Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
File: kLCsKbEI83Ixb79OqT4UhzGkxOk.mft (raw, json)
Hash identifier: s2ZT870L5LqctLNNCn2JK6MS8t3Wt7olXNNN5quGRLo=
Subject key identifier: DD:1E:FA:38:EC:7B:B9:BE:54:FE:16:AB:E7:16:A9:3D:71:E9:A7:10
Authority key identifier: 90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
Certificate issuer: /CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Certificate serial: 019677C3CC9B03247F936C69766D780332F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
Manifest number: 1513
Signing time: Sun 27 Apr 2025 15:00:42 +0000
Manifest this update: Sun 27 Apr 2025 15:00:42 +0000
Manifest next update: Mon 28 Apr 2025 15:00:42 +0000
Files and hashes: 1: E7tuzODCvj1Y4rQf0ix9lEI7vNs.roa (hash: 7tjdPPhW07eifJoW12vu1rvxuuaPJc8oBZTFD5/C/EY=)
2: kLCsKbEI83Ixb79OqT4UhzGkxOk.crl (hash: wgNZBNmBv55GQEMBJSPHIr//GFGShnOuTL+44UIHW0g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:c3:cc:9b:03:24:7f:93:6c:69:76:6d:78:03:32:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Validity
Not Before: Apr 27 15:00:42 2025 GMT
Not After : Apr 28 15:00:42 2025 GMT
Subject: CN=dd1efa38ec7bb9be54fe16abe716a93d71e9a710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:61:d4:7e:5a:c0:db:36:60:c1:19:71:b5:5e:
c7:df:9e:55:83:ac:06:d1:13:00:21:08:c9:fd:19:
68:25:94:e0:d0:ee:48:fe:52:0d:2c:94:70:22:1b:
cb:a3:de:33:79:e4:87:12:b9:44:e2:43:13:61:91:
ba:c2:fb:e8:b1:25:44:0b:5f:c8:af:e6:ed:e8:b9:
e9:85:88:5e:28:18:a1:c9:e5:5f:18:1a:b4:4c:3e:
4f:24:b0:3f:d6:79:7c:75:86:2f:48:ba:2e:81:1d:
c5:79:c9:b2:fd:86:52:3a:6d:71:45:40:58:91:7a:
b6:06:ec:db:91:78:61:f1:a0:bd:9d:cd:2c:55:61:
e7:fa:f2:3d:8b:31:94:fd:57:df:66:1e:5d:14:d3:
07:5a:70:22:40:fb:56:ea:64:b1:43:c2:cb:0e:58:
dd:05:7d:d6:98:c7:5c:45:0c:e6:2e:02:44:b3:ce:
42:0e:a2:1e:a8:77:16:af:55:30:85:ee:4e:00:b4:
65:0c:58:08:d3:de:d1:02:55:d1:3d:5f:12:8b:1a:
90:d2:64:09:49:f7:75:fb:ab:25:a4:a3:5c:fa:1d:
3e:17:ca:fc:e9:f2:a5:9e:32:83:88:d3:43:9a:06:
b2:bb:ed:48:ad:3f:7c:f8:26:ab:69:e1:92:2d:0f:
32:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1E:FA:38:EC:7B:B9:BE:54:FE:16:AB:E7:16:A9:3D:71:E9:A7:10
X509v3 Authority Key Identifier:
keyid:90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:ae:b1:50:5e:30:43:f6:e5:ea:9d:96:0e:c0:dd:2a:c6:9c:
e4:18:04:44:e0:d3:6d:13:54:02:77:de:97:1c:bb:65:a8:8e:
61:e2:c6:48:37:fa:b7:ca:96:b2:6d:7d:e6:91:80:c8:af:81:
6d:f3:f8:e0:90:7e:23:57:30:6d:b3:31:7c:0c:ce:d9:56:24:
ea:33:32:9c:7e:be:68:db:30:87:93:13:70:81:09:db:65:68:
a0:a7:da:0b:e8:95:70:e7:2f:4b:39:03:a3:91:f7:03:51:c7:
b0:0a:dd:5e:70:fe:4e:68:94:d0:c6:49:bb:e7:9b:9e:d3:b1:
a6:07:f4:b5:9e:92:28:4d:07:10:64:46:53:94:75:b1:b3:9c:
f4:1a:1d:e2:a9:79:ec:88:c9:68:02:64:fd:10:5d:43:5a:8a:
c6:e7:e7:6e:d5:a6:da:87:8c:77:24:ee:8b:e6:cc:04:c1:8d:
9d:c5:09:b3:cd:ed:cf:25:54:24:01:f7:1b:bf:04:85:9e:ac:
25:d7:3a:90:3f:a5:36:10:02:10:63:e4:93:8a:9e:37:e3:2a:
e4:b9:60:ce:63:da:a0:c8:73:0f:44:02:d5:81:7b:d9:e8:eb:
5a:76:28:ac:d9:11:5c:d8:98:c5:33:a9:74:b7:c4:59:81:51:
6d:f4:8c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:04:06 2025 by rpki-client