Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
File: KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft (raw, json)
Hash identifier: yl5yTGI/e6+KYm8h3A+vwO+4Wvv/5+Uh8cmIT5WSl18=
Subject key identifier: EF:A9:7C:49:9D:E8:9A:42:A3:2D:99:6E:B2:75:71:58:F1:E0:BE:1E
Authority key identifier: 28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
Certificate issuer: /CN=283624007f44dcaf568c370e7f71f950cb1940ef
Certificate serial: 0196CD6124D9C2C783912221FF06285E9D15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
Manifest number: 06B7
Signing time: Wed 14 May 2025 06:00:17 +0000
Manifest this update: Wed 14 May 2025 06:00:17 +0000
Manifest next update: Thu 15 May 2025 06:00:17 +0000
Files and hashes: 1: 8nNgOGtBQWNTilGRrMmNlFZZwGM.roa (hash: mOJcQQ3vA0VCC5mkB6hJglG7LUq/Vu6wljMQaBgi+dM=)
2: KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl (hash: TjjnNRsqtXJeQqhGtaqOX15ZCXmW27UDZKyI7NlU+Ak=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:61:24:d9:c2:c7:83:91:22:21:ff:06:28:5e:9d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283624007f44dcaf568c370e7f71f950cb1940ef
Validity
Not Before: May 14 06:00:17 2025 GMT
Not After : May 15 06:00:17 2025 GMT
Subject: CN=efa97c499de89a42a32d996eb2757158f1e0be1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d7:f2:7a:c0:95:33:cb:0e:4e:bc:70:87:7a:
e6:54:d1:be:76:ed:6f:8a:be:81:13:55:c7:39:02:
69:36:8e:34:09:c9:88:d0:8b:de:77:a8:13:8f:05:
bf:70:9b:e9:7f:f6:2b:ef:35:02:f9:7b:b5:ec:49:
83:96:41:9b:b6:da:ac:a3:43:c1:54:a0:ef:63:f0:
75:a3:76:07:f5:64:12:24:75:da:aa:64:3c:6c:83:
d5:d3:db:c0:24:d3:1d:af:ea:a4:99:85:81:55:a3:
a2:30:9c:72:39:0e:ee:47:fe:33:b7:4c:6a:d4:0b:
8b:ef:09:d6:96:d3:9a:44:b3:44:c3:68:ac:1e:93:
0a:75:4f:c4:11:9d:d8:7b:39:b1:c8:c5:e6:e1:58:
e0:0e:43:59:df:cf:a0:6b:c8:03:8c:bf:53:bc:8d:
6e:9c:8a:d5:f9:88:37:33:93:ff:b3:b0:fd:17:88:
9a:6a:a6:be:d8:15:60:a1:26:a4:36:91:8c:d9:64:
19:7d:f5:29:91:d5:98:3b:e9:a6:9c:5c:07:30:1a:
3b:b9:92:b5:02:94:8a:6b:1f:cd:71:9a:19:97:60:
1f:25:d0:cb:57:3b:9c:e3:62:9f:78:36:fe:b4:58:
77:08:31:da:fd:26:bb:32:fc:f7:3d:9b:87:6f:5e:
63:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A9:7C:49:9D:E8:9A:42:A3:2D:99:6E:B2:75:71:58:F1:E0:BE:1E
X509v3 Authority Key Identifier:
keyid:28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:3c:52:d7:88:0b:6c:38:d7:9f:e7:f6:07:3b:42:7d:90:f8:
99:23:ec:b0:92:61:67:ae:47:20:52:b1:4e:d5:5b:82:5b:ce:
c5:eb:c2:58:c7:09:8c:8c:2e:da:65:f9:cc:e9:bb:a2:ce:67:
9e:e6:cf:da:47:16:6e:60:a1:2c:62:ea:09:da:e3:7a:0a:99:
c7:c3:27:cc:1a:36:fa:fe:82:3a:df:84:93:f2:e7:08:48:5b:
ab:b0:e0:5d:9c:b3:1b:50:75:50:41:68:e5:78:38:db:8e:65:
5e:f4:fa:67:cf:14:1e:83:45:a1:5f:26:6f:a0:f0:2b:77:e3:
60:16:fa:90:8e:a8:33:a5:97:36:b3:f9:3c:38:b8:87:ce:91:
d1:84:bb:bd:a9:97:6e:8c:7d:d0:48:37:d1:43:73:0a:ad:48:
7a:46:95:c7:45:7b:73:cd:6e:0f:1c:13:d7:a7:7e:43:2f:ed:
7b:88:f4:8f:da:92:fe:d2:24:8c:ec:2e:5f:f5:da:a2:be:a5:
67:a3:ec:65:bd:65:14:5e:33:64:fb:84:a9:91:b9:a6:8f:93:
77:1b:e5:29:7b:4d:2f:7b:6b:72:b0:df:f8:9b:c5:e9:64:e7:
11:b7:a1:ff:6f:21:65:29:6e:56:fc:7c:be:d8:fe:01:96:f5:
4b:68:6a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 12:43:03 2025 by rpki-client