Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
File: KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft (raw, json)
Hash identifier: DuBkK6dHVjZVGi3xBMlwYw2uTm1gfrMuAzo+sp8cVrA=
Subject key identifier: 09:EE:8A:24:6B:23:6A:02:31:98:60:1A:D8:C0:58:E1:F1:D6:B3:30
Authority key identifier: 28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
Certificate issuer: /CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Certificate serial: 0196B9A41E3B94B2579B4004291ACA788B1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
Manifest number: 07AF
Signing time: Sat 10 May 2025 10:01:02 +0000
Manifest this update: Sat 10 May 2025 10:01:02 +0000
Manifest next update: Sun 11 May 2025 10:01:02 +0000
Files and hashes: 1: Ep5Q_paEMkoQ8JMNVQev_VtcdmY.roa (hash: Bu1EiGDnBTDp8uoDAPAoyCI9ib5FJjnia2bO4NVERCs=)
2: KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl (hash: rpNkEdkIov6GPH/ZlCuNJuWlGycoCLz6RsyHnsVcNIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a4:1e:3b:94:b2:57:9b:40:04:29:1a:ca:78:8b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28203decd08bd47d8a9162a6e1742f3c53ea3c74
Validity
Not Before: May 10 10:01:02 2025 GMT
Not After : May 11 10:01:02 2025 GMT
Subject: CN=09ee8a246b236a023198601ad8c058e1f1d6b330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fe:6d:6f:1a:56:58:b5:fe:df:e6:8d:a5:6c:
54:71:90:5b:80:23:13:44:b8:df:e5:dd:32:cd:ea:
8a:ba:a3:38:11:8d:d9:c4:51:0b:2f:c3:d9:c3:81:
03:72:d0:bc:29:59:e0:5a:7d:5e:76:dd:22:07:9a:
15:ca:f2:d8:21:05:a5:4f:88:36:1a:60:e4:a4:7d:
d5:f8:7e:d9:0b:3a:6f:a0:44:a2:0a:82:35:b8:93:
ad:af:c5:4f:69:5f:f8:f1:62:1b:2c:25:01:31:e1:
ec:2a:04:44:7d:46:02:c0:b9:70:43:01:c5:0c:98:
88:48:60:a1:d0:77:f5:6a:f4:bf:d9:37:02:39:6c:
80:68:48:46:e3:be:fe:28:07:20:da:35:f4:15:4a:
a5:de:84:19:05:52:3e:4f:c6:2c:35:5f:12:8f:5b:
f5:73:b2:6a:2c:07:16:51:ba:8b:d4:ab:da:77:d3:
9f:05:77:58:8f:48:ec:72:51:81:85:42:34:1f:a5:
fa:a3:f4:d6:73:55:b1:7a:66:77:a2:cb:3d:ca:3f:
f7:5f:8c:e5:a5:35:a3:75:12:29:ab:c6:95:d1:e9:
ce:25:63:64:99:0d:6a:65:14:4e:fe:04:e5:78:29:
88:60:bc:e8:cf:89:f4:31:5c:84:7f:3d:4e:1f:3e:
eb:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:EE:8A:24:6B:23:6A:02:31:98:60:1A:D8:C0:58:E1:F1:D6:B3:30
X509v3 Authority Key Identifier:
keyid:28:20:3D:EC:D0:8B:D4:7D:8A:91:62:A6:E1:74:2F:3C:53:EA:3C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCA97NCL1H2KkWKm4XQvPFPqPHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c90a34-0afd-49b9-bbd6-a297c1408085/1/KCA97NCL1H2KkWKm4XQvPFPqPHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:b8:05:9e:35:ac:a3:14:56:91:e6:8e:d3:c0:81:1d:78:33:
cf:1d:8b:72:45:3f:0a:cf:45:41:49:2c:49:bd:dc:a8:97:8b:
3d:1e:c9:95:09:dc:7a:32:ef:49:c3:a9:ec:59:82:5c:0d:89:
2c:a5:ef:29:f7:21:8c:c3:fb:3a:f7:6a:2c:19:78:87:7a:f3:
94:7a:10:39:3b:d3:ac:fe:d2:a7:25:87:25:03:9b:3b:24:01:
52:3c:01:68:bd:76:29:e3:08:ed:26:21:64:f4:54:80:d8:21:
3d:4a:79:de:9a:7a:0e:5f:9e:c7:87:1c:80:b6:f3:35:37:f1:
79:cc:9a:d4:ad:0e:f9:87:b8:d6:ed:b3:d3:41:29:cf:12:4e:
a5:61:d4:5d:43:bb:53:d6:6a:cd:ce:9f:d2:86:e8:a8:22:2d:
3e:e1:c7:8c:0d:6f:e6:5e:3f:94:20:97:91:a1:5d:c1:6c:e7:
59:a7:e0:20:1c:30:f9:79:de:d2:94:69:9e:5e:85:29:bf:f6:
00:fd:ab:eb:6d:29:71:4e:6b:97:d8:24:90:dd:50:4a:f8:d5:
2e:85:af:5e:67:8d:a7:da:83:ee:1b:af:16:c6:dc:3a:1a:3a:
aa:5b:a6:bc:02:ea:01:82:15:77:9e:7f:6b:06:c2:6a:bb:cc:
bb:8a:b3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:29:39 2025 by rpki-client