Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
File: KqJOWBL8wxBrnrCusA5ie6I10FY.mft (raw, json)
Hash identifier: uO3JdhryFTNb9wpR24pqHsfKBZDA4BKd3vSNIrTmBVI=
Subject key identifier: D8:81:76:39:31:C5:2A:7C:9E:AC:A4:C1:2E:A7:28:59:27:9A:C7:07
Authority key identifier: 2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
Certificate issuer: /CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Certificate serial: 0196D062746FBAAB2F8A2FFA492C4C665561
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
Manifest number: 07D1
Signing time: Wed 14 May 2025 20:00:35 +0000
Manifest this update: Wed 14 May 2025 20:00:35 +0000
Manifest next update: Thu 15 May 2025 20:00:35 +0000
Files and hashes: 1: KqJOWBL8wxBrnrCusA5ie6I10FY.crl (hash: 5bTb/UNE4tpmX3E1doU1te8VxFOvROuB1N4/o42Da5c=)
2: cNLYAjPMpLbcGOrpCslyUiLMP34.roa (hash: JmHm3+B47TlFvMWFE2W9uNvIfC/wvizwOPaVYVDTxDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 17:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:62:74:6f:ba:ab:2f:8a:2f:fa:49:2c:4c:66:55:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Validity
Not Before: May 14 20:00:35 2025 GMT
Not After : May 15 20:00:35 2025 GMT
Subject: CN=d881763931c52a7c9eaca4c12ea72859279ac707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:82:a4:91:5f:1a:3f:2c:d4:1d:a4:c7:81:d5:
8e:76:dd:8a:ca:7a:10:1a:9c:1d:bc:66:96:d5:f1:
2c:2e:bf:05:07:07:07:90:04:d3:db:cf:92:0a:aa:
74:b0:28:28:a3:ad:8c:f1:9d:54:89:13:18:17:81:
98:86:2f:cd:11:c1:a8:93:56:9f:50:aa:dc:6d:9c:
f2:7c:aa:1a:12:d5:d7:78:f8:49:17:45:0e:bd:fe:
6e:cf:bd:c6:c3:64:60:74:a0:06:e1:f2:9b:3f:25:
18:c9:12:eb:38:2c:7a:2c:05:88:f1:51:ce:c2:40:
8a:57:42:db:dd:d1:fd:73:7f:08:8a:0d:04:82:eb:
f7:12:0c:6d:5a:15:8c:e9:72:a6:84:ec:b6:cc:a4:
1a:95:95:f8:61:43:70:8c:9b:e6:b3:55:b6:e6:0e:
74:e4:9e:23:52:35:43:16:5d:b0:3d:2c:b1:dc:f4:
aa:b8:48:dd:7d:3c:a5:40:db:d3:ce:45:59:bd:d9:
a0:9c:78:ad:77:b4:a6:95:ef:27:96:ef:35:9a:7c:
96:bf:53:f5:d5:f0:6a:6f:d6:d2:2e:aa:4b:ec:8f:
2a:41:fc:a7:bd:bf:de:00:dc:83:8f:a2:af:06:e7:
dc:cb:aa:d8:1a:fa:1d:dd:89:b1:d4:a4:c8:8f:04:
d1:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:81:76:39:31:C5:2A:7C:9E:AC:A4:C1:2E:A7:28:59:27:9A:C7:07
X509v3 Authority Key Identifier:
keyid:2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:cd:78:35:4f:96:e6:f4:9c:aa:63:ff:00:36:61:a5:37:44:
7d:8e:40:bd:42:77:38:a1:75:d2:71:f7:91:4f:82:a3:17:3e:
6e:2c:ef:2a:69:23:1f:72:9b:9c:27:23:eb:51:21:de:ff:d9:
4b:f9:20:2f:e1:4f:c4:74:96:8d:84:74:a9:90:2e:08:ad:58:
b9:6d:96:04:36:e3:07:70:b9:c3:ce:6e:c8:04:47:ae:d1:6c:
9d:92:16:34:cf:5a:54:91:ce:01:46:eb:0b:51:56:b2:aa:5d:
ac:80:b6:db:2c:23:ee:1a:88:27:00:79:d6:74:cd:cd:c2:a1:
d6:46:5c:1d:f2:fe:cc:ae:1d:95:54:79:15:80:f1:19:06:85:
41:4e:79:19:65:c8:06:96:17:a9:3f:ca:aa:a2:d0:98:b2:22:
c2:ac:19:a4:bf:8f:97:82:7f:72:d6:1c:6c:20:c0:de:f5:df:
3e:a4:86:2e:56:5d:c2:70:88:c1:ea:7a:42:86:32:00:38:9e:
cc:9f:32:e8:00:33:08:0c:52:69:fd:65:79:3f:17:41:de:68:
c8:b3:47:ff:49:87:4e:79:e1:90:44:e5:2c:a4:94:38:5f:97:
02:80:9e:cc:cd:3b:e9:59:43:d0:b9:88:55:f3:29:a3:04:94:
d9:cf:70:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 00:49:52 2025 by rpki-client