Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: 6Tp8VZMZSvCaSC3aiyldJUps7l1eZ5u0YcFBTNNtWJU=
Subject key identifier: 7C:CC:B1:87:19:6F:39:6C:8F:3B:17:20:6E:C2:73:12:CB:9B:B2:57
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 0196C0B8AD501F6377765026F94F32E2664D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 1537
Signing time: Sun 11 May 2025 19:00:50 +0000
Manifest this update: Sun 11 May 2025 19:00:50 +0000
Manifest next update: Mon 12 May 2025 19:00:50 +0000
Files and hashes: 1: C5Gcuv2gc5uFwke_GvIiYxRqvf4.roa (hash: aAHqvnwWD8oItQ342R5b0KuB97GMKDOjFhJ8IpWVibI=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: Xlr/PFEP1TJsOUSFExzAidyPlvbMYvIij12VnSd94X4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:ad:50:1f:63:77:76:50:26:f9:4f:32:e2:66:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: May 11 19:00:50 2025 GMT
Not After : May 12 19:00:50 2025 GMT
Subject: CN=7cccb187196f396c8f3b17206ec27312cb9bb257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ee:c5:3f:58:a2:35:33:61:41:65:7c:5f:66:
71:5c:da:62:a2:90:23:4f:a3:02:9a:8a:99:f8:b3:
43:5d:b8:0d:16:36:62:f3:d0:c5:98:74:7a:f9:63:
0d:43:dc:40:11:6b:ad:54:14:b4:ba:6d:90:f4:f8:
c0:a1:51:1d:9c:a5:f5:72:e0:94:7d:9f:c8:10:32:
21:df:22:01:99:b6:ef:03:43:09:3b:31:8f:de:19:
c4:e9:90:30:14:00:3a:f2:b5:9b:46:fd:ed:84:ad:
fe:7d:12:a2:d9:d1:a1:a2:a3:a9:e5:5b:82:08:f3:
0b:16:11:ce:9a:3c:08:f1:a0:3e:d7:8e:b2:ca:a3:
b6:9c:1c:b8:6f:6a:6c:64:84:c7:b7:19:94:bb:a1:
3c:67:b6:85:b3:06:a1:bf:e2:de:fe:43:c6:e8:dc:
d9:dd:de:5e:58:26:56:65:81:ea:db:29:6e:10:8a:
45:7b:b8:60:b1:6a:ad:f4:43:6a:ba:fb:33:23:a6:
c5:0f:55:2a:ea:21:72:97:ec:3f:86:6a:b0:9f:65:
1e:a0:16:0f:13:b2:27:ea:8d:ac:0e:b9:02:34:fb:
93:8b:4b:8b:be:31:f7:81:1a:e5:53:ef:20:bf:31:
ed:f4:d7:e0:14:03:6d:58:48:80:67:43:17:b0:84:
bb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:CC:B1:87:19:6F:39:6C:8F:3B:17:20:6E:C2:73:12:CB:9B:B2:57
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:b5:49:83:be:8a:ed:c2:9a:af:7b:06:01:79:a9:09:0b:cc:
22:a4:29:4a:58:bb:0b:23:86:4c:08:03:ee:a0:36:34:0d:db:
6a:41:70:e7:96:ae:c1:7c:38:5f:00:19:b7:39:50:6a:69:d5:
97:db:f8:a9:b6:eb:33:27:83:68:f8:62:45:7d:75:21:74:1d:
45:e9:25:c5:1e:20:6f:3d:06:19:84:4c:3f:0e:85:c9:d0:fe:
0c:d4:e5:a2:12:56:11:d1:a3:f6:c3:88:aa:6f:18:81:76:51:
51:db:c6:79:f2:5a:e9:60:15:40:8c:41:3f:c8:07:89:13:d8:
42:6c:df:14:1a:8a:c7:b5:0b:7c:55:55:d4:c3:9c:78:c9:fc:
2b:62:e5:7a:09:79:85:13:84:e2:57:f9:ab:1c:04:d5:5f:95:
ea:1c:69:5d:31:f4:2f:c2:3f:0d:5e:ee:b8:43:b4:8d:06:6e:
7b:6c:e6:6e:65:62:70:9a:a5:19:b5:b6:9e:32:18:d4:84:63:
e9:81:6c:fa:89:b5:9c:fa:55:0f:91:1a:17:c3:88:6d:eb:91:
ab:fe:5f:21:c2:48:e4:e4:22:c1:1e:8f:44:19:09:9c:73:7d:
57:0f:05:67:9f:a7:bd:c2:07:0a:3c:58:d7:1a:ed:ad:c6:bf:
27:e7:5d:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 20:26:13 2025 by rpki-client