Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json)
Hash identifier: gn98gQtSUGt+G/dh0qcrB7rJkgHwB2H24WzUrlIYCls=
Subject key identifier: FD:65:E4:3E:89:1A:F6:C6:62:70:C6:57:30:64:D2:CE:6E:56:A1:1C
Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3
Certificate serial: 0196748B9789A9878973B642AAB74EE754A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
Manifest number: 0DAB
Signing time: Sun 27 Apr 2025 00:00:27 +0000
Manifest this update: Sun 27 Apr 2025 00:00:27 +0000
Manifest next update: Mon 28 Apr 2025 00:00:27 +0000
Files and hashes: 1: 9Bw4s7L1PZyJ0cmK8dHggvZkyc8.roa (hash: k8G5zSf+pp8Di/1i1Rk8bBBXkqYoG95ba1/+ZDXAe1E=)
2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: fN6rndudMQK4md567pD+iuu/Duwqig2yF8Uh0aA5QSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8b:97:89:a9:87:89:73:b6:42:aa:b7:4e:e7:54:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3
Validity
Not Before: Apr 27 00:00:27 2025 GMT
Not After : Apr 28 00:00:27 2025 GMT
Subject: CN=fd65e43e891af6c66270c6573064d2ce6e56a11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:71:b4:e7:43:a1:9d:39:b9:87:a5:5a:02:a1:
58:68:f8:9f:a4:96:9b:30:79:fe:e0:e3:54:ae:43:
2c:84:2b:9b:c5:7f:dd:1d:ff:c7:cd:29:79:7a:e2:
23:6c:78:9c:5b:a5:b8:39:c1:2b:7b:a7:e2:71:45:
67:c4:ed:d6:21:be:d4:c9:56:ae:5a:69:8e:60:26:
60:24:e2:bc:c0:00:bd:55:dc:44:a1:2f:9b:70:54:
80:d2:62:37:e3:ab:d9:12:7b:1e:0c:d6:52:1e:0d:
f6:9e:f6:9d:e1:b7:34:65:bc:96:90:a4:77:4a:df:
a1:a2:d3:a2:97:3b:82:23:d3:48:8e:c6:93:28:21:
bd:96:e1:a2:3a:bd:32:4a:ee:cd:b1:c5:d8:5f:5b:
f3:bd:3e:7c:40:88:09:df:c5:c1:c8:36:15:a9:5a:
2c:c8:c6:a0:fb:44:1c:89:ff:7c:d2:01:88:c5:a3:
17:57:0e:0c:3a:0c:fa:c4:c6:4d:bd:71:58:1a:98:
e3:64:94:b5:8f:55:6e:ae:bd:52:39:82:69:7d:7b:
f6:26:7d:df:b3:48:2b:7b:d3:06:75:eb:de:d0:b5:
e5:da:f3:8f:d4:6a:6d:2c:37:e8:03:72:b7:b4:c7:
0f:74:01:c2:96:cf:8d:88:1a:b1:1f:8d:4c:7f:c4:
44:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:65:E4:3E:89:1A:F6:C6:62:70:C6:57:30:64:D2:CE:6E:56:A1:1C
X509v3 Authority Key Identifier:
keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:09:e6:8a:e3:1c:d8:49:cd:45:e3:29:6c:d3:5f:40:9d:eb:
be:f0:c7:d3:25:0f:54:42:13:52:5d:c0:e5:32:df:16:9b:93:
5e:d1:30:95:8d:bc:7f:94:f0:ed:38:9e:76:40:15:0a:79:f6:
fc:69:1d:bd:0c:07:68:66:69:a8:6a:a5:46:48:a6:58:57:a7:
90:66:21:6b:76:7d:dd:7f:8b:cf:42:35:df:ba:08:60:98:3d:
7c:91:9d:5f:46:95:df:ff:cb:af:38:dc:58:57:5f:e8:5d:1b:
ea:89:e9:fc:aa:cd:e5:36:c4:13:d2:bc:cc:99:63:64:c2:ad:
28:e5:15:40:28:1b:e0:34:6e:eb:c8:88:d1:a3:42:0c:1e:26:
75:23:d1:08:10:c9:6e:de:de:f7:37:b2:67:88:99:eb:36:a4:
09:b0:78:6f:41:3d:89:c2:5a:5e:67:a5:99:75:c2:74:a3:91:
52:a0:79:3a:28:c3:99:4c:00:7c:1d:57:66:de:32:d4:af:a2:
53:8e:15:21:17:72:85:f8:d3:3b:55:49:ff:8e:56:8e:95:2b:
37:94:49:2d:56:93:cb:3c:4c:88:7f:f9:b5:c8:f5:62:e1:19:
cf:bc:c9:2e:00:a5:54:cd:b6:4f:0e:5a:da:b6:f5:6b:f4:86:
78:0a:07:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:50:32 2025 by rpki-client