Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: chtbQAPA0wqp3K2R+E9/1dyL0op0FAq2xI7oQeQ+ELw=
Subject key identifier: 2B:B5:0F:6C:C4:2F:22:D5:14:D5:87:66:7C:5D:E4:95:8D:21:84:52
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 0196CC17EF40D503BC0081D070B752CE4E8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 06D5
Signing time: Wed 14 May 2025 00:00:42 +0000
Manifest this update: Wed 14 May 2025 00:00:42 +0000
Manifest next update: Thu 15 May 2025 00:00:42 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: Y2nDIEWInbEIoXC2eFhj1cr9pTLK1BoReGEa1Jr+YXw=)
2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:17:ef:40:d5:03:bc:00:81:d0:70:b7:52:ce:4e:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: May 14 00:00:42 2025 GMT
Not After : May 15 00:00:42 2025 GMT
Subject: CN=2bb50f6cc42f22d514d587667c5de4958d218452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:32:99:45:f3:23:d5:dc:16:cf:1b:fd:7a:
e0:f2:fb:29:f0:e9:db:7a:e4:3b:5a:a6:35:23:8d:
ea:5d:4d:7a:6f:42:a6:62:f9:2f:89:72:49:79:2f:
c6:e3:15:ea:1a:55:30:40:57:91:72:91:c0:5b:d7:
a4:28:73:6b:5d:0b:b1:80:75:c3:91:08:d8:b5:d9:
05:03:ad:2a:c2:57:27:0f:5d:42:e9:b2:8d:a8:35:
88:c4:74:74:11:cb:07:96:50:af:fd:67:23:ec:a0:
1a:9f:f4:0b:97:9b:48:68:a2:d7:d9:94:3c:85:ee:
34:ea:2a:15:5a:3d:33:6e:6f:82:30:01:67:99:a5:
c4:bf:ec:c5:6e:de:3a:38:13:59:7a:54:96:a4:4b:
35:64:3b:b4:b7:72:92:c2:ea:10:cf:0b:d1:94:98:
76:ee:b4:94:a6:44:42:f6:09:bb:86:d1:6e:12:c5:
26:ca:b7:71:3e:84:71:0a:5e:d6:40:22:ae:f8:7a:
4a:9e:7a:dc:ee:e3:4e:09:80:7b:f0:84:f3:85:64:
12:26:89:32:54:83:8b:68:24:44:cd:88:7a:df:f2:
d0:00:e2:b4:fd:03:74:61:1d:8b:39:66:7f:fe:d9:
d8:4e:f9:40:85:7c:0c:02:39:91:0b:54:63:84:87:
30:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B5:0F:6C:C4:2F:22:D5:14:D5:87:66:7C:5D:E4:95:8D:21:84:52
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:1d:a4:8a:96:ee:42:4d:a6:a8:1b:4e:68:da:ef:65:1b:6f:
45:07:8e:31:ba:f9:6e:3b:c9:e5:49:e2:be:4b:b4:d3:53:f6:
02:f9:73:92:ff:84:52:1c:95:02:92:19:4a:13:29:a6:1b:c5:
c0:ae:c3:82:fd:66:30:f0:e5:23:c6:87:dd:28:59:11:cc:47:
2a:97:e0:9b:0c:3c:66:08:7e:5e:86:52:9d:ae:77:6f:e7:95:
be:de:0e:e3:32:8c:48:ef:a6:ba:3e:25:1c:87:2d:e0:97:79:
73:1c:2e:d4:31:91:a5:ec:f9:71:5d:57:a9:31:25:cb:7f:18:
45:f9:be:c1:06:54:3f:09:7d:83:47:af:3f:e8:d1:34:26:fc:
b7:3f:d6:11:8c:50:7f:55:1e:96:00:f9:93:48:ff:2a:c9:e4:
be:dd:d5:a2:0d:1c:3f:ab:34:04:cf:f3:df:97:a2:06:5d:90:
db:e8:42:81:b4:58:f4:09:11:9b:62:46:2d:7c:51:d9:7d:b1:
f0:5c:f4:2e:48:4e:6c:bd:ff:60:28:65:9e:4f:c8:5d:c6:2e:
39:04:3b:ae:ad:f8:fa:ce:e4:c4:32:88:c8:f5:92:74:4a:69:
07:da:dc:4f:74:4a:79:bf:67:4c:0c:97:bd:2e:89:2d:e5:51:
29:84:57:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 06:46:20 2025 by rpki-client