Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: uO4CHBGJzuw/fptKbDsAgHqiZ3jCg28IPBdFnSXFWMQ=
Subject key identifier: C4:B9:90:27:24:0D:24:B8:B5:EE:1C:4D:C1:61:54:42:0E:53:5C:C5
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 0196BB92DE2E959043D6B946471488661AC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 0EC3
Signing time: Sat 10 May 2025 19:01:26 +0000
Manifest this update: Sat 10 May 2025 19:01:26 +0000
Manifest next update: Sun 11 May 2025 19:01:26 +0000
Files and hashes: 1: 79LYqjKNTJN0ouKGzdcbqvTlAUQ.roa (hash: ql/wdfFz1qsER0EkZDThbVWptAlBg9mw+jziuKWlZyc=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: I9G4WpHjf9673bsUooVvsNRDq4znONN2Ej+GtQ5p8jY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:de:2e:95:90:43:d6:b9:46:47:14:88:66:1a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: May 10 19:01:26 2025 GMT
Not After : May 11 19:01:26 2025 GMT
Subject: CN=c4b99027240d24b8b5ee1c4dc16154420e535cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f9:ef:eb:97:cf:f4:3f:5b:9d:a1:99:94:b7:
96:41:ab:f3:32:ff:ad:e9:bc:1d:e2:26:1f:7e:57:
84:c4:5f:c2:3b:08:9a:36:a7:04:55:20:c7:3e:2a:
49:4f:fa:39:7a:b4:60:06:fb:97:64:06:20:ec:fd:
70:da:68:dc:02:f4:15:f3:db:ab:95:15:14:75:34:
ca:fd:2e:f7:4d:0d:a9:e6:36:d9:64:22:74:27:1a:
a3:d0:72:ff:cb:b1:b2:44:f3:d2:59:95:22:d9:ed:
33:0e:d4:58:b8:06:ef:6a:eb:7f:46:b8:65:d4:41:
5a:90:4f:66:cc:c4:bd:42:2d:11:d6:e5:8c:ad:14:
e8:e0:a9:cf:dc:87:45:c7:02:2b:78:e5:88:31:c3:
51:62:58:66:40:ca:7a:bd:35:d8:84:c8:3d:bc:da:
52:ba:59:8a:08:35:db:03:3a:86:4b:20:9c:3c:73:
52:f8:e8:99:eb:d8:ca:11:7f:16:65:5f:33:c6:ca:
b0:e3:6c:45:4e:36:44:bf:09:56:42:00:b2:6d:25:
0d:fa:e9:84:6a:b4:95:70:28:01:02:3f:8d:1e:1e:
c6:26:cd:33:e6:7a:9c:e7:b8:53:9a:bd:78:9a:e5:
b9:cc:90:7d:17:da:43:29:ef:98:42:e3:eb:ee:a3:
03:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:B9:90:27:24:0D:24:B8:B5:EE:1C:4D:C1:61:54:42:0E:53:5C:C5
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:30:12:64:90:0e:7d:d9:43:09:80:7a:34:95:92:51:bd:24:
99:24:9e:d5:0e:8a:e2:08:5b:08:d8:a3:1d:2c:69:99:54:be:
50:7b:00:9a:3d:92:42:c5:56:1e:41:2a:2c:d7:66:11:4e:83:
81:34:df:3b:17:83:96:15:c3:70:16:79:10:21:50:ba:0b:2b:
af:27:4b:24:41:78:ae:9a:f7:94:f1:f9:e5:79:a7:df:bc:6f:
a3:68:f8:95:5a:9a:9d:73:61:71:df:b7:ab:39:ef:4d:6b:74:
a4:22:a9:26:f7:ef:f0:ea:28:e9:c9:d2:55:aa:02:7d:44:a8:
b9:25:4d:cb:5b:f6:52:d2:fd:ed:1d:fd:70:1e:f2:8c:5c:a9:
9a:89:4e:2b:ba:5a:3a:47:39:78:2e:72:87:06:47:d3:32:3b:
39:f4:cf:b4:ef:0b:2c:5b:6d:6c:52:48:99:d9:b3:f1:c5:8f:
13:3d:98:be:59:8b:20:af:f4:ca:5b:80:85:72:44:7c:ee:fc:
eb:07:2e:be:33:22:86:3b:62:41:a7:d3:23:02:0c:c0:d0:99:
e5:ce:67:29:67:59:55:f2:02:a6:ee:a9:13:41:8f:d1:86:ee:
e6:17:d9:7f:80:8a:a2:b0:18:0c:48:92:4c:d9:f1:0a:da:6c:
a0:80:48:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:25:15 2025 by rpki-client