Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
File: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft (raw, json)
Hash identifier: OTmf6ZsOSTm4LDkhy+BJ7BAEnacL2/bC3mNwGI9Txc8=
Subject key identifier: 00:8A:69:40:98:D3:92:B1:0A:3C:24:88:8B:4F:27:FA:48:AB:0C:C1
Authority key identifier: 29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
Certificate issuer: /CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Certificate serial: 01967868797BCA7319FA5020F8DE279E037E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
Manifest number: E2
Signing time: Sun 27 Apr 2025 18:00:34 +0000
Manifest this update: Sun 27 Apr 2025 18:00:34 +0000
Manifest next update: Mon 28 Apr 2025 18:00:34 +0000
Files and hashes: 1: HCnZ4QlNrjo4-1ShjXI6eoqgF7Q.roa (hash: RVcqorqVBH1UK65HrDodp8HEtA0dkfr8CZIvgxvJk/w=)
2: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl (hash: rEKJQYRtgtd4i0u5oKFBClttOMYo6sKSRRPI1Nml0q0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:79:7b:ca:73:19:fa:50:20:f8:de:27:9e:03:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Validity
Not Before: Apr 27 18:00:34 2025 GMT
Not After : Apr 28 18:00:34 2025 GMT
Subject: CN=008a694098d392b10a3c24888b4f27fa48ab0cc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:90:de:cd:cc:88:5d:6b:90:49:02:5b:b3:8f:
e8:33:7c:f1:52:28:2c:e9:11:fd:82:fa:61:d0:ab:
75:c5:e9:9c:46:5e:c7:4e:b9:d8:32:90:98:22:d9:
f9:7a:05:16:0d:b0:78:a1:3a:34:86:a9:11:23:20:
05:c2:6f:58:26:5c:3b:2e:81:0e:90:49:f6:07:28:
c3:fd:ac:97:c1:6e:53:9a:2f:a6:74:28:07:2c:4a:
5b:e8:c2:c0:d6:ae:3c:c0:23:bc:87:99:b2:7d:fd:
52:96:ee:e6:8b:71:8e:76:4a:5e:16:46:12:a1:80:
6f:bc:68:e3:69:12:1e:38:da:6c:9d:7c:47:e0:d1:
3c:86:53:09:6d:35:ce:93:0c:a3:6d:f4:10:05:eb:
c9:0c:38:35:a7:c7:4e:4f:35:71:ff:17:20:0b:9f:
14:0e:dd:15:ef:99:18:66:0c:03:9a:30:2e:d1:37:
e4:20:d3:d3:55:4b:ea:bd:45:e4:d1:7c:22:e2:70:
6e:a1:3d:82:fc:23:27:9a:74:34:fd:03:a2:a4:7b:
dd:b2:e8:41:5c:aa:d3:07:9e:42:2d:e2:6b:5a:c8:
48:77:dd:29:25:d0:ee:65:d4:88:f2:3b:cf:7d:5f:
af:3b:26:4b:34:d8:ed:5a:09:b3:ab:6c:6a:7b:00:
55:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8A:69:40:98:D3:92:B1:0A:3C:24:88:8B:4F:27:FA:48:AB:0C:C1
X509v3 Authority Key Identifier:
keyid:29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:78:0a:a3:e3:db:85:0e:18:23:fe:ab:e0:06:bc:95:90:ec:
62:67:52:69:16:50:42:c9:f8:ed:e8:57:2c:9f:3d:ae:c5:58:
c4:a7:e6:2c:64:33:56:88:15:2c:cb:70:f9:b9:d6:37:c5:74:
b4:80:b2:44:0c:ce:5d:56:fc:ee:49:a0:95:1a:8d:30:ca:5f:
45:fe:88:aa:f5:e3:af:15:76:6e:4c:be:1c:a3:35:94:ba:ef:
37:c0:24:05:74:1d:8f:a2:cb:3c:13:d4:2d:f7:10:6c:46:ab:
50:1c:27:5c:ed:bf:4f:17:a4:8a:4e:42:23:a4:bd:17:e3:3b:
2a:3b:26:f4:44:b1:01:bd:0e:2a:78:b1:e2:ef:12:80:de:bc:
71:7d:d1:de:23:02:cd:9d:27:7f:a2:dd:95:71:7d:8f:3a:6b:
58:da:56:85:77:e7:b3:03:4b:4b:b6:c9:fa:39:23:8a:6c:cf:
d0:c5:51:ce:89:a1:65:20:ec:11:d7:59:a0:e4:80:52:46:18:
58:49:1b:1f:b9:09:e1:8e:40:cc:bb:8a:d8:7b:7b:d8:a7:41:
85:fd:13:84:f6:3a:55:48:d1:e9:74:54:7e:d5:fd:63:09:72:
4a:08:95:29:a6:bf:8c:02:8e:30:1e:87:4c:84:fc:bd:4b:d3:
38:84:49:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:50:24 2025 by rpki-client