Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: 6rIb3CWhicmULr0AMwzLHidDNEvsfdIWNoVclFrxb5A=
Subject key identifier: 89:C1:49:AD:BF:80:4A:0F:2C:1D:47:24:C2:C0:22:BC:84:7A:D5:47
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 0196B5226783DA254488F88D801A106604CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 152D
Signing time: Fri 09 May 2025 13:00:52 +0000
Manifest this update: Fri 09 May 2025 13:00:52 +0000
Manifest next update: Sat 10 May 2025 13:00:52 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: hbhPLkCeCYcCoNcrHEYBxZjVNUlaApMj+g0K8OaQ9bo=)
2: qCYAPp7Dim0U2WN8VdnzBt9dUOY.roa (hash: A0zVfMWFcmAvQiJtyOik4/Esuwb1ukoj8nbTE0+n850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:22:67:83:da:25:44:88:f8:8d:80:1a:10:66:04:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: May 9 13:00:52 2025 GMT
Not After : May 10 13:00:52 2025 GMT
Subject: CN=89c149adbf804a0f2c1d4724c2c022bc847ad547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5c:5a:3f:eb:53:78:7e:1e:71:c3:7c:0c:f3:
4c:de:ce:3c:14:f6:24:01:72:31:93:e4:5b:7b:eb:
e1:a5:d4:33:bb:9c:a5:2b:3e:19:99:a8:e0:07:a2:
1b:ca:ce:c1:11:a6:b6:41:86:cc:39:4d:e6:9b:ef:
ea:65:8f:95:c4:d9:56:9f:e9:e6:01:8e:f3:cd:8a:
4a:e8:c8:c9:05:0e:3d:0b:7d:8c:5b:65:a1:67:da:
b4:64:b0:e9:44:df:35:38:0e:0f:d1:c7:9c:aa:be:
94:61:23:b0:2f:b3:12:9c:69:c4:51:22:a7:02:ed:
69:f2:ce:87:55:f6:5c:d6:e2:99:db:19:3b:94:4d:
ea:00:9d:23:d9:bd:94:36:04:ef:81:a2:32:ce:e9:
29:49:70:6a:e6:26:3c:00:e6:24:1d:d3:21:0d:74:
fb:8c:25:3f:05:c2:3d:2a:1e:e4:ea:cf:04:b1:bc:
d1:a5:ac:65:3f:a1:79:29:d6:28:eb:e5:0c:25:dd:
63:64:76:06:1b:92:f2:ab:b6:c0:e5:a8:a6:71:d5:
dc:3d:48:00:9a:be:3c:bf:90:86:0a:2e:86:05:af:
af:b2:95:5d:77:64:98:e3:1b:94:74:24:e6:1f:7c:
fc:80:68:d3:18:dd:7c:38:b6:90:30:53:43:a8:11:
13:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C1:49:AD:BF:80:4A:0F:2C:1D:47:24:C2:C0:22:BC:84:7A:D5:47
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:23:60:f5:ec:1b:6e:c5:c0:e7:f5:23:f3:16:e7:84:43:64:
f4:dd:51:ea:b6:f1:47:a9:a0:8e:24:29:8f:d7:47:ab:f8:4b:
2b:66:16:b5:06:43:54:c5:df:b6:15:96:7b:d3:d0:de:d2:8d:
b6:7f:23:f8:32:2c:d5:ff:c6:09:f9:00:87:8c:9b:19:0d:2b:
ce:15:85:0d:7e:d7:78:b3:bd:19:19:cb:01:32:27:b5:3a:fc:
fa:78:0b:cf:c3:d9:75:97:dd:cd:81:9d:8a:34:fa:d0:25:60:
4a:97:ef:32:ca:18:4f:76:89:59:e3:0e:e4:13:c1:ba:5f:f9:
85:89:bb:99:fb:50:64:83:e5:b4:8a:75:7a:79:d5:a9:72:0d:
ab:8a:47:9e:f9:f5:59:00:70:1d:53:4a:a3:8d:59:de:27:8b:
3f:39:b0:cc:11:0a:28:02:7c:e6:24:77:80:9a:00:7e:33:ee:
6f:fb:2d:3b:81:a2:aa:63:44:14:6d:51:02:8c:97:cf:c5:dd:
b7:c2:b8:bf:58:dc:4e:f5:1c:d7:04:21:e0:a7:a7:b8:a9:8d:
b1:36:5f:18:f1:63:32:27:bc:b0:69:a5:92:20:09:90:7c:ef:
30:0b:5d:90:3d:90:c6:ad:25:b2:7c:30:1d:61:c5:16:5a:b6:
ac:2d:d4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 20:48:52 2025 by rpki-client