Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
File: KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft (raw, json)
Hash identifier: EFXqboor7VbmZSg895gD9TOuFyhmEf8Dc70JcOZUxGo=
Subject key identifier: B6:F7:BE:F8:A8:A8:27:55:9B:B4:B2:BE:B9:74:37:22:62:A6:5A:42
Authority key identifier: 29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
Certificate issuer: /CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Certificate serial: 0196B63530BAA08836B034E74C30C8C745FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
Manifest number: 0BCA
Signing time: Fri 09 May 2025 18:01:01 +0000
Manifest this update: Fri 09 May 2025 18:01:01 +0000
Manifest next update: Sat 10 May 2025 18:01:01 +0000
Files and hashes: 1: 3Q4b3ZrB5hBNl0sc19tX6sYik8M.roa (hash: Y2d6NgWxe37Sh2Kw4xqcfrnYvSssw7Fp3dHdg6i9y18=)
2: GL9mMoVzYzt9cAMp9ZMhDNvyxpY.roa (hash: sr1sGLjbfiu/0SvHpnzyQUaLuHxB9sxU75fTY0SHxZw=)
3: KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl (hash: F/nPq3moORSUzUPzPS2HyEuER5sWf4+gnNhq2Pzdat0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:35:30:ba:a0:88:36:b0:34:e7:4c:30:c8:c7:45:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Validity
Not Before: May 9 18:01:01 2025 GMT
Not After : May 10 18:01:01 2025 GMT
Subject: CN=b6f7bef8a8a827559bb4b2beb974372262a65a42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d2:cf:46:85:0d:34:96:5e:32:0e:cd:54:09:
9c:90:07:dc:4d:b4:44:5b:cb:20:19:31:86:47:78:
a8:48:6e:bd:f4:a1:4b:5e:a9:9c:66:60:99:08:a8:
11:c6:72:3b:47:56:8f:c3:cf:85:c2:82:72:af:82:
40:f1:38:75:87:63:ed:25:4f:26:75:2e:de:68:15:
d6:66:ef:fb:c1:b4:c0:4c:f7:49:37:48:db:0c:ea:
28:d0:19:8d:12:ea:50:14:f4:37:6c:dc:da:5e:a3:
16:f2:96:39:71:d3:8d:04:b6:1a:b2:0c:d1:21:4b:
03:40:ae:95:0e:27:62:d7:fb:1c:a7:75:a4:ce:ba:
93:ea:9c:a0:97:60:87:98:91:23:92:6f:d5:3d:bf:
eb:e0:35:f2:11:47:89:67:a7:0b:a2:ee:43:73:cd:
d1:c5:c7:a8:78:4e:f4:ab:58:79:6c:88:d1:b1:5d:
09:de:ca:37:9c:3b:c0:f7:b1:50:35:f5:27:a5:04:
ff:23:bf:44:cb:a8:73:d9:05:c3:d2:55:0c:12:d6:
80:c4:05:10:80:3d:b8:fe:68:22:aa:36:99:40:cf:
df:f7:fc:65:09:40:14:da:9f:c0:dc:bc:fb:23:80:
b4:e5:ad:db:a4:3a:56:c1:ad:b6:d4:af:5d:1c:3b:
50:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F7:BE:F8:A8:A8:27:55:9B:B4:B2:BE:B9:74:37:22:62:A6:5A:42
X509v3 Authority Key Identifier:
keyid:29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:53:5e:d2:47:05:6b:7a:67:37:8e:ff:65:9a:b6:46:1e:26:
7d:5d:5e:f0:dc:5e:8b:a0:8e:81:9e:74:28:d1:6e:6f:ea:4a:
ca:c9:24:10:c2:86:72:57:0c:2c:90:72:42:1e:f9:34:db:e8:
f7:d0:47:a9:6f:86:0f:ca:99:c7:6a:89:40:9e:c8:d4:3a:af:
df:e8:99:d4:e7:61:5a:1a:83:03:bb:42:52:41:47:a2:a0:e0:
5e:8c:13:96:35:1f:aa:90:e5:37:d8:14:aa:81:f0:e4:11:a5:
c7:03:17:82:72:3e:bb:7a:1b:12:22:32:37:63:71:19:79:78:
de:05:84:07:a4:98:2d:4b:8b:9f:4c:3f:32:55:f2:12:36:28:
82:95:1c:00:f7:c5:f6:62:bd:e5:40:82:41:1d:1a:c4:9c:3e:
ad:03:81:32:3c:15:b8:b4:57:27:c6:f2:65:78:72:e2:0d:6e:
92:64:3a:db:c4:80:73:57:e9:a0:61:08:a4:bd:9b:f0:dc:f7:
a5:48:56:d1:53:98:95:27:d4:65:e6:4c:67:2d:59:88:4a:cc:
99:71:91:94:6c:f7:4e:e2:f6:fe:eb:69:3e:ce:54:7b:5f:ea:
34:39:06:00:7c:f7:2e:9d:e3:fe:9a:b8:4d:91:11:47:2f:b1:
c1:d5:4b:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 23:50:48 2025 by rpki-client