Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
File: ktf2mgS9nK1SOzn3ei3atEwpEZI.mft (raw, json)
Hash identifier: NHJCc2NOgYdCTx6gGK2fA4QnXOBvNfZ6bZv/iHWR1HI=
Subject key identifier: BE:90:D9:B0:25:B7:2A:80:3C:C4:15:12:09:5A:7E:0C:62:F3:35:24
Authority key identifier: 92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92
Certificate issuer: /CN=92d7f69a04bd9cad523b39f77a2ddab44c291192
Certificate serial: 0196BFA56E2390A7B93108E391C3E71188B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
Manifest number: 14C6
Signing time: Sun 11 May 2025 14:00:11 +0000
Manifest this update: Sun 11 May 2025 14:00:11 +0000
Manifest next update: Mon 12 May 2025 14:00:11 +0000
Files and hashes: 1: ktf2mgS9nK1SOzn3ei3atEwpEZI.crl (hash: VhpaQV64IPBUtPHwoDtSQUxROJEdzkRkv20W3kXRzyA=)
2: tX7ugzTELMCfaa10qZ6cRQFzo6s.roa (hash: pM1f1c7cpi8tX6YPlXTmsRIvmuNbzIiqqMIx6Cp/Bqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 14:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:a5:6e:23:90:a7:b9:31:08:e3:91:c3:e7:11:88:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7f69a04bd9cad523b39f77a2ddab44c291192
Validity
Not Before: May 11 14:00:11 2025 GMT
Not After : May 12 14:00:11 2025 GMT
Subject: CN=be90d9b025b72a803cc41512095a7e0c62f33524
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3b:59:72:ba:d1:39:15:b9:e9:6d:20:01:d2:
f3:3d:cd:53:9b:22:65:1b:b0:ea:10:be:53:e8:7f:
d8:ca:ba:11:af:df:2c:e2:ea:ea:03:c9:a6:c7:0a:
5e:bc:5b:ca:5c:dc:a9:b4:a8:6d:eb:56:56:f3:c8:
18:42:41:b5:5b:89:0d:cd:1c:42:39:d6:8f:6f:1e:
10:9e:53:cb:90:0a:fc:a1:d9:9b:1e:a6:6d:ce:e0:
38:32:82:ed:41:dc:99:2c:23:0e:a6:15:1c:cb:6b:
83:3d:f1:03:6f:5b:5b:96:23:ef:e3:9b:a3:99:09:
5e:a9:fd:e8:a4:58:db:89:4f:2c:f3:b3:99:52:0a:
7c:da:03:d8:ab:78:aa:3b:c4:d8:6f:45:ce:2e:2d:
6b:bc:db:9c:f4:5b:e1:e8:9a:f8:b6:b6:58:5b:96:
c7:56:97:ef:2e:b7:5d:c6:ce:41:97:fd:d1:53:12:
96:96:3b:44:00:db:f7:67:66:7e:70:9b:4d:b4:de:
0e:cf:f7:52:40:51:2c:11:90:13:f1:0b:d6:93:5c:
b1:31:58:59:7c:31:76:e6:71:e8:9b:f4:d1:29:7a:
cb:38:fd:8e:82:54:bd:97:e7:15:ff:93:f2:7f:2e:
8f:a0:99:77:2e:81:b8:1e:98:0e:67:63:f3:f6:d0:
59:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:90:D9:B0:25:B7:2A:80:3C:C4:15:12:09:5A:7E:0C:62:F3:35:24
X509v3 Authority Key Identifier:
keyid:92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:bb:41:bf:59:66:84:a3:57:8f:ef:fe:89:28:97:b1:87:f9:
38:98:8d:60:16:5c:8c:fd:e3:14:90:f7:03:32:4d:0b:99:d8:
6b:fb:ab:d8:9f:f0:f6:b3:ca:7f:e4:98:c4:0c:38:45:33:9c:
4a:6f:0c:97:a6:55:46:36:41:c0:20:05:d3:f1:48:ae:8f:d2:
0a:f7:0b:3b:08:05:24:1e:a3:94:b0:cf:56:08:3b:d3:a5:8c:
70:6b:da:35:89:43:0b:b4:c0:51:1c:ea:f9:94:b8:d0:79:ba:
34:14:ae:04:57:e0:8f:f3:95:6a:bd:03:18:df:48:3a:09:3c:
35:06:12:98:3c:f1:5e:1f:3e:52:d6:89:3e:0c:19:f3:b1:7c:
a6:c0:d2:c6:bd:ae:33:bc:94:18:46:52:0c:67:08:55:ec:f6:
4b:bf:2c:7d:97:99:fa:28:06:72:3c:0f:46:3f:c7:7c:e5:4b:
f5:4b:93:11:9a:40:aa:fb:e1:dd:c3:c7:6b:ef:94:db:56:54:
df:22:4c:18:35:4c:56:83:60:c4:8b:20:28:f7:56:6a:e2:ae:
2d:79:d9:64:cc:e0:1e:99:96:ee:99:30:85:4e:3f:44:ea:e5:
45:60:2c:47:05:02:bb:d2:0a:4c:31:e8:f2:58:9a:aa:e0:13:
aa:bf:40:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:58:20 2025 by rpki-client