Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: N9vK6fp5JBHu4aXOaUj+U0pziCqEnhxsuwQK6iS0ctE=
Subject key identifier: 04:13:95:D4:6C:DE:35:2A:BD:76:95:00:E7:E9:F0:43:7C:10:B3:11
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 0196BB92623C274762485DDDDF55DA29E26D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 1533
Signing time: Sat 10 May 2025 19:00:54 +0000
Manifest this update: Sat 10 May 2025 19:00:54 +0000
Manifest next update: Sun 11 May 2025 19:00:54 +0000
Files and hashes: 1: K-YJm4wOeLJG8aJ7KI41BLWAM-4.roa (hash: +ltmXAJQfzovJoKfgWj4x9gqmeiriedONmDgSBwWFc4=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: N/G8d7tmNxSZotHTeswtBv8+R/SV972qmZArTaP5ax8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:62:3c:27:47:62:48:5d:dd:df:55:da:29:e2:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: May 10 19:00:54 2025 GMT
Not After : May 11 19:00:54 2025 GMT
Subject: CN=041395d46cde352abd769500e7e9f0437c10b311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:58:ad:01:a8:56:0c:49:7b:52:18:ce:9b:3e:
20:d2:92:59:65:a9:b5:36:ee:a7:21:44:15:77:4c:
49:cb:61:a0:f0:f2:54:91:11:59:3a:a1:38:b3:23:
a4:45:ec:b9:7a:4f:b5:a4:d8:64:3c:ad:e0:d5:a7:
91:06:df:67:5c:0f:52:99:cd:85:4e:53:c8:31:73:
9b:28:b2:d0:77:21:34:f5:e3:69:05:c5:6b:59:c6:
2a:6a:51:c2:af:f1:ef:8f:27:61:fb:c3:45:65:dd:
27:8f:bb:d2:67:8a:ea:5b:ea:b4:11:4f:6e:bf:0e:
b4:f2:cf:ea:02:2a:ff:43:3d:bf:73:4c:4e:a9:18:
2a:e6:d8:dc:5b:49:5a:f1:73:56:56:17:af:e3:dc:
df:1b:cd:64:1b:75:49:f7:27:b7:ee:60:0d:50:9d:
22:96:db:92:11:80:fa:99:56:23:08:92:86:b3:cd:
d1:c3:d7:18:9b:b8:f4:1c:d0:80:a7:38:90:20:d6:
36:bc:5c:1b:34:7e:ed:a2:dd:c7:02:84:a1:79:46:
57:64:18:66:03:fd:58:45:60:9f:3b:99:67:24:bc:
fe:13:c3:06:90:4b:20:39:12:4d:19:aa:3b:fe:15:
e8:c1:6a:69:d3:1b:35:fd:e0:f4:13:df:53:8c:54:
cf:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:13:95:D4:6C:DE:35:2A:BD:76:95:00:E7:E9:F0:43:7C:10:B3:11
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:46:71:1b:f7:61:05:02:2d:ed:d5:4d:d5:1b:fc:f7:0c:21:
d7:b8:eb:55:0d:39:7a:01:3d:98:3e:c4:15:6c:72:7c:16:b7:
37:a8:58:88:00:58:09:c4:6d:75:17:e9:d7:a7:db:49:37:00:
16:69:78:5e:df:23:32:7c:81:08:5b:14:0b:50:0e:20:5a:91:
6b:57:00:d9:30:76:e6:20:a9:e8:c6:82:af:4a:35:c3:98:0b:
e2:ed:8d:6a:75:d6:38:a0:e1:ea:b4:04:6f:f0:3a:2b:db:80:
e4:ab:19:6d:33:6c:0e:e2:e2:63:bc:22:a4:b0:35:34:4f:86:
29:d0:74:23:09:d6:20:8f:24:52:22:8e:ce:23:18:b0:d5:e3:
6a:ff:bc:3e:3a:4e:cd:db:f4:0c:79:e8:e5:02:02:dc:04:df:
9a:61:a8:72:72:22:98:00:0f:ac:8b:30:c6:5f:5f:ca:83:02:
23:1f:c9:6e:8d:25:a5:2b:11:1f:89:da:7e:f1:34:64:b0:36:
7f:27:04:a7:3d:bf:81:80:af:3b:f7:15:81:5b:03:55:1e:d5:
ec:0a:a1:21:62:e1:27:ed:8a:ee:1a:51:65:0c:6e:1a:ec:ae:
ed:0f:6e:be:0b:d1:49:32:db:ae:2f:28:64:1c:7d:f5:30:ec:
a0:11:31:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:17:49 2025 by rpki-client