Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: mAMIOM2uW6ZJTSSPyXd7XAPBkc6f1hZePG3kHRIph9A=
Subject key identifier: 8B:E6:D9:63:93:A8:24:D9:60:52:D8:F9:52:3F:2D:80:62:C7:6F:0C
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 0196BD8031306112652193FE461BCD06DA47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 1535
Signing time: Sun 11 May 2025 04:00:17 +0000
Manifest this update: Sun 11 May 2025 04:00:17 +0000
Manifest next update: Mon 12 May 2025 04:00:17 +0000
Files and hashes: 1: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: rmLXgU60RMRXxF0F/QvfUuqKrtXS6LlNOmn1VbCmn00=)
2: r4bjJ2cCOInhIlG1f9hIdTm3g6M.roa (hash: aZToxg96BEY8Qvj4uVJxCXKyOgQmRt2zg6OKjNY/eQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:80:31:30:61:12:65:21:93:fe:46:1b:cd:06:da:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: May 11 04:00:17 2025 GMT
Not After : May 12 04:00:17 2025 GMT
Subject: CN=8be6d96393a824d96052d8f9523f2d8062c76f0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:34:0c:51:c3:2a:8d:36:c1:c4:ad:a1:36:b9:
a0:93:8c:1c:2d:42:53:93:92:cc:f1:e2:df:25:ba:
78:4e:84:b3:13:c0:72:08:69:80:d7:b6:b4:be:9b:
44:dd:52:a9:06:dc:4b:50:4a:36:1c:04:ac:99:a8:
ba:83:cd:d4:94:7e:b2:17:4c:f8:d4:8c:db:9e:8f:
de:0e:e0:c7:68:45:26:2a:4d:17:6c:0d:45:fc:37:
35:71:03:c5:72:b6:f7:3e:1f:88:de:70:9d:cb:67:
80:4c:be:8a:53:c9:cd:75:ec:2e:1a:57:df:97:49:
e9:76:37:fb:4c:0e:ab:d3:27:ae:e3:41:18:4b:2e:
f1:72:6b:42:ca:0a:aa:19:57:18:0b:c0:f3:cd:86:
ab:0c:9d:3f:e6:1f:40:21:d2:a8:e8:c9:e3:20:a5:
5c:b3:f2:2a:08:23:bc:75:bb:a2:7b:a5:d4:9a:15:
30:31:15:04:fb:be:8f:44:00:85:c9:33:1f:50:2f:
e9:56:24:14:a0:eb:01:2f:8c:09:e4:38:06:12:e4:
15:f5:ef:87:24:8f:66:47:2f:e0:9f:e6:b5:b3:44:
6e:cc:31:79:2e:16:6e:f7:df:4b:b3:05:d5:ed:61:
04:92:24:59:a5:98:d2:36:e7:e8:57:60:0f:1b:6c:
12:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E6:D9:63:93:A8:24:D9:60:52:D8:F9:52:3F:2D:80:62:C7:6F:0C
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:b7:76:4c:63:c8:a2:8f:c3:d3:2c:11:d6:bc:41:b9:ec:80:
2d:74:b8:44:44:ff:c4:77:7d:fb:dc:b1:7e:63:88:e4:55:6d:
32:62:b9:42:15:d6:fc:05:21:89:9b:f9:b0:86:23:af:e3:11:
96:ba:11:04:e2:f6:3a:81:d0:cd:1b:99:3a:db:9a:77:89:50:
a3:58:f0:fd:e3:8f:5e:e9:c8:ff:12:12:5e:ff:a2:21:b9:60:
c1:95:83:52:45:cc:c3:30:8f:9f:21:74:f6:52:34:25:ef:83:
66:7e:20:35:0d:ff:dd:a0:20:f6:00:5d:58:c2:20:ef:7c:f7:
08:e4:c8:c1:7f:18:88:c9:3e:40:40:7e:97:c0:e9:4c:e2:44:
92:06:4f:c7:08:c4:40:87:93:84:2f:29:91:d9:c7:0f:c9:e0:
5b:b7:af:23:ab:86:e9:2a:ab:83:11:af:05:4d:23:5b:bc:79:
c3:38:e7:fc:43:25:4e:5f:c0:7c:c0:67:16:7d:00:9b:bc:95:
97:af:ca:af:b3:0e:36:6f:6e:de:20:88:6a:31:f5:e5:9d:2e:
4f:06:2e:1e:55:54:5e:30:74:f1:78:54:8c:f4:28:bb:2c:1d:
3f:3f:a0:81:09:74:17:4a:ef:b2:68:46:47:76:1c:c6:e6:4e:
12:80:3f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:31:30 2025 by rpki-client