Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
File: kCGOgBpTJZXptxxkNoTqBflr9fM.mft (raw, json)
Hash identifier: 1oUnvscONQKlU1nZr3HgoucdGPYrznLkMFx2e59I8Jw=
Subject key identifier: 91:B8:37:0B:2A:B6:02:74:4D:A2:99:C5:3E:5E:6C:8A:9A:29:35:7A
Authority key identifier: 90:21:8E:80:1A:53:25:95:E9:B7:1C:64:36:84:EA:05:F9:6B:F5:F3
Certificate issuer: /CN=90218e801a532595e9b71c643684ea05f96bf5f3
Certificate serial: 0196C8A934BEDCA0E94716D453CCBCE4F829
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
Manifest number: 029E
Signing time: Tue 13 May 2025 08:00:54 +0000
Manifest this update: Tue 13 May 2025 08:00:54 +0000
Manifest next update: Wed 14 May 2025 08:00:54 +0000
Files and hashes: 1: kCGOgBpTJZXptxxkNoTqBflr9fM.crl (hash: R7c76qwx0IFKD5C54X1GTDs2yipbibw5u0S2hZ6RTWM=)
2: wO4tKRWBwJAF_Ti9XP-8yjRZuUU.roa (hash: G7Rk/RipLXF/QPRugyDtoGfESmr50WO1Zig00oPYW14=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 08:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:a9:34:be:dc:a0:e9:47:16:d4:53:cc:bc:e4:f8:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90218e801a532595e9b71c643684ea05f96bf5f3
Validity
Not Before: May 13 08:00:54 2025 GMT
Not After : May 14 08:00:54 2025 GMT
Subject: CN=91b8370b2ab602744da299c53e5e6c8a9a29357a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e5:a5:ad:9a:93:ae:3e:ee:9d:51:29:d5:3d:
6d:e1:40:09:e9:5d:d3:dc:2b:aa:c2:7a:4e:3c:47:
67:49:73:45:e3:e4:f9:6a:02:60:ec:13:59:cb:f7:
0c:4f:18:22:cf:f5:2d:f2:73:05:21:ee:f0:22:0e:
d8:86:9f:e2:5a:af:ae:ab:8f:dd:d3:f0:5b:54:90:
bd:84:5b:70:9a:da:05:50:31:cc:49:3c:d3:3c:5a:
84:0f:4e:09:6b:01:f9:e2:16:fb:0d:4c:81:b5:91:
f4:7f:85:f1:b0:62:a7:44:16:98:93:2f:b9:e3:1a:
db:7e:07:0b:31:3e:7c:67:94:7c:68:d8:3f:0c:5d:
b3:50:73:20:f6:1f:06:b9:f8:bc:35:de:41:6a:d1:
4e:7b:18:2c:32:45:ff:e7:8c:c3:ea:74:de:b4:44:
d0:82:2e:c9:c7:dc:93:15:0a:cc:47:30:ee:1d:bd:
9f:e1:4f:bc:15:d7:a0:f7:e9:23:88:98:5b:be:50:
9f:43:30:db:0a:c5:0c:62:35:4c:b9:ae:3a:b0:a0:
de:42:bb:5c:ad:ea:fd:81:39:49:c3:ac:99:21:9c:
70:e3:f0:87:23:ec:0e:96:06:ff:57:a4:01:77:46:
39:0d:7a:7f:cc:17:c2:9e:8c:e3:dd:6b:c5:39:02:
91:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B8:37:0B:2A:B6:02:74:4D:A2:99:C5:3E:5E:6C:8A:9A:29:35:7A
X509v3 Authority Key Identifier:
keyid:90:21:8E:80:1A:53:25:95:E9:B7:1C:64:36:84:EA:05:F9:6B:F5:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kCGOgBpTJZXptxxkNoTqBflr9fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/1b6624-8441-4d01-96e3-601812ef428b/1/kCGOgBpTJZXptxxkNoTqBflr9fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:dd:73:c0:a4:00:b8:4b:b3:f1:22:57:2f:8b:69:c2:51:ef:
7e:ec:1c:3d:f8:7b:f2:2a:f4:c4:4a:bb:ea:a3:68:0f:e6:34:
7d:f2:96:8c:5b:f3:cf:c9:cb:ba:ce:ae:12:4f:55:f6:33:3e:
10:d2:8d:73:da:8b:7e:bc:53:c1:88:97:be:d3:9c:3f:ed:29:
93:78:a9:42:58:1d:c4:a1:b3:ff:ea:50:8d:df:c0:2b:38:8a:
b3:de:bb:21:75:19:cb:8a:e5:0a:0e:f6:55:96:dd:58:1a:29:
8c:a4:b3:b1:a8:82:6f:af:96:d0:ee:a6:73:b0:a6:34:34:ed:
82:0b:46:d3:d9:7f:c9:81:7e:82:e7:84:77:fe:0b:eb:ce:41:
b8:97:5a:7f:b6:22:8b:77:98:f8:4c:75:06:3a:7d:4c:b1:3f:
c7:50:02:ec:54:0f:2b:fe:d9:f8:09:c5:06:de:88:a9:af:2f:
5a:93:89:c4:da:20:1b:da:fa:a9:73:d1:02:77:de:f5:62:98:
2a:de:6f:b9:52:24:45:db:bb:81:ce:e8:1c:60:78:f9:74:0e:
cc:6e:a8:6b:a9:b6:fa:40:f5:34:54:d5:c1:55:1f:d9:98:99:
21:af:af:9d:78:a0:b7:d1:d8:77:6d:8f:57:36:74:2c:d6:d8:
92:c4:17:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 17:39:11 2025 by rpki-client