Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
File: KfFNQRwg7PxJYhX82w9D2EchkJY.mft (raw, json)
Hash identifier: yTviEg5sGub099TC81ZEcsUvjb3D2Dkdcw2chQ2a6wM=
Subject key identifier: 20:4A:A7:4F:9B:55:2D:30:3E:FB:EB:EF:42:6F:B7:FE:F1:2E:39:8B
Authority key identifier: 29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
Certificate issuer: /CN=29f14d411c20ecfc496215fcdb0f43d847219096
Certificate serial: 0196CB051CC9882D906FDAAA9A3109CE7726
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
Manifest number: 11CE
Signing time: Tue 13 May 2025 19:00:31 +0000
Manifest this update: Tue 13 May 2025 19:00:31 +0000
Manifest next update: Wed 14 May 2025 19:00:31 +0000
Files and hashes: 1: K3k_GCXnaMv59dLKq-rHfPOR6HE.roa (hash: 5Q6jyJMRb9gad/mJLct+/fYWsLJ0GiEE1wJJESuoLsM=)
2: KfFNQRwg7PxJYhX82w9D2EchkJY.crl (hash: XJYBAYnbKvPthuLkhjH2BnSAuSp11/YubqLBX91T050=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 19:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:05:1c:c9:88:2d:90:6f:da:aa:9a:31:09:ce:77:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f14d411c20ecfc496215fcdb0f43d847219096
Validity
Not Before: May 13 19:00:31 2025 GMT
Not After : May 14 19:00:31 2025 GMT
Subject: CN=204aa74f9b552d303efbebef426fb7fef12e398b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8b:50:96:dd:e5:d3:f5:b0:a3:8e:23:73:ad:
3f:fa:c5:f4:4a:7a:3b:cc:6e:ec:84:29:f6:c6:cf:
37:7c:08:f4:21:8f:b2:8e:a6:aa:a0:b7:43:d7:09:
e5:22:78:94:80:c1:ae:e2:5e:00:8d:d5:01:65:98:
bd:df:74:df:6d:b7:4d:3f:42:69:8e:81:50:a2:d4:
9e:03:1c:66:35:2a:6d:3e:bf:e6:2d:4e:a1:03:c6:
24:2c:5c:15:d9:76:81:65:b1:79:36:e6:02:73:00:
6d:95:44:37:0e:ac:1f:9e:33:96:fb:fe:e4:c7:c4:
77:23:10:b6:cb:7b:9c:d3:8f:11:82:39:30:1a:d5:
e3:5f:37:60:b6:f8:5b:f4:16:38:1d:6d:16:2e:de:
bc:04:2d:91:9f:26:63:eb:d3:50:8f:dd:db:2e:7d:
f3:bc:56:69:43:98:22:65:31:c3:51:dd:34:b4:77:
ab:0d:76:d8:8f:ba:e7:6c:46:f1:a2:0b:00:75:88:
fd:4f:5d:d8:fc:f0:18:8a:5b:20:4a:62:d1:98:01:
32:8e:eb:f2:c9:33:f7:49:50:a9:23:77:2c:65:4e:
95:3f:2b:09:c3:ba:2a:2f:50:a4:0e:c4:72:e3:9d:
99:dd:7f:f5:da:c7:89:f1:e3:af:c8:33:3b:89:e3:
3a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4A:A7:4F:9B:55:2D:30:3E:FB:EB:EF:42:6F:B7:FE:F1:2E:39:8B
X509v3 Authority Key Identifier:
keyid:29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:e1:22:7f:f4:99:6f:0e:b1:0b:b8:e8:e4:da:59:3d:5c:b1:
5c:da:e9:31:c6:7b:15:9d:de:96:ff:3c:b7:6b:9f:40:5d:7d:
9f:5c:fd:ae:e5:45:12:dc:b1:b9:a6:b3:8c:be:16:dc:71:10:
64:f9:4b:32:8f:c6:29:76:51:2e:d2:63:73:2b:72:67:d5:64:
a9:ab:57:bc:7b:7c:de:b6:5e:f6:a2:30:dc:51:6c:89:74:53:
14:9c:f2:61:d6:b1:2e:a7:3e:ef:f5:1a:c4:79:44:b3:ca:8a:
67:ea:8f:36:49:b8:77:79:f7:a1:77:39:f7:d0:3e:c1:b3:fd:
ad:61:26:e1:91:fc:a5:6f:d4:bf:e6:f3:f7:66:d8:c0:71:14:
6b:e8:5f:ef:91:34:72:6d:eb:33:1a:23:73:39:6a:ca:6f:0d:
3b:5b:00:dc:76:d8:4d:75:cd:9b:3e:dd:5e:3e:42:18:d5:b7:
e9:f2:d3:04:d0:27:c2:d1:bd:b2:cf:83:80:a7:a7:63:1e:f2:
5b:f3:94:4b:92:a8:ea:bc:5a:48:ed:70:34:35:8d:10:14:ea:
93:e1:5f:7d:23:66:2d:20:93:ed:af:0e:2d:0f:e5:3d:f3:14:
3f:3b:20:de:0c:89:75:ae:58:62:78:7a:35:b8:0c:e9:a2:08:
95:01:e5:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 05:03:41 2025 by rpki-client