Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: hOlR+PotgXLXnzua0d28D6QRyEs+aN1rv4hEzz26BXc=
Subject key identifier: FA:31:93:2E:DE:36:80:D0:C3:A9:4C:B7:9B:71:06:A9:8C:F3:73:43
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 0196BF37A887E5678D70F08A70678ED9FF8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 148D
Signing time: Sun 11 May 2025 12:00:17 +0000
Manifest this update: Sun 11 May 2025 12:00:17 +0000
Manifest next update: Mon 12 May 2025 12:00:17 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: fskEC5STiD1MC3snc2aiYemLfU/6igub5eT3uleBHTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:a8:87:e5:67:8d:70:f0:8a:70:67:8e:d9:ff:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: May 11 12:00:17 2025 GMT
Not After : May 12 12:00:17 2025 GMT
Subject: CN=fa31932ede3680d0c3a94cb79b7106a98cf37343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f9:63:ea:0f:14:44:e8:ab:7a:b3:e6:e7:1a:
6e:9f:ce:51:7f:09:5d:64:46:1b:dc:eb:48:89:53:
10:ae:a7:b9:2c:fd:c8:8c:84:38:df:6a:dd:c7:1c:
75:3d:74:63:3d:8e:81:0f:ac:96:14:0f:01:6e:12:
62:62:b3:9f:ae:f3:5f:71:f8:a5:22:7c:91:fd:97:
f6:f1:85:59:35:98:f9:7f:46:4a:2c:54:53:cd:5d:
91:c4:b0:20:2f:a9:50:b2:d5:12:27:0e:81:c1:49:
15:81:01:97:42:85:32:f5:b5:63:df:ff:cd:b7:26:
40:68:bf:1b:49:08:a8:36:2d:27:40:e2:34:92:dc:
e4:33:06:76:69:ee:19:57:a7:ed:d8:88:f0:b5:67:
c1:e4:55:cc:ae:42:71:47:4b:6b:07:08:8c:9b:87:
59:64:4a:8c:a4:16:85:97:b7:29:4c:06:f2:71:14:
d2:45:2d:03:ce:7b:48:52:29:09:68:f6:86:85:81:
70:f0:05:3a:92:51:74:d7:37:3f:1a:39:ed:de:e6:
d1:2b:bc:8c:fe:25:eb:b8:a8:a5:7e:57:7b:42:10:
85:50:ee:17:03:f0:94:fc:6e:fd:49:75:a8:c9:96:
b6:4d:a8:22:b9:ea:99:20:33:4a:ff:ef:2c:a0:b1:
4b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:31:93:2E:DE:36:80:D0:C3:A9:4C:B7:9B:71:06:A9:8C:F3:73:43
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:b7:a9:9f:43:30:0e:b6:86:7d:ca:97:3a:ee:36:d3:2a:4e:
9b:9b:88:6f:6f:5e:ec:24:f4:df:3d:35:ed:16:73:02:f2:f5:
56:35:67:57:cc:aa:68:2c:50:86:dc:ac:94:97:35:fb:ac:27:
81:d5:6d:39:eb:a0:53:df:a0:68:e1:1a:3a:ac:79:8f:fa:06:
c6:59:ca:9c:16:20:c6:b5:e3:fe:41:5e:91:01:a9:cc:14:b4:
df:1d:aa:26:d6:39:63:58:52:e0:e0:58:10:39:38:68:d4:bd:
6e:b0:66:a0:c4:8f:70:ef:c5:9f:e8:d6:7d:62:50:d4:48:c1:
57:43:45:df:83:e3:ed:d5:f8:3a:49:d9:d0:a4:42:66:46:6c:
f7:9a:16:ab:66:ad:64:86:1f:d9:eb:34:f9:38:2e:17:84:97:
78:4a:92:f8:cc:ea:01:c4:d1:95:d6:ba:f2:84:3f:86:67:99:
67:0d:7f:bb:89:6c:95:08:fd:a7:70:d6:18:0d:25:c5:ac:2e:
c1:2a:42:c3:7c:05:bb:4d:95:d2:4c:ab:d1:e9:42:55:d3:fc:
b1:4c:dd:24:b5:f4:a4:c4:05:99:f4:00:59:a6:27:77:3d:4c:
67:02:92:6f:2f:e7:65:39:e7:90:69:c1:08:47:d2:8a:d6:68:
f5:65:27:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:00:36 2025 by rpki-client