Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
File: KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json)
Hash identifier: s2KQBIOBS2qlNVzwlPq5SWIat/rcLmeBJGdaUujKweE=
Subject key identifier: 7D:8D:52:52:AB:B2:86:D6:29:EF:CB:48:38:AA:D5:7C:19:E8:C4:20
Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d
Certificate serial: 01969E2C7FF398BFDAA337FC508E2EF09C50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
Manifest number: 0A40
Signing time: Mon 05 May 2025 02:00:38 +0000
Manifest this update: Mon 05 May 2025 02:00:38 +0000
Manifest next update: Tue 06 May 2025 02:00:38 +0000
Files and hashes: 1: FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa (hash: dI7TXuZLS0+y6udtXa2yol0ikupwyIZAlaHrmt/VDI0=)
2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: 4ThdTFO9gl7ftzrKLU2qVBWImxbjXJFVCnx8rM1xGBY=)
3: z3-dsZKj9j7nCKXS-M2vtq4aJrk.roa (hash: 28apFTsYy4v/YWMNME9MOhYcWfL7kBuIz5Y1C6vARJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:7f:f3:98:bf:da:a3:37:fc:50:8e:2e:f0:9c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d
Validity
Not Before: May 5 02:00:38 2025 GMT
Not After : May 6 02:00:38 2025 GMT
Subject: CN=7d8d5252abb286d629efcb4838aad57c19e8c420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:95:0d:12:4e:af:75:a6:5a:a0:92:e9:1c:59:
fe:a2:1e:87:20:b2:e7:aa:43:23:ba:b1:79:8f:2a:
88:35:b2:97:0c:67:64:26:07:1f:13:a1:dc:68:f2:
73:82:48:d3:6d:69:ca:87:c8:0d:d8:9a:12:d6:77:
80:92:75:32:84:66:1d:1a:6f:86:1d:c7:4f:a8:e1:
18:5c:bb:08:30:27:52:48:f3:b3:41:97:05:fb:ed:
3f:67:b8:a6:17:d4:a5:55:2e:13:8d:7c:47:b9:03:
ce:c5:65:18:38:69:a5:14:14:01:c8:05:9b:57:ca:
60:ec:5b:b6:a0:5a:9b:69:c2:e7:17:cf:08:0c:83:
22:6d:f8:e4:cb:b1:30:57:fd:5b:c3:90:72:2e:98:
a5:57:e0:7d:7c:25:0a:70:d3:c0:9f:7b:7d:59:12:
71:f6:ac:28:29:51:f8:93:1d:d0:fe:d6:b7:69:9f:
55:ec:d6:43:a3:d2:53:24:fb:41:af:2b:9a:c0:b4:
c0:a3:ac:49:23:0c:5a:c3:49:46:47:ff:d9:5c:37:
0f:42:1a:a0:55:88:b9:c9:71:b9:f3:c3:e2:e8:b0:
be:92:9a:64:9e:74:92:ce:87:af:bc:25:c4:1e:9c:
b9:f6:1a:c8:a6:28:d6:bb:bf:82:13:62:37:06:be:
61:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:8D:52:52:AB:B2:86:D6:29:EF:CB:48:38:AA:D5:7C:19:E8:C4:20
X509v3 Authority Key Identifier:
keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:56:fa:9e:67:27:58:dc:a5:79:7e:79:07:f8:b1:9c:00:ba:
df:d8:cf:50:64:04:d9:64:a7:ef:73:0f:02:7c:a9:bb:cc:80:
75:b3:b5:7d:3c:2f:72:40:6f:fd:38:6c:78:8c:41:89:c6:13:
40:a4:c7:45:27:dc:a7:2c:fc:8b:ac:40:4e:c2:e6:5f:8e:13:
d0:2a:00:30:52:3c:9e:71:cd:49:aa:e7:75:a5:ef:54:45:16:
46:85:7f:bd:93:3d:3b:4c:bf:ca:88:91:e5:43:52:d2:15:51:
82:fb:3a:3f:22:12:3b:4f:5e:45:6a:92:34:6e:46:29:67:16:
00:b5:04:11:62:ca:eb:4f:db:51:7b:f1:5b:38:80:af:80:97:
b6:d0:86:8c:03:60:ed:eb:c3:bd:72:fa:98:37:db:7a:e8:8f:
12:f2:7b:57:28:20:bf:2e:76:af:c9:01:b2:e9:36:3e:42:04:
be:8f:57:81:0b:15:c9:d6:ae:e7:ad:5a:07:2d:53:89:0e:f7:
a5:34:27:a1:d7:44:2d:d5:49:a3:7e:a1:ba:cb:b1:fc:7f:8b:
73:97:57:f5:11:4e:07:10:c8:12:35:de:92:fd:4c:52:48:dd:
42:b8:e0:38:ee:e3:a4:ee:6d:59:bd:99:c3:a4:43:9c:60:da:
0c:62:f8:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 11:38:10 2025 by rpki-client