0:e8:71:
ab:e2:1c:2d:1b:4c:7c:69:ea:0c:bf:fd:fb:11:26:18:d3:e7:
f5:1e:f4:8f:61:24:e0:bc:72:7a:b0:6c:79:ce:20:b5:29:b1:
5c:97:0f:53:45:b8:a4:b0:f0:b5:fd:68:74:bd:1f:d6:f2:8b:
c3:78:7f:55:e3:b3:d5:61:b0:92:4a:0e:ca:74:65:54:d0:e9:
40:58:b1:ad:dc:96:7f:80:5e:c6:30:21:73:6f:bb:7a:0b:dd:
03:cf:23:e7:d9:d9:01:78:10:42:d7:9b:f5:c8:6b:8b:bf:32:
d4:75:44:10:56:2f:c2:d2:ff:95:77:a7:84:f9:20:08:1e:79:
80:a4:7c:05:eb:1e:d1:67:bc:8c:ca:a3:fb:53:62:82:04:a5:
93:b1:f9:eb:61:7c:59:ed:1c:ce:4a:71:f9:91:af:d1:be:dd:
41:91:5e:d0:81:fa:05:d7:dd:fc:a8:1f:f2:3c:ff:3f:d7:e1:
1a:e7:33:ff:3d:35:ca:14:87:f2:ab:1c:c9:c9:46:ad:09:41:
69:20:8a:e4:7f:26:ac:68:08:f2:ff:d0:b9:7d:de:15:1a:c5:
e7:4d:45:f9:dc:d8:d4:ee:34:4f:da:f7:af:20:06:0f:70:4f:
aa:7a:3f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:39:31 2025 by rpki-client