Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
File: kN_zHRsERNQgTeFYTQDd-WjQsBI.mft (raw, json)
Hash identifier: IX8NuSbcJgXdVuJkuygcs80zCGQDQK3jT4hlJHuSmCU=
Subject key identifier: 6F:05:9D:FB:7D:94:E4:A4:3F:21:8B:7A:0A:21:9B:42:C7:D2:A8:D2
Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Certificate serial: 0196BDEE49D249049F3C928EEDFC6A8032C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
Manifest number: 09A9
Signing time: Sun 11 May 2025 06:00:32 +0000
Manifest this update: Sun 11 May 2025 06:00:32 +0000
Manifest next update: Mon 12 May 2025 06:00:32 +0000
Files and hashes: 1: fhqhrm_dY2gYWI5oCp04pibtM_o.roa (hash: s8FH9ikZ8P5QdYR5uDaZwWuPJb6gYAb8hHHjeN9RXKc=)
2: kN_zHRsERNQgTeFYTQDd-WjQsBI.crl (hash: 8Vj03vKp4mu3j+R03g5mweEq3byPbwSqsT2wlLZLG28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:ee:49:d2:49:04:9f:3c:92:8e:ed:fc:6a:80:32:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Validity
Not Before: May 11 06:00:32 2025 GMT
Not After : May 12 06:00:32 2025 GMT
Subject: CN=6f059dfb7d94e4a43f218b7a0a219b42c7d2a8d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:96:1d:53:85:70:9a:bf:16:24:12:e5:99:76:
88:c2:d8:de:6f:96:c3:18:d3:cc:ec:47:65:76:bd:
b8:a8:6f:9a:e1:d1:44:3d:d1:bc:dd:2a:71:7f:e3:
14:8b:de:85:ff:ef:a5:5d:77:07:9c:98:b4:a4:ba:
15:5e:92:97:59:ac:e6:d4:8c:47:16:d4:ed:e3:3f:
90:b5:f5:6c:04:2d:49:b5:4e:68:b7:12:cb:27:2f:
43:03:74:46:f2:da:8c:4c:f5:4f:74:89:78:0e:18:
2f:85:06:51:ca:f1:5d:de:47:4b:e9:20:01:9e:50:
0c:31:bd:18:13:c8:ac:cf:9a:40:a2:1f:d8:30:5a:
c0:c5:b6:12:bf:67:23:6c:24:21:d7:7d:34:56:73:
16:cc:18:09:bb:78:c5:d8:f9:a6:0f:c4:7d:af:85:
90:e5:ae:56:62:a3:b2:cb:1d:56:8a:35:f9:61:d8:
5c:a7:be:1a:d7:58:55:91:c8:b7:64:9f:d3:6d:97:
b7:d5:93:ce:4e:cf:2b:d3:57:0c:0a:5d:74:34:74:
48:99:31:81:79:27:4b:1c:ea:9a:4f:3a:0e:96:2f:
dc:b6:cb:43:67:7d:ac:9d:59:db:2b:04:82:40:a7:
5a:83:ba:81:83:63:e5:e0:5f:91:67:6f:05:72:9a:
51:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:05:9D:FB:7D:94:E4:A4:3F:21:8B:7A:0A:21:9B:42:C7:D2:A8:D2
X509v3 Authority Key Identifier:
keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:d3:44:8c:64:a1:86:7d:2a:71:c6:de:20:52:06:10:3f:7d:
26:67:84:ff:22:a2:df:b9:5d:ad:55:53:d0:bf:e8:8a:b5:17:
f7:71:01:d3:66:77:b7:13:40:6b:20:eb:30:90:2d:bf:7f:d7:
58:6b:49:65:f8:f5:95:74:f2:e1:39:17:ef:97:f1:2b:b1:93:
9c:3f:6b:7b:76:dd:fe:9b:da:83:3d:c2:5b:89:ad:5d:00:43:
7e:84:76:07:98:88:ec:89:24:6c:52:31:65:08:20:c0:34:80:
e6:bd:9a:6d:b7:3b:fc:f4:69:1e:77:cb:d5:73:cc:3d:76:6e:
25:5f:10:ed:1a:ff:b4:c3:e6:8a:33:f4:9a:7f:16:02:6c:7c:
61:7e:d2:a4:36:4b:e2:6c:51:9f:8a:e9:a9:32:95:0c:74:65:
86:05:bd:0c:9a:cc:a6:6e:84:47:cd:16:34:ae:c5:44:5c:eb:
3b:6d:05:86:7c:10:da:2b:1f:81:cd:75:65:6a:71:31:5b:70:
e9:e2:ee:b2:b4:4b:ce:bc:33:ce:ac:6a:64:72:a8:9f:72:8f:
7d:ab:4c:a9:4e:f4:08:9b:23:e4:63:2f:f6:37:4f:63:86:f3:
42:f7:3e:f4:8e:6f:fe:f5:f6:94:fb:1c:88:b4:22:e7:18:14:
7c:07:d4:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 09:29:14 2025 by rpki-client