Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
File: kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft (raw, json)
Hash identifier: 1/H2IRAMuBm1yRsx2/yXakz/PygNckGt4JMjp6kXHXY=
Subject key identifier: 55:DE:12:AE:54:E9:72:F7:96:9A:9F:54:3F:E9:A1:D4:77:59:86:10
Authority key identifier: 91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE
Certificate issuer: /CN=91188ca64c4670a6eb56b42a50a10588ad9647ee
Certificate serial: 01969FAD1B44A67B23947DE20058347CB7C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
Manifest number: 09B8
Signing time: Mon 05 May 2025 09:00:44 +0000
Manifest this update: Mon 05 May 2025 09:00:44 +0000
Manifest next update: Tue 06 May 2025 09:00:44 +0000
Files and hashes: 1: JyQo8VWrljsbu7fdBUyCLnp2fRo.roa (hash: PYNlAKDVxyxJWLdDPpsz5WMXt3MO3ZloO8y7DclxK3I=)
2: kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl (hash: B60XCb/MuS5sm23Gw2BGqy0e3ErH1oaupXXA4hMqraA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 09:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:ad:1b:44:a6:7b:23:94:7d:e2:00:58:34:7c:b7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91188ca64c4670a6eb56b42a50a10588ad9647ee
Validity
Not Before: May 5 09:00:44 2025 GMT
Not After : May 6 09:00:44 2025 GMT
Subject: CN=55de12ae54e972f7969a9f543fe9a1d477598610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:57:ab:56:66:c0:97:9a:8d:aa:61:f3:a9:39:
d5:3d:11:25:7a:66:d8:62:bf:e7:0b:df:21:d7:af:
a4:ae:ef:ef:0d:e5:83:ad:32:8f:70:47:8f:86:27:
c2:36:96:b0:d1:1c:22:3e:10:fb:e7:f5:82:c9:b0:
76:65:86:e9:2a:1c:d9:c3:ec:87:8b:b7:b4:f6:59:
c6:bd:3f:bd:da:2b:32:76:66:f3:14:ed:f1:70:f4:
df:1b:93:3b:89:2a:0f:b7:37:5e:a5:69:6e:40:09:
59:36:71:5a:bf:06:20:7a:f0:2b:2d:b7:50:1d:14:
ce:12:d8:f6:7c:8f:14:d4:1b:11:44:10:16:07:8f:
37:0a:85:3c:f6:f1:0a:5e:4c:dd:20:b5:c2:f1:c8:
12:c3:00:b0:9f:9e:df:3f:3c:04:1c:97:a5:b7:e3:
b6:7b:7e:e5:a6:18:d3:3d:b0:ce:4a:bb:f9:f6:0c:
34:eb:f8:02:57:2b:e2:3f:6a:84:24:16:55:1c:b4:
c3:9b:3a:fb:cd:78:e4:b6:8d:47:84:f6:b1:c2:fd:
fa:aa:10:1d:82:ae:9c:0f:fe:08:11:d4:04:1a:32:
5b:11:71:85:1c:fe:ce:d9:3f:b1:40:cf:e7:42:02:
79:75:7e:e9:e9:6b:e4:67:7a:fc:6f:a9:22:6b:63:
9b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:DE:12:AE:54:E9:72:F7:96:9A:9F:54:3F:E9:A1:D4:77:59:86:10
X509v3 Authority Key Identifier:
keyid:91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f3:e7:5a:14:53:21:84:f6:c4:75:e7:ee:d5:6c:2e:f3:bd:
2d:36:15:62:87:b6:8f:43:7f:ea:c5:8d:39:59:48:63:0c:33:
27:1d:eb:61:e1:e9:78:7c:ae:3b:5c:a1:a8:cb:df:d4:38:f3:
f7:00:0c:a7:31:4e:9a:d7:68:1a:39:fb:52:77:70:10:96:da:
fa:18:79:a3:ab:23:79:dc:cb:a3:55:38:09:11:65:10:4b:3c:
f2:12:cb:31:dc:f1:23:8c:0a:57:3d:d5:e3:2d:77:dd:61:33:
32:29:85:c4:07:f3:f5:07:d4:99:f1:6a:be:3e:45:5d:6a:aa:
2a:06:e7:ea:5e:be:42:18:65:df:39:99:b5:4a:b9:89:2d:91:
db:54:04:78:c9:98:a4:f9:cc:e2:3c:99:d4:58:57:a4:2e:34:
72:c5:0c:1d:43:57:02:16:c8:79:86:86:d8:30:c7:45:3d:d6:
6f:d1:90:62:cc:e8:34:c0:e6:0f:8a:44:4e:0f:83:0f:9d:13:
8c:5b:af:e0:b0:56:c1:fc:97:52:58:68:5a:5e:d5:51:c5:96:
e3:ca:ae:6e:3e:86:a6:f3:eb:ca:5d:cf:6b:6c:ed:60:48:cb:
f6:d0:df:b4:8d:e6:e8:ce:88:ab:60:74:9c:84:b3:a8:ba:f1:
a0:cd:1b:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 17:03:00 2025 by rpki-client