Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
File: KXNk9QJTTodxoMYll5TCbibUvKQ.mft (raw, json)
Hash identifier: f99/46cFWAKQPco2dHFXRLafdMI5BT6DTi2AYoFgxaQ=
Subject key identifier: 4D:8C:89:00:00:3F:22:FD:AD:CF:40:00:D8:96:C7:73:F9:C6:BF:14
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 0196BD496CFB0EDD983A8160A96642B1EFAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
Manifest number: 139F
Signing time: Sun 11 May 2025 03:00:27 +0000
Manifest this update: Sun 11 May 2025 03:00:27 +0000
Manifest next update: Mon 12 May 2025 03:00:27 +0000
Files and hashes: 1: 2Cp_JC-1gSdENPjM_UWn9lNVG7o.roa (hash: +35xjqek9Nhlc/Z0+VDCYx/DAJw10REdvRuvu6t5M3s=)
2: 30p15OIB4xzHle9tD78XYhbRDYI.roa (hash: 9HVb43mRInURyExw74+VWFanW5TCiRHL7zKkRNQfWwc=)
3: 46l3zcDNK_2V63AreaLMsQrAgaE.roa (hash: yY63fb353nPGfB15WkNs5SfqIg+XAt04c2yklxwzqUk=)
4: DrQJgIgCadGbo__38qvLm4f2buQ.roa (hash: Wx23py7fw++y8qecqXEe1C97qUaOVg6INU3OjKvg+YE=)
5: KXNk9QJTTodxoMYll5TCbibUvKQ.crl (hash: I5lPM9tKSyWsBoqAge70iB+oVAP/iOkISqg5cXEvYfk=)
6: Kc-1Z4R9k1b9QbprK1lrnIRFuzo.roa (hash: mIf5b4mKVeZgEr7VsdotpcNIdYch/DFkBdwgO8kit9A=)
7: lTAav4yQpZ87qw_zIchzIsq-5gM.roa (hash: 3b9+qDTSwpfJP/SrqHspJoxR/TN3seQEWvBLhEVGMW0=)
8: x8RX4rKBNmZcMpsvt4Nm7APSjAM.roa (hash: zc30VoGi96Z1iHoOnbaFFXszAPpJE3UJpyJWRy15Byo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 03:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:49:6c:fb:0e:dd:98:3a:81:60:a9:66:42:b1:ef:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: May 11 03:00:27 2025 GMT
Not After : May 12 03:00:27 2025 GMT
Subject: CN=4d8c8900003f22fdadcf4000d896c773f9c6bf14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:6d:b5:7d:f6:34:ff:03:59:f3:b1:94:17:44:
b1:47:ce:37:1f:a1:fb:92:0d:05:7f:15:25:c1:7c:
e6:4f:0c:b2:bc:87:97:41:53:4e:2a:5a:7a:9d:09:
e6:4f:4a:92:f6:29:39:98:40:5c:a2:35:96:73:83:
16:10:7c:73:a0:2f:56:5c:47:76:32:46:bc:a0:cf:
5b:f2:7f:e2:df:7f:62:dd:76:2d:21:80:be:99:90:
22:35:e4:e2:94:f4:98:f7:23:55:36:1d:fe:f9:18:
1c:73:b0:d7:b0:8c:a9:7d:91:63:07:eb:7e:a8:ec:
98:9b:5e:58:26:34:55:77:e4:53:c3:58:2f:55:e9:
1e:8e:49:c0:46:de:7f:fd:22:f7:b7:6c:e9:90:fd:
f2:25:96:62:47:eb:d3:5c:78:51:19:fa:eb:6b:a4:
fb:01:25:c0:48:00:52:0c:88:08:ce:d8:f4:a8:da:
7a:bd:1f:98:1c:51:b6:c1:0f:c5:46:2e:af:79:f0:
e7:5c:d0:72:8f:11:46:ac:e6:29:28:bb:bd:99:20:
df:89:5a:cc:99:54:a7:7d:77:ea:3d:43:1b:6d:b9:
a1:a5:2f:c7:2c:98:b0:2f:cc:1f:7c:ba:57:18:e1:
33:06:55:c4:a3:2c:53:fc:6f:87:40:ef:1c:66:4e:
e8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8C:89:00:00:3F:22:FD:AD:CF:40:00:D8:96:C7:73:F9:C6:BF:14
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:83:9a:e8:50:c0:7c:69:91:3e:39:50:8e:15:b1:b8:67:58:
63:84:87:25:00:19:96:dd:b4:1d:e8:17:96:3c:73:75:66:f6:
97:83:29:69:f3:bf:7c:69:94:f0:66:40:67:45:18:33:42:62:
6e:00:45:25:67:6f:63:5f:54:f1:78:06:11:fd:bc:2d:8d:18:
26:a6:6e:b4:e8:ac:aa:09:51:63:a5:f4:0b:72:49:e1:57:8c:
4b:6e:e3:f8:74:b5:72:99:50:b3:ea:10:f6:c3:fc:b1:49:53:
7c:5c:32:74:a5:ca:12:79:8b:4d:13:41:4d:8c:02:2f:ed:20:
9f:ab:c0:59:ff:0b:37:e6:4a:a2:b2:35:78:07:30:7d:9e:b1:
00:7d:0d:e3:5b:94:f3:70:ec:13:26:70:ea:08:21:b5:ea:a9:
4c:cd:ee:6e:2f:8a:c6:58:ab:12:47:91:21:24:e0:ff:5b:2a:
db:ec:29:de:fc:e2:49:33:ff:f3:3f:1c:8e:fb:ed:62:12:6d:
51:36:f2:49:e9:8c:50:e5:66:40:f8:ce:ea:b0:18:e5:21:f9:
cd:af:95:90:66:80:ad:06:1b:cd:88:5a:f1:d5:05:d8:b2:24:
28:b9:00:d2:eb:16:45:3e:9b:4d:17:73:d1:73:d9:d3:f7:e4:
ff:bb:04:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:43:58 2025 by rpki-client