Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: fk+eR9b2KeVpU41T+COItnAzdD5MZLAwEMIvUdTZMMY=
Subject key identifier: B5:13:1B:A4:CC:C7:DD:40:C6:C9:86:7B:4B:1A:DF:0F:CD:71:E7:31
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 0196CBAA0D647442B97200F693A43F9EEB0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 0317
Signing time: Tue 13 May 2025 22:00:41 +0000
Manifest this update: Tue 13 May 2025 22:00:41 +0000
Manifest next update: Wed 14 May 2025 22:00:41 +0000
Files and hashes: 1: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: ViVlhUI/sbB2Rr0BUJ/c9l03IxANBLwPbWEJA37/QZI=)
2: o05sdzj6m4fQO6_WrgnQWVEGn8s.roa (hash: 4PZyqJElCUrsee8Vele9Jxa/SXWOHXm1LP7RgEQB9SY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cb:aa:0d:64:74:42:b9:72:00:f6:93:a4:3f:9e:eb:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: May 13 22:00:41 2025 GMT
Not After : May 14 22:00:41 2025 GMT
Subject: CN=b5131ba4ccc7dd40c6c9867b4b1adf0fcd71e731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:af:5c:9c:60:f5:0a:1b:a2:60:68:22:56:eb:
2d:4c:9c:76:a6:f6:aa:25:47:bc:24:57:0f:f9:2b:
69:fb:11:b3:34:80:70:9e:bb:2e:93:53:f0:b1:36:
07:d8:18:a1:5a:0d:a6:cd:b9:77:b8:75:37:ef:5d:
0b:f9:66:35:3f:9e:31:ba:84:63:61:61:f7:59:ce:
65:0c:36:35:12:17:69:05:77:15:25:45:56:c0:83:
a3:00:34:c5:1c:ac:2b:87:9d:91:a7:47:84:61:69:
12:37:2e:65:25:4a:e5:34:4b:b5:ac:1b:1b:e6:4f:
5d:d0:46:59:6a:9a:d8:d2:c2:31:3a:11:91:a5:1e:
3a:f1:56:ac:d3:69:fd:2e:31:82:5a:fe:25:e4:b0:
01:11:10:9c:6a:d4:b7:ce:aa:64:72:d4:c9:e7:f6:
32:36:e8:41:6e:bf:ba:11:a3:49:a3:cf:8c:7d:97:
45:7a:0d:b0:d6:a8:21:b4:78:15:28:ee:3f:91:20:
e3:d4:d0:ed:79:ce:09:7e:88:26:38:69:28:36:12:
a1:f7:37:7a:3b:49:3d:bd:48:3e:a1:77:f9:da:4b:
ac:70:0a:c5:3f:b7:f0:a1:73:c0:05:00:ea:c4:39:
39:2d:e3:c7:a2:06:e4:11:61:63:89:b4:7e:c5:95:
aa:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:13:1B:A4:CC:C7:DD:40:C6:C9:86:7B:4B:1A:DF:0F:CD:71:E7:31
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:94:7d:b4:f2:df:70:42:4c:16:9f:03:b7:04:8a:90:66:ed:
3f:81:aa:26:f3:81:30:2c:b9:9d:ca:9e:6a:15:13:c6:3a:df:
4d:a8:5b:2a:ba:1f:cb:f8:ea:34:db:1a:c8:4a:d7:c4:5b:df:
b0:4e:b3:77:0d:70:56:3c:c8:c8:50:d9:02:ca:6c:79:49:9d:
ad:96:6c:45:cc:ad:56:d1:5e:b7:96:bb:6f:e0:19:17:95:db:
c8:71:e1:19:a8:e6:1e:dc:50:8d:4b:f8:ea:6c:de:33:7f:c7:
d2:c7:64:f8:51:b1:0f:66:c1:ee:ac:46:2f:d2:81:3c:48:c6:
da:43:5a:0c:68:3a:f1:bc:57:4e:fe:c5:1a:5a:5f:85:a6:4f:
a5:25:8c:b6:e4:88:09:08:13:f1:12:fc:29:78:87:94:8f:1e:
2b:cc:1c:56:86:ed:9d:67:d4:5a:5a:55:49:e1:f8:ae:ff:c2:
31:22:90:2c:ed:77:3d:ef:b7:0a:94:a9:f1:bc:12:4b:c0:77:
9f:36:2d:c4:1c:96:c0:34:56:9e:6f:56:aa:f1:50:7b:7e:d5:
16:2a:2f:13:c0:d4:ce:70:2f:aa:25:4d:e2:3a:2d:a7:b8:27:
8a:84:4a:e5:bb:c7:78:a1:d3:8b:27:32:4f:c2:a2:df:84:ef:
07:c4:03:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 04:47:58 2025 by rpki-client