Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
File: KgedPD3CTph79wxKn6u6QFsIOkU.mft (raw, json)
Hash identifier: G1uip/ywsL9ihnt+G7hK2oQWgq3LhK1u/0BYCQscngw=
Subject key identifier: E8:9C:45:93:A2:E3:85:41:67:9F:6E:A2:BB:89:B8:38:51:3C:92:13
Authority key identifier: 2A:07:9D:3C:3D:C2:4E:98:7B:F7:0C:4A:9F:AB:BA:40:5B:08:3A:45
Certificate issuer: /CN=2a079d3c3dc24e987bf70c4a9fabba405b083a45
Certificate serial: 0196BD8111D16CC3EC403409E87AA1432F0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
Manifest number: 0AA9
Signing time: Sun 11 May 2025 04:01:14 +0000
Manifest this update: Sun 11 May 2025 04:01:14 +0000
Manifest next update: Mon 12 May 2025 04:01:14 +0000
Files and hashes: 1: KgedPD3CTph79wxKn6u6QFsIOkU.crl (hash: 6IWD6nGojo2XMtqQpGGzOkFhfaQYihRt9dS8gM8V7BQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bd:81:11:d1:6c:c3:ec:40:34:09:e8:7a:a1:43:2f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a079d3c3dc24e987bf70c4a9fabba405b083a45
Validity
Not Before: May 11 04:01:14 2025 GMT
Not After : May 12 04:01:14 2025 GMT
Subject: CN=e89c4593a2e38541679f6ea2bb89b838513c9213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:80:a1:ce:56:9c:a8:ed:88:5d:ff:a0:20:10:
1c:00:c7:77:87:13:bb:cf:20:3c:10:5d:f1:9f:2a:
b8:6d:73:cb:4c:15:15:f8:d0:d2:19:01:b5:6c:12:
42:ea:71:91:4f:6a:3a:53:40:f7:c5:02:28:52:a4:
27:3e:03:df:e8:bf:fd:d6:24:9c:dd:ae:d7:8a:a0:
1f:7e:b0:8b:86:59:00:09:ec:07:26:db:f0:6a:50:
fc:1e:7f:04:4a:f0:74:8b:90:7f:b5:a6:88:bf:42:
b6:11:2f:be:93:ea:ef:ab:7b:16:dd:63:6c:7e:26:
f6:c4:26:e7:aa:ef:8a:c4:8b:6e:b0:7e:cb:90:c6:
08:82:d8:ae:2a:49:b3:0c:52:64:0e:a6:b3:c9:2f:
47:0f:6f:91:02:66:49:52:d0:9d:5f:91:7d:57:e8:
b5:85:42:94:22:35:ae:24:79:82:ba:d0:9b:9e:be:
32:a4:b8:e4:e4:f6:89:81:51:e3:e8:29:34:23:44:
b4:14:bd:2f:5d:22:ab:75:6f:82:61:20:f0:e1:52:
47:ee:de:44:5d:cf:01:d7:4d:5d:27:3c:e5:35:74:
1a:75:6b:e7:6e:ac:67:aa:43:86:a2:46:28:26:a0:
cd:e9:ee:ec:52:ac:d6:2e:3c:60:18:34:32:39:5a:
a5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9C:45:93:A2:E3:85:41:67:9F:6E:A2:BB:89:B8:38:51:3C:92:13
X509v3 Authority Key Identifier:
keyid:2A:07:9D:3C:3D:C2:4E:98:7B:F7:0C:4A:9F:AB:BA:40:5B:08:3A:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgedPD3CTph79wxKn6u6QFsIOkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0bb8a0-3fb3-41ee-9f65-1c8d9e6ed124/1/KgedPD3CTph79wxKn6u6QFsIOkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:e7:e7:88:08:3a:ca:c7:ba:27:78:25:c4:e9:39:ba:98:6b:
2d:e7:a0:9c:90:31:52:36:c2:1e:6f:fe:c8:d4:a6:cb:28:04:
89:6c:3e:96:fd:44:e1:3f:4f:bd:a6:b1:b9:28:8c:e6:b7:06:
3a:af:7d:55:6f:01:a1:cb:ce:a6:b7:53:67:72:82:f4:44:58:
9f:53:10:04:31:f3:2a:26:f4:ae:26:a0:bd:a8:2d:6d:8a:02:
83:18:74:7e:d2:3a:bf:90:28:c0:a4:75:f0:34:82:f2:07:d3:
8b:0f:53:f3:fc:77:3d:0c:ba:41:2b:a0:de:de:d3:62:ac:fa:
f0:6d:51:29:79:23:e0:e7:5f:6b:34:fd:c7:27:a9:cf:99:1b:
0a:e1:21:70:4c:e2:1b:19:35:aa:c0:6e:60:02:bd:48:89:ca:
dc:eb:71:41:a6:79:5c:ac:78:97:ba:91:46:41:c3:23:18:fb:
24:89:f4:b9:c0:7a:5b:c4:cd:13:bb:c2:b9:84:34:a3:d8:82:
76:0a:ae:bd:ff:cc:a7:79:fe:d7:38:10:df:c7:de:a0:d8:49:
11:3a:3a:e4:15:6a:91:2c:93:ee:21:d3:c9:23:3a:76:c0:7e:
33:9d:c5:d6:d1:c5:e6:4e:01:60:e0:a9:ed:fb:7d:b4:d0:11:
63:8a:e9:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 06:32:52 2025 by rpki-client