Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: 4tASNtapfziTPsUazYWbiVaGhQY/vHUt7WaIgPKq/4k=
Subject key identifier: 49:F5:B1:5D:2D:6B:B8:27:D0:A1:42:7C:B7:55:FF:B5:21:12:64:FC
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 01969D5136E38B7FEDAEB13F847E7A8B26C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0931
Signing time: Sun 04 May 2025 22:01:07 +0000
Manifest this update: Sun 04 May 2025 22:01:07 +0000
Manifest next update: Mon 05 May 2025 22:01:07 +0000
Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: hMlHFr4P/D5/apgLweOcluicm1ig+ryN5OS67r7q44w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:51:36:e3:8b:7f:ed:ae:b1:3f:84:7e:7a:8b:26:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: May 4 22:01:07 2025 GMT
Not After : May 5 22:01:07 2025 GMT
Subject: CN=49f5b15d2d6bb827d0a1427cb755ffb5211264fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:c3:ff:4a:90:51:1d:f9:4a:98:2d:cd:aa:
97:3c:8c:22:d8:39:23:93:c2:e5:2d:21:d2:8a:8a:
75:c5:ad:f3:58:64:b9:4c:8d:1f:2b:76:59:7e:4e:
f0:0e:88:e6:9c:86:c5:24:f7:36:36:98:e8:9d:71:
51:f6:9f:9b:aa:a3:ae:a8:3b:ea:28:aa:7d:44:c9:
88:0a:5a:a0:23:36:a5:16:ab:02:62:12:9e:f4:ca:
01:52:2d:38:69:98:59:9b:95:cb:cc:13:73:bb:4b:
5b:43:dc:36:80:8f:f4:30:5b:ea:90:ca:ef:0b:e5:
2f:ab:6c:6d:03:a6:71:6c:0f:fe:e3:fd:60:98:b9:
33:d1:79:46:ff:99:cb:7a:68:65:f4:13:99:6d:03:
f0:01:c2:8a:e4:4e:53:eb:5e:37:bb:f7:33:5f:77:
da:d2:e4:26:ac:02:75:0d:6f:62:1a:67:70:52:fa:
58:75:eb:79:e7:b0:3f:70:9d:7d:fd:94:ea:5e:45:
17:37:df:e0:10:d9:8a:37:57:ff:a8:82:b1:c4:63:
63:8a:a4:fc:e7:c9:ec:d4:87:ef:fc:61:17:f0:d2:
47:76:95:8d:30:1f:65:d3:c0:cf:a7:f7:63:7c:1b:
48:34:77:9f:52:6c:2a:25:cf:1c:cc:bb:c6:cd:d7:
45:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F5:B1:5D:2D:6B:B8:27:D0:A1:42:7C:B7:55:FF:B5:21:12:64:FC
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:ba:99:d5:e8:82:99:e6:f0:cf:0e:de:de:d5:bd:08:9d:4d:
7c:91:1c:f9:a7:07:51:58:44:eb:ee:0e:24:b5:7b:5d:25:2e:
ec:23:13:7c:c5:30:38:46:25:eb:b3:b7:41:f1:34:7e:af:ce:
59:cc:d4:bc:e8:f7:e5:04:94:a9:c3:6e:0e:4e:8c:78:6e:ca:
23:ab:e3:e5:72:bf:cc:ca:8f:ed:38:17:48:d3:3b:cd:45:14:
94:99:09:ad:7b:92:2e:78:46:7a:74:ee:0a:c9:c9:15:2f:db:
68:c1:bd:b9:96:b7:3b:7f:d8:fd:e9:59:0d:5e:bf:ea:9b:4a:
83:09:63:45:d9:84:41:d0:9a:53:e2:76:e8:07:17:71:dd:59:
e6:85:43:af:85:e0:36:41:b9:e7:3d:90:33:87:1c:24:0e:3f:
3f:57:b5:f3:0e:d9:22:0b:98:27:23:3f:b8:53:e5:9f:38:ef:
db:d8:e6:36:73:cb:f2:a0:08:25:d0:01:24:05:f6:cb:f8:a4:
a6:a2:59:e2:5a:9c:20:10:51:f4:3a:b5:bd:55:e0:8a:c0:df:
a0:d5:07:d8:29:2f:ec:6c:a0:59:72:a9:ba:c7:3f:4a:86:41:
72:2d:ef:0f:9b:37:bc:76:ce:01:4e:ce:d8:75:b8:9b:8e:ee:
7b:cb:63:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:38:40 2025 by rpki-client